Category | Machine | Started | Completed |
---|---|---|---|
FILE | s1_win7_x6401 | July 8, 2022, 8:21 p.m. | July 8, 2022, 8:23 p.m. |
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,AjkRVrFNnyQmqXQdrComyaiwV
2752-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,AjkRVrFNnyQmqXQdrComyaiwV
2264
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,AkMhEGvNFpnSswjeCw
2856-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,AkMhEGvNFpnSswjeCw
2284
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,BMIWqtk
2948-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,BMIWqtk
2480
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,BpsBUyIiAmXYU
3036-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,BpsBUyIiAmXYU
2784
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,BxBybURSqJfOwVmXj
2116-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,BxBybURSqJfOwVmXj
2900
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,CCSLGUsdVtcCbfF
2180-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,CCSLGUsdVtcCbfF
2936
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,CWBdqFubMR
2396-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,CWBdqFubMR
3068
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,CbEceKaoQvfuhhIK
2692-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,CbEceKaoQvfuhhIK
2388
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,CcBDyidVYuvtjWfG
2980-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,CcBDyidVYuvtjWfG
2556
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,CeOVtVdkUnRPoUvswsvkEf
2172-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,CeOVtVdkUnRPoUvswsvkEf
2448
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,CvxIGiXAzAG
2604-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,CvxIGiXAzAG
900
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,DPsWXvFrrwOLZwoq
192-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,DPsWXvFrrwOLZwoq
316
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,DllRegisterServer
2780-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,DllRegisterServer
2796-
regsvr32.exe C:\Windows\system32\regsvr32.exe "C:\Windows\system32\CzdBONwxxN\RuVOfPmjFdIf.dll"
3904
-
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,ENtihcf
2560-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,ENtihcf
2832
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,EVYoaysfyVmedMKzqOkd
2740-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,EVYoaysfyVmedMKzqOkd
2304
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,FSgLIbzCJsGhKrdTRUhBnjq
2944-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,FSgLIbzCJsGhKrdTRUhBnjq
2952
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,FXswjNvwqEmJHSzKXfB
2964-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,FXswjNvwqEmJHSzKXfB
2344
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,FmRrLoGPniSXxeHYAaRXrsSIt
2100-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,FmRrLoGPniSXxeHYAaRXrsSIt
3176
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,FzYYWlRKDQMfKaJAUq
3236-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,FzYYWlRKDQMfKaJAUq
3396
-
-
explorer.exe C:\Windows\Explorer.EXE
1156 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,GEQqgSeWrJkaNSdjOw
3380-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,GEQqgSeWrJkaNSdjOw
3500
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,GLvPFjzv
3564-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,GLvPFjzv
3672
-
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,GTfYoyhXUmiOrfM
3664 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,GVTerofsGHUASHLhWfIFX
3796 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,GlLOHKioWJZCQPS
3896 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,GpqOdmj
4080 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,GtaEQGQNcgERZqWo
2240 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,GzdHPyIXWoMGb
3344 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,HKgdkPfboZzjQODFfSu
3452 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,HmXZBMEhrWvTg
3604 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,HvFWvy
3504 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,ICrKqnEJHHrxYaH
3960 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,IDENrF
2064 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,ISuniIBoqjzfv
3224 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,IcEiBSQQHwaxZGs
3432 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,JCFScdjDVMLKVa
3656 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,JGwGKVHFHwfxsyCIp
3888 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,JnkFkZthy
4072 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,LSRvMYckceDUkCMxwUAq
3208 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,LhZoEaJRggyJr
3700 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,MknuTlXosJJdvczIkg
3480 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,MrhDZxAutnSSobTVt
2920 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,NRfTvw
3984 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,NZDMYgNWoHhCVPBFWyuTBSesQ
2400 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,NmBmwe
4024 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,NzYPpUvQ
3092 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,OThzaIZTEfYKTCCRQlcnW
2572 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,OWMilsbkgGVyJL
4144 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,OguxguFiYSHz
4284 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,PHzWjRI
4420 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,PNJeVrAcZDAW
4520 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,PSDYwIgmLiVzYESIaUYrbKg
4636 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,PiJSThSmMmzNNC
4736 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,PneIJqdSVVerltCm
4864 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,PpsLezsCiHiCVkHmZP
4988 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,PuoUVwFKYxjCqT
5108 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,PwNlKX
4208 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,QRkaVvgiLqTCjGKy
4268 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,RJAcdfSthTv
4512 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,RYkwsDq
4676 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,RZtKxjO
4900 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,RcnQoaySRBXJxsiZQIHxe
5044 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,RdnXeofUSzEDgzxXeW
4240 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,RfsPQSmuvBYXfIScfOT
4492 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,RkfakVk
4664 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,RmhqixPgftgQ
4972 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,SInCoGYrouPZGmYYJGKIR
4260 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,SRXSueHCT
4564 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,SVlQsYSAXEyhEvVkdWdX
4860 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,SnLgFTA
3364 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,SxfQZPkEOIcG
4556 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,TJZCJgp
1308 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,TSNqZL
756 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,TfpEQJjWUDp
1588 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,TvUVDsEcInyvKdGRA
4856 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,TvtXyQtNShHDYCMvH
4756 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,UGXSNpc
1568 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,ULOMXGiV
4516 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,UVzHIeChKCEwTMG
5092 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,UagSsmENTltTUKpktiEuRJfE
5200 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,UbjFSQJG
5324 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,UjDfVglhgynLAuMpwrtpXkH
5432 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,UrxprELRNWbXXBuOJlJ
5544 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,VXDuMBzruSCyfbAMzIrvV
5652 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,VcrtEzpxSRmZr
5772 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,VkRjra
5896 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,WMxfpgNLwoiQTZjkM
5996 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,WjtCBeYwDkRZvKLfJD
6108 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,XoMiJXhdBRBldnkLkgMM
5236 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,XsBeDFcmOsaqRihqMytJ
5408 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,YGPQhuvjFbQXSoJfVilOnVw
5588 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,YvzKAJK
5744 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,ZAppiYnp
5940 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,ZXZEfUeKC
6024 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,ZoyjBLvuBnIxXaWxFC
6116 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,aZwlVZLRtCIfDmaYbAXR
5508 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,bdnAzUNoMZJXxzHG
5736 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,btmsIKQVm
5756 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,cFminOM
5128 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,cKjOEfqQYYQ
5696 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,czIvuAZ
5988 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,dMEJcsHSUiODu
5304 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,dPYgmMRi
5912 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,dStUmppUwHfwVxtCgCewXt
5144 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,deMXieymThIxfyWzHCMb
6032 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,dgCMMkwNpUNZ
2360 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,eDtAbxMTINFwGjIRymBKxBFTe
2372 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,ePfrWQkHuKqOV
5504 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,eQnPJdIEwUrOjHyYKajVY
6208 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,eWqtOcNgKbDEwKynrCTAaqRd
6312 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,eiRJXgFAjkyObQxtC
6428 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,fLsjxmtTmthGKPw
6552 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,fqsAeZLb
6656 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,frkkGhhTKCPBzCLoveBHn
6772 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,fxmvSQNzSiXj
6900 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,gATjvjWkzNfdmAJbeFMKFtUmoI
7024 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,gCFmNdxvaAq
7148 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,gfeRIwKkCZUnQQ
2212 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,gjZENXkR
6444 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,gzzlrzxMlshrI
6464 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,hClTxV
6788 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,hDdSABujeGhBdM
6944 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,hJbRrovBnfzadHBLOAaX
7132 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,hLNWWET
6288 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,iIJmtODVuCFQPMFae
6524 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,iItzzFKWzIZojfOFqJG
6780 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,ibqesePIQXoUwnfgkLvfcuMFHK
7140 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,ieuLWaTjVeuBYegSaGXuly
6372 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,igFffrhNCQcHQStroQFS
6708 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,irtTnxRuuXAWDuDRGCivHz
6172 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,jVNpFjHcSQ
6472 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,jotleypmamgIHEUfZPLSmMtq
6924 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,jrkFXlWfdhOn
6252 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,kOcvjMhVkKI
6152 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,kPsHiOxOlxeVBpHYooACxIXHB
6988 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,kUHyuFSDHjRQgcFnZIHgvahta
7096 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,kXMermOELWqc
6748 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,kkWRnVCjitIbHTy
7248 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,kpoFTDgQJFpD
7372 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,kvCgXPvHuWWWdAHGy
7468 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,lFcjChjFWgKWuOuaAxn
7588 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,lKFTvqNg
7704 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,lcbnVGCdYXcKZTYevsVX
7832 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,lefIOOsVMhliLLj
7940 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,mKrNVAlauoRSIht
8064 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,nRVfeUAoalGiEviupjuyTviKt
8180 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,nWkMZMN
7364 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,naKLRCkO
7452 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,njUWLbQgRBGSd
7664 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,nlBfCJTJQhnnPxbkQkUAwWpmaA
7800 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,nmBYnmjGCq
8020 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,oIAdOUfQaetEfqMDSL
7240 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,osSAAvHx
7424 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,ovwgmHjsMpOQyjNpuqeLd
7652 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,ozpFyAlRWIHNYPuJbOLpoZosmO
7756 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,pAbWNQjHuawouRBUprBVrXw
8100 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,pCYRinZyYkFOxayPFyJDEDxKzO
7196 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,pQvYHQSqPMdqFOFub
7640 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,pbzbgZeZipMwitVYJJbYTdyYQ
7784 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,pnbxRJnSdfpDADRIEWZXepR
8104 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,qAirVWefWGdomxGs
7824 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,qbgUwwXPUNM
7464 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,rJVMJaiBojiOWxURyzmLWnxH
8136 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,rOlGGoosrOYjYnwqSX
8028 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,rSHUNkevMkknNwSlqR
7580 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,rmrMOmqIIM
8296 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,sBcaPzIWckINwkFTBxmdkiKID
8420 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,sJXDLm
8540 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,sNQjkxnpfL
8672 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,sPKnvGEKVGRHsXgbRRJFS
8776 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,snoSMpnSAlGCDUoadZDE
8888 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,tGDiqYCDbgMaBXHmxqrJv
9016 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,tGdwKquShaUWskzgERPqeG
9140 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,tXncljehbaR
8060 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,taNCAYWnFedga
8416 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,uFBMgXMRHfYmHKtd
8576 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,uQadijPTgYiRGTkxDpqTOeI
608 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,vlEZdJoJilVuJxGaLFCzX
8868 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,vlPATCQWfWfv
9028 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,vnMwerzIvV
9200 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,wDtWqzCTVUWdqo
8368 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,weKcSTEtgvLwNKGEWr
8636 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,wyslQDXAh
8836 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,xRklmHvgNdkXc
9048 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,xbTTVacjLMTUBskAADEzpolBV
8220 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,xbcfQIhiMJswKveISUtGpEWTr
1912 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,ytgHNsgBKfkMoZjHI
8812 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,zLypEkbxfdampkTf
7700 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,ziTLFIzOnbzURBefGdA
8736 -
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\9dwcb1g2Vqh3Owz.dll,
9212
Name | Response | Post-Analysis Lookup |
---|---|---|
No hosts contacted. |
IP Address | Status | Action |
---|---|---|
103.126.216.86 | Active | Moloch |
103.224.241.74 | Active | Moloch |
103.41.204.169 | Active | Moloch |
103.71.99.57 | Active | Moloch |
103.85.95.4 | Active | Moloch |
104.248.225.227 | Active | Moloch |
128.199.217.206 | Active | Moloch |
139.196.72.155 | Active | Moloch |
139.59.80.108 | Active | Moloch |
165.232.185.110 | Active | Moloch |
174.138.33.49 | Active | Moloch |
175.126.176.79 | Active | Moloch |
178.238.225.252 | Active | Moloch |
178.62.112.199 | Active | Moloch |
188.165.79.151 | Active | Moloch |
188.225.32.231 | Active | Moloch |
190.145.8.4 | Active | Moloch |
196.44.98.190 | Active | Moloch |
198.199.70.22 | Active | Moloch |
202.134.4.210 | Active | Moloch |
37.44.244.177 | Active | Moloch |
5.253.30.17 | Active | Moloch |
54.37.106.167 | Active | Moloch |
54.37.228.122 | Active | Moloch |
62.171.178.147 | Active | Moloch |
87.106.97.83 | Active | Moloch |
Suricata Alerts
Suricata TLS
No Suricata TLS
ip | 103.224.241.74 |
ip | 104.248.225.227 |
ip | 139.196.72.155 |
ip | 178.62.112.199 |
ip | 188.225.32.231 |
ip | 196.44.98.190 |
ip | 198.199.70.22 |
ip | 5.253.30.17 |
ip | 54.37.106.167 |
cmdline | C:\Windows\system32\regsvr32.exe "C:\Windows\system32\CzdBONwxxN\RuVOfPmjFdIf.dll" |
FireEye | Generic.mg.88fcb7e4f43e8a1c |
Kaspersky | VHO:Trojan-Banker.Win32.Emotet.gjir |
TrendMicro | TrojanSpy.Win64.EMOTET.SMYXCFC |
McAfee-GW-Edition | Emotet-FTY!88FCB7E4F43E |
ZoneAlarm | VHO:Trojan-Banker.Win32.Emotet.gjir |
McAfee | Emotet-FTY!88FCB7E4F43E |
Rising | Trojan.Emotet!8.B95 (C64:YzY0OsbA4SlW4UTk) |
AVG | BotX-gen [Trj] |
Avast | BotX-gen [Trj] |
section | {u'size_of_data': u'0x0002e600', u'virtual_address': u'0x0001a000', u'entropy': 7.832588443776013, u'name': u'.rsrc', u'virtual_size': u'0x0002e480'} | entropy | 7.83258844378 | description | A section with a high entropy has been found | |||||||||
entropy | 0.669675090253 | description | Overall entropy of this PE file is high |
process | regsvr32.exe |
process | rundll32.exe |
host | 103.126.216.86 | |||
host | 103.224.241.74 | |||
host | 103.41.204.169 | |||
host | 103.71.99.57 | |||
host | 103.85.95.4 | |||
host | 104.248.225.227 | |||
host | 128.199.217.206 | |||
host | 139.196.72.155 | |||
host | 139.59.80.108 | |||
host | 165.232.185.110 | |||
host | 174.138.33.49 | |||
host | 175.126.176.79 | |||
host | 178.238.225.252 | |||
host | 178.62.112.199 | |||
host | 188.165.79.151 | |||
host | 188.225.32.231 | |||
host | 190.145.8.4 | |||
host | 196.44.98.190 | |||
host | 198.199.70.22 | |||
host | 202.134.4.210 | |||
host | 37.44.244.177 | |||
host | 5.253.30.17 | |||
host | 54.37.106.167 | |||
host | 54.37.228.122 | |||
host | 62.171.178.147 | |||
host | 87.106.97.83 |
service_name | RuVOfPmjFdIf.dll | service_path | C:\Windows\System32\regsvr32.exe "C:\Windows\system32\CzdBONwxxN\RuVOfPmjFdIf.dll" |
file | C:\Windows\System32\CzdBONwxxN\RuVOfPmjFdIf.dll:Zone.Identifier |
dead_host | 87.106.97.83:7080 |
dead_host | 192.168.56.101:49417 |
dead_host | 190.145.8.4:443 |
dead_host | 103.85.95.4:8080 |
dead_host | 192.168.56.101:49401 |
dead_host | 192.168.56.101:49427 |
dead_host | 165.232.185.110:8080 |
dead_host | 192.168.56.101:49399 |
dead_host | 103.71.99.57:8080 |
dead_host | 103.41.204.169:8080 |
dead_host | 192.168.56.101:49397 |
dead_host | 192.168.56.101:49428 |
dead_host | 192.168.56.101:49430 |
dead_host | 128.199.217.206:443 |
dead_host | 174.138.33.49:7080 |
dead_host | 54.37.228.122:443 |
dead_host | 192.168.56.101:49429 |
dead_host | 192.168.56.101:49415 |
dead_host | 175.126.176.79:8080 |
dead_host | 62.171.178.147:8080 |
dead_host | 192.168.56.101:49426 |
dead_host | 178.238.225.252:8080 |
dead_host | 139.59.80.108:8080 |
dead_host | 37.44.244.177:8080 |
dead_host | 192.168.56.101:49400 |
dead_host | 202.134.4.210:7080 |
dead_host | 192.168.56.101:49439 |