Multiperspective Malware Analysis Page

Welcome to the Cyber-TA
SRI's Multiperspective Malware Infection Analysis Page

UNCENSORED PAGE

<Click here: to download BotHunter>

19 December 2008
<prev> <next>

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Daily Summary Files: [DNS Lookups & Failed Connects] [ Attacker IPs ] [C&C Servers] [Binary Digests]
Cumulative Summary Files: [DNS Lookup Log] [Attacker IP Log] [C&C Server Log] [Antivirus Detection] [Code Segment Overlap]
[Behavioral Clusters] [Binary Digest Log]

[See Country Codes ]

Time
Victim
OS
Infection
Source
C&C
Server
DNS Lookups &
Failed Connects Infection
Port
Packet
Trace
Detection
Signatures
Infection
Chatter
BotHunter
Analysis
Behavioral
Cluster
Forensic
Logs
Antivirus
Labels
Packed Malware_Binary Unpacked egg.exe
Unpacked egg.asm
Packer PEID
Data Strings
Syscall Trace

00:10:00 Win2K-f 200.59.118.21 (COM.AR):
SINECTIS S.A,
BUENOS AIRES, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:00:10:00 Win2K-f 116.75.161.113 (JWS.COM):
HATHWAY IP OVER CABLE INTERNET ACCESS SERVICE,
IN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:415 hits: 11-21 to 12-18] none[3] none:none
StarForce| none trace

T:00:15:00 Win2K-f 123.52.63.42 (163DATA.COM.CN):
CHINANET HENAN PROVINCE NETWORK,
HENAN, GUIZHOU, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:20:00 Win2K-f 62.16.92.122 (62.IN-ADDR.ARPA):
ISP ELVIS-TELEKOM-TVER,
RU. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:20:00 Win2K-f 59.115.200.118 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

00:21:00 Win2K-f 202.78.230.60 (QTSC.COM.VN):
QUANG TRUNG SOFTWARE CITY (QTSC),
HO CHI MINH CITY, HO CHI MINH, VN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:27:00 Win2K-f 122.121.252.135 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:30:00 Win2K-f 123.204.116.120 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:30:00 Win2K-f 219.86.227.134 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:35:00 Win2K-f 89.140.126.66 (ONO.COM):
RETEVISION,
ES. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:36:00 Win2K-f 186.12.56.6 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

00:37:00 Win2K-f 77.23.237.175 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:00:40:00 Win2K-f 122.121.30.235 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:42:00 Win2K-f 196.211.28.254 (WEBLINK.CO.ZA):
AFRINIC,
ZA. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:45:00 Win2K-f 59.114.10.60 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:51:00 Win2K-f 124.107.209.40 (PLDT.NET):
MGOC7300I13_CONSUMER,
PH. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:51:00 Win2K-f 12.120.15.30 (ATT.NET):
AT&T WORLDNET SERVICES,
MORRISTOWN, NEW JERSEY, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:56:00 Win2K-f 218.168.179.232 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

00:56:00 Win2K-f 190.69.11.156 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
CO. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:00:58:00 Win2K-f 119.9.129.59 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:08:00 Win2K-f 218.87.202.32 (163DATA.COM.CN):
CHINANET JIANGXI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:08:00 Win2K-f 58.22.199.91 (-):
SANMING CITY FUJIAN PROVINCIAL NETWORK OF CNCGROUP,
FUJIAN, FUJIAN, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:10:00 Win2K-f 95.69.130.213 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:01:10:00 Win2K-f 210.3.77.77 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:14:00 WinXP 70.168.131.92 (COX.NET):
COX COMMUNICATIONS,
FALLS CHURCH, VIRGINIA, US. n/a US:microsoft.com 135 pcap raw alerts
ruleset other
80 lines Yeah : 1.3
profile none summary
tarball 33 of 33
0 of 32 53bfe15e91
[Firefox:4107 hits: 06-17 to 12-16]
73f1082158
[Firefox:2040 hits: 06-18 to 12-16] 1473091351 [0]
none [0] ASM:Graph
none:none
tElock|
Armadillo| lines=75
embedded dns
lines=90 trace
trace

01:15:00 Win2K-f 124.10.128.42 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:01:16:00 Win2K-f 94.50.217.118 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:18:00 Win2K-f 200.71.107.140 (TELESAT.COM.CO):
COLDECON,
CALI, VALLE DEL CAUCA, CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:20:00 Win2K-f 200.71.107.140 (TELESAT.COM.CO):
COLDECON,
CALI, VALLE DEL CAUCA, CO. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:23:00 Win2K-f 203.73.5.130 (TSRC.COM.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:24:00 Win2K-f 123.52.37.239 (163DATA.COM.CN):
CHINANET HENAN PROVINCE NETWORK,
HENAN, GUIZHOU, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:29:00 Win2K-f 122.120.194.208 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:34:00 Win2K-f 91.156.56.254 (ELISA-LAAJAKAISTA.FI):
ELISA,
FI. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

01:36:00 Win2K-f 87.97.201.59 (GGBIT.NET):
EKK CATV PLOVDIV,
TROYAN, LOVECH, BG. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:39:00 Win2K-f 119.63.205.5 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:43:00 Win2K-f 59.113.139.112 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAOYUAN, T'AI-WAN, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:43:00 Win2K-f 124.10.85.215 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:44:00 Win2K-f 59.113.139.112 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAOYUAN, T'AI-WAN, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:48:00 Win2K-f 190.55.183.213 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:01:49:00 Win2K-f 12.120.15.30 (ATT.NET):
AT&T WORLDNET SERVICES,
MORRISTOWN, NEW JERSEY, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:53:00 Win2K-f 121.254.91.14 (TCOL.COM.TW):
MONAD DIGITNAMIC CORP,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:54:00 Win2K-f 59.112.224.29 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:59:00 Win2K-f 124.10.128.42 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:00:00 Win2K-f 87.56.115.60 (IP.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
DK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:50 hits: 11-23 to 12-18] none[3] none:none
StarForce| none trace

02:06:00 Win2K-f 59.112.224.29 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:09:00 Win2K-f 122.121.69.53 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:14:00 Win2K-f 87.56.115.60 (IP.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
DK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:50 hits: 11-23 to 12-18] none[3] none:none
StarForce| none trace

02:18:00 Win2K-f 91.156.56.254 (ELISA-LAAJAKAISTA.FI):
ELISA,
FI. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:02:19:00 Win2K-f 123.97.120.55 (HZ.ZJ.CN):
CHINANET ZHEJIANG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:23:00 Win2K-f 87.21.65.69 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA S.P.A. TIN EASY LITE,
IT. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:210 hits: 11-25 to 12-18] none[3] none:none
Armadillo| none trace

T:02:24:00 Win2K-f 190.69.103.4 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:26:00 Win2K-f 202.51.102.9 (SOLUSI.NET.ID):
SOLUSI INTERNET SERVICE PROVIDER,
ID. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:210 hits: 11-25 to 12-18] none[3] none:none
Armadillo| none trace

02:28:00 Win2K-f 210.3.148.168 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:29:00 Win2K-f 189.97.202.220 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 24ecbc6b15
NEW none[3] none:none
StarForce| none trace

T:02:31:00 Win2K-f 83.97.213.78 (CM-83-97-128-10.TELECABLE.ES):
TELECABLE,
GIJON, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:570 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

02:31:00 Win2K-f 121.254.77.63 (TCOL.COM.TW):
MONAD DIGITNAMIC CORP,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:36:00 Win2K-f 59.105.21.224 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:43:00 Win2K-f 213.219.151.173 (EDPNET.NET):
EDPNET_ADSL_DYNAMIC,
NAMUR, NAMUR, BE. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

02:46:00 Win2K-f 59.105.21.224 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:51:00 Win2K-f 59.105.21.3 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:54:00 Win2K-f 94.156.16.77 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:111 hits: 11-26 to 12-18] none[3] none:none
Armadillo| none trace

T:02:55:00 Win2K-f 94.156.16.77 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:111 hits: 11-26 to 12-18] none[3] none:none
Armadillo| none trace

T:02:56:00 Win2K-f 77.21.42.55 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:57:00 Win2K-f 114.46.160.50 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:59:00 Win2K-f 87.54.178.79 (IP.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
DK. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:03:01:00 Win2K-f 94.25.2.218 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:03:04:00 Win2K-f 87.54.178.79 (IP.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
DK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

03:04:00 Win2K-f 222.87.239.84 (AGENT1.GZ.CN):
CHINANET GUIZHOU PROVINCE NETWORK,
GUIZHOU, GUIZHOU, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:09:00 Win2K-f 186.12.87.216 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:03:14:00 Win2K-f 200.69.253.20 (IPLANNETWORKS.NET):
NSS S.A,
BUENOS AIRES, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:03:15:00 Win2K-f 222.87.239.84 (AGENT1.GZ.CN):
CHINANET GUIZHOU PROVINCE NETWORK,
GUIZHOU, GUIZHOU, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:17:00 Win2K-f 59.42.244.55 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:19:00 Win2K-f 190.220.100.95 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:03:19:00 Win2K-f 88.77.93.7 (ARCOR-IP.NET):
ARCOR-DSL-NET,
BOCHUM, NORDRHEIN-WESTFALEN, DE. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:210 hits: 11-25 to 12-18] none[3] none:none
Armadillo| none trace

03:24:00 Win2K-f 190.69.103.4 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
CO. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:24:00 Win2K-f 190.220.100.95 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
190.220.100.95:6407
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:03:29:00 Win2K-f 58.27.254.42 (-):
NATIONAL WIMAX/IMS ENVIRONMENT,
PK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:33:00 Win2K-f 122.121.140.201 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:38:00 Win2K-f 114.47.13.195 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:39:00 Win2K-f 85.33.103.3 (BUSINESS.TELECOMITALIA.IT):
ERREASPORTSPA,
IT. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:44:00 Win2K-f 190.220.49.194 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:03:47:00 Win2K-f 125.121.11.109 (163DATA.COM.CN):
CHINANET-ZJ HANGZHOU NODE NETWORK,
HANGZHOU, ZHEJIANG, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:52:00 Win2K-f 125.121.11.109 (163DATA.COM.CN):
CHINANET-ZJ HANGZHOU NODE NETWORK,
HANGZHOU, ZHEJIANG, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:54:00 Win2K-f 117.61.157.3 (163DATA.COM.CN):
CHINANET JIANGSU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:54:00 Win2K-f 190.30.111.108 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. (DIAL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:58:00 Win2K-f 190.220.101.49 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:59:00 Win2K-f 190.90.49.198 (EQUITEL.COM.CO):
INTERNEXA S.A. E.S.P,
CO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:00:00 Win2K-f 220.132.187.219 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:08:00 Win2K-f 208.53.170.250 (RAAGALAHARI.COM):
FDC SERVERS.NET LLC,
JONESBORO, ARKANSAS, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:10:00 Win2K-f 219.86.170.121 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:11:00 Win2K-f 87.56.115.60 (IP.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
DK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:50 hits: 11-23 to 12-18] none[3] none:none
StarForce| none trace

T:04:16:00 Win2K-f 116.53.220.42 (CN.NET):
CHINANET YUNNAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:18:00 Win2K-f 150.101.19.71 (ON.NET):
TPA,
ADELAIDE, SOUTH AUSTRALIA, AU. (DSL) n/a US:www.maxmind.com
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

04:19:00 Win2K-f 118.171.161.174 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:22:00 Win2K-f 170.51.60.152 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:22:00 Win2K-f 82.28.137.199 (NTL.COM):
NTLI,
UK. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:26:00 Win2K-f 85.33.103.3 (BUSINESS.TELECOMITALIA.IT):
ERREASPORTSPA,
IT. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:30:00 Win2K-f 170.51.60.152 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:31:00 Win2K-f 118.171.161.174 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:33:00 Win2K-f 190.50.125.165 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:118 hits: 11-20 to 12-18] none[3] none:none
StarForce| none trace

04:36:00 Win2K-f 77.57.101.73 (SOLPA.NET):
CABLECOM,
ZURICH, ZURICH, CH. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:43:00 Win2K-f 222.49.160.37 (HERBALQC.COM):
CHINA RAILWAY TELECOMMUNICATIONS CENTER,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:43:00 Win2K-f 220.190.83.125 (163DATA.COM.CN):
CHINANET-ZJ WENZHOU NODE NETWORK,
WENZHOU, ZHEJIANG, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:45:00 Win2K-f 190.227.178.183 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:04:46:00 Win2K-f 117.39.82.21 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:415 hits: 11-21 to 12-18] none[3] none:none
StarForce| none trace

04:48:00 Win2K-f 203.70.125.97 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:53:00 Win2K-f 117.39.82.21 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:415 hits: 11-21 to 12-18] none[3] none:none
StarForce| none trace

T:04:57:00 Win2K-f 121.254.91.14 (TCOL.COM.TW):
MONAD DIGITNAMIC CORP,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:58:00 Win2K-f 189.126.18.72 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 507252387e
[Firefox:28 hits: 11-27 to 12-17] none[3] none:none
UPX| none trace

T:04:59:00 Win2K-f 118.166.235.41 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:03:00 Win2K-f 117.69.68.56 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:05:05:00 Win2K-f 222.49.160.37 (HERBALQC.COM):
CHINA RAILWAY TELECOMMUNICATIONS CENTER,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:08:00 Win2K-f 59.114.241.245 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:10:00 Win2K-f 82.65.35.172 (PROXAD.NET):
PROXAD / FREE SAS,
FR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:11:00 Win2K-f 170.51.129.72 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

05:13:00 Win2K-f 116.53.220.42 (CN.NET):
CHINANET YUNNAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 37 78ceaae025
[Firefox: 6 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

05:18:00 Win2K-f 59.104.25.114 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:570 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:05:20:00 Win2K-f 190.30.109.122 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. (DIAL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:05:23:00 Win2K-f 211.27.69.21 (IPRIMUS.NET.AU):
PRIMUS TELECOMMUNICATIONS,
HOBART, TASMANIA, AU. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:415 hits: 11-21 to 12-18] none[3] none:none
StarForce| none trace

T:05:26:00 Win2K-f 222.180.212.138 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:28:00 Win2K-f 190.30.109.122 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. (DIAL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

05:28:00 Win2K-f 219.86.202.98 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
TW:219.86.202.98:6590
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:30:00 Win2K-f 221.169.248.161 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
TW:221.169.248.161:5388
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:33:00 Win2K-f 190.227.178.183 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:38:00 Win2K-f 77.21.42.55 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:38:00 Win2K-f 190.3.92.194 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:40:00 Win2K-f 189.97.202.220 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

05:46:00 Win2K-f 211.27.69.21 (IPRIMUS.NET.AU):
PRIMUS TELECOMMUNICATIONS,
HOBART, TASMANIA, AU. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:415 hits: 11-21 to 12-18] none[3] none:none
StarForce| none trace

05:48:00 Win2K-f 117.69.68.56 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:05:50:00 Win2K-f 190.139.55.224 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:05:50:00 Win2K-f 190.220.78.237 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

05:53:00 Win2K-f 210.3.221.68 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:415 hits: 11-21 to 12-18] none[3] none:none
StarForce| none trace

T:05:55:00 Win2K-f 151.21.185.40 (21-151.LIBERO.IT):
FREE INTERNET DIAL-UP SERVICES,
FLORENCE, TOSCANA, IT. (DIAL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:02:00 Win2K-f 81.21.118.204 (MUERZNET.AT):
STADTWERKE MUERZZUSCHLAG GMBH,
AT. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:03:00 Win2K-f 94.101.137.114 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:12:00 Win2K-f 219.81.165.175 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:13:00 Win2K-f 150.101.19.71 (ON.NET):
TPA,
ADELAIDE, SOUTH AUSTRALIA, AU. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:06:15:00 Win2K-f 208.30.24.8 (NEWYORKERBOILER.COM):
BURNHAM CORPORATION,
PERU, INDIANA, US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:17:00 Win2K-f 122.123.133.246 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:18:00 Win2K-f 24.141.89.178 (CGOCABLE.NET):
COGECO CABLE SOLUTIONS,
WINDSOR, ONTARIO, CA. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:22:00 Win2K-f 209.17.190.85 (GROUPTELECOM.NET):
ESECUREDATA,
SURREY, BRITISH COLUMBIA, CA. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:23:00 Win2K-f 24.141.89.178 (CGOCABLE.NET):
COGECO CABLE SOLUTIONS,
WINDSOR, ONTARIO, CA. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:28:00 Win2K-f 190.49.38.180 (COM.AR):
TELEFONICA DE ARGENTINA,
CIPOLLETTI, NEUQUEN, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:06:30:00 Win2K-f 114.47.51.150 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:35:00 Win2K-f 208.92.76.87 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 21 of 38 9c4ad5fe13
NEW none[3] none:none
StarForce| none trace

T:06:35:00 Win2K-f 114.105.17.75 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:06:37:00 Win2K-f 200.119.192.93 (COTAS.COM.BO):
COTAS LTDA,
SANTA CRUZ, SANTA CRUZ, BO. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:40:00 Win2K-f 212.37.172.59 (-):
INTRACOM,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:210 hits: 11-25 to 12-18] none[3] none:none
Armadillo| none trace

T:06:43:00 Win2K-f 190.105.21.113 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

06:45:00 Win2K-f 124.115.97.217 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:50:00 Win2K-f 117.65.43.21 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:56:00 Win2K-f 190.54.212.173 (CHILESAT.NET):
TELMEX SERVICIOS EMPRESARIALES S.A,
CL. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:210 hits: 11-25 to 12-18] none[3] none:none
Armadillo| none trace

T:06:58:00 Win2K-f 81.41.40.2 (RIMA-TDE.NET):
TELEFONICA DE ESPANA SAU,
ES. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

07:00:00 Win2K-f 114.47.51.150 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:01:00 Win2K-f 122.123.132.94 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:02:00 Win2K-f 201.253.30.24 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

07:14:00 Win2K-f 218.87.86.190 (163DATA.COM.CN):
CHINANET JIANGXI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:15:00 Win2K-f 84.75.192.66 (HISPEED.CH):
CABLECOMMAIN-NET,
ZURICH, ZURICH, CH. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:18:00 Win2K-f 219.86.192.64 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
TW:219.86.192.64:5448
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:18:00 Win2K-f 114.47.124.224 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:19:00 Win2K-f 122.120.213.168 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:20:00 Win2K-f 221.120.211.8 (-):
PAKISTAN TELECOMMUNICATION,
PK. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:07:24:00 Win2K-f 190.139.139.6 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:28:00 Win2K-f 190.139.139.6 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:29:00 Win2K-f 203.123.147.36 (PACIFIC.NET.IN):
PACIFIC INTERNET LIMITED,
IN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:31:00 Win2K-f 122.118.242.105 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:32:00 Win2K-f 71.114.66.19 (VERIZON.NET):
VERIZON INTERNET SERVICES INC,
WOODBRIDGE, VIRGINIA, US. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:32:00 Win2K-f 118.232.50.36 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:37:00 Win2K-f 118.232.50.36 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:37:00 Win2K-f 77.23.54.1 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:70 hits: 11-29 to 12-18] none[3] none:none
UPX| none trace

T:07:48:00 Win2K-f 221.120.211.8 (-):
PAKISTAN TELECOMMUNICATION,
PK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:07:49:00 Win2K-f 114.44.228.32 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:57:00 Win2K-f 200.110.165.57 (-):
COOP. TELEFONICA DE CAPITN BERMDEZ,
AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

07:58:00 Win2K-f 219.86.225.102 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:03:00 Win2K-f 193.90.55.8 (BLUECOM.NO):
CATCH COMMUNCIATIONS ASA,
SON, AKERSHUS, NO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:06:00 Win2K-f 116.90.103.215 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
4 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:09:00 Win2K-f 190.105.21.113 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:08:12:00 Win2K-f 190.97.153.211 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:14:00 Win2K-f 212.104.169.114 (BUSINESS.TELECOMITALIA.IT):
PROVIDER LOCAL REGISTRY,
IT. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:21:00 Win2K-f 190.48.114.162 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:08:23:00 Win2K-f 203.70.191.232 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:23:00 Win2K-f 190.188.145.65 (NET.AR):
PRIMA S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

08:24:00 Win2K-f 61.59.153.56 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:26:00 Win2K-f 123.195.195.50 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:31:00 Win2K-f 87.17.176.114 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA S.P.A. TIN EASY LITE,
IT. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:08:36:00 Win2K-f 190.55.183.243 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

08:37:00 Win2K-f 87.17.176.114 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA S.P.A. TIN EASY LITE,
IT. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:08:39:00 Win2K-f 190.51.188.154 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

08:40:00 Win2K-f 82.2.198.1 (NTL.COM):
NTLI,
LONDON, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:118 hits: 11-20 to 12-18] none[3] none:none
StarForce| none trace

T:08:41:00 Win2K-f 82.2.198.1 (NTL.COM):
NTLI,
LONDON, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:118 hits: 11-20 to 12-18] none[3] none:none
StarForce| none trace

08:41:00 Win2K-f 59.104.30.179 (SEED.NET.TW):
DIGITAL UNITED I,
TAOYUAN, T'AI-WAN, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:51:00 Win2K-f 124.81.99.167 (CARSURIN.COM):
PT INDOSAT MEGA MEDIA,
ID. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:53:00 Win2K-f 200.43.189.7 (COM.AR):
KNETT,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 9 of 38 e7c52f2640
NEW none[3] none:none
UPX| none trace

T:08:56:00 Win2K-f 59.104.30.179 (SEED.NET.TW):
DIGITAL UNITED I,
TAOYUAN, T'AI-WAN, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:58:00 Win2K-f 61.59.153.56 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:01:00 Win2K-f 220.132.161.217 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:415 hits: 11-21 to 12-18] none[3] none:none
StarForce| none trace

09:06:00 Win2K-f 212.104.169.114 (BUSINESS.TELECOMITALIA.IT):
PROVIDER LOCAL REGISTRY,
IT. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:07:00 Win2K-f 201.23.205.98 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:09:08:00 Win2K-f 221.5.234.63 (CECCOILS.COM):
CNC GROUP CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:09:15:00 Win2K-f 94.75.200.82 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:19:00 Win2K-f 89.43.83.81 (-):
SC CENTURY NET SRL,
RO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:20:00 Win2K-f 190.51.116.225 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

09:20:00 Win2K-f 190.51.188.154 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:09:23:00 Win2K-f 60.175.250.187 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:28:00 Win2K-f 189.53.52.34 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:28:00 Win2K-f 202.39.251.82 (HINET.NET):
DATA COMMUNICATION BUSINESS GROUP,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:31:00 Win2K-f 203.67.50.25 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:35:00 Win2K-f 86.38.95.233 (ERDVES.LT):
SC LITHUANIAN RADIO AND TV CENTER,
NERINGA, KLAIPEDOS APSKRITIS, LT. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:39:00 Win2K-f 194.54.39.193 (KABLONET.COM.TR):
CABLE OPERATOR NETWORK OF TURK TELEKOM,
ANKARA, ANKARA, TR. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:39:00 Win2K-f 59.117.127.14 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:41:00 Win2K-f 59.125.209.80 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:41:00 Win2K-f 200.122.235.144 (INTERCABLE.NET.CO):
TV CABLE PROMISION S.A,
BUCARAMANGA, SANTANDER, CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:09:46:00 Win2K-f 59.117.127.14 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:46:00 Win2K-f 186.9.164.236 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

09:51:00 Win2K-f 195.22.103.16 (ICEHOSTING.NL):
INTERRACKS C.V,
NL. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

09:56:00 Win2K-f 190.55.157.127 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:09:59:00 Win2K-f 122.120.128.112 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:01:00 Win2K-f 61.61.55.193 (KGEX.COM.TW):
KGEX.COM,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:04:00 Win2K-f 190.80.243.58 (CODETEL.NET.DO):
VERIZON DOMINICANA,
SANTO DOMINGO, DISTRITO NACIONAL, DO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
190.80.243.58:9030
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:05:00 Win2K-f 190.137.136.131 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:06:00 Win2K-f 190.3.75.74 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:11:00 Win2K-f 193.90.55.8 (BLUECOM.NO):
CATCH COMMUNCIATIONS ASA,
SON, AKERSHUS, NO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:12:00 Win2K-f 190.8.195.101 (-):
UNION DE CABLEOPERADORES DEL CENTRO CABLECENTRO S.A,
CO. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:17:00 Win2K-f 170.51.136.249 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:570 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

10:21:00 Win2K-f 94.240.210.200 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:21:00 Win2K-f 195.22.103.16 (ICEHOSTING.NL):
INTERRACKS C.V,
NL. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

10:21:00 Win2K-f 203.67.28.73 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:22:00 Win2K-f 203.67.50.25 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:30:00 Win2K-f 93.81.43.1 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:30:00 Win2K-f 190.140.100.5 (CABLEONDA.NET):
CABLE ONDA,
PANAMA CITY, PANAMA, PA. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:32:00 Win2K-f 116.4.82.237 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:36:00 Win2K-f 88.113.206.213 (ELISA-LAAJAKAISTA.FI):
ELISA-ADSL,
JOENSUU, ITA-SUOMEN LAANI, FI. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

10:41:00 Win2K-f 190.80.241.170 (CODETEL.NET.DO):
VERIZON DOMINICANA,
SANTO DOMINGO, DISTRITO NACIONAL, DO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:42:00 Win2K-f 83.97.166.83 (CM-83-97-128-10.TELECABLE.ES):
TELECABLE,
GIJON, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:70 hits: 11-29 to 12-18] none[3] none:none
UPX| none trace

T:10:46:00 Win2K-f 200.87.119.2 (ORION.PNUD.BO):
ENTEL S.A. - ENTELNET,
LA PAZ, LA PAZ, BO. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

10:46:00 Win2K-f 190.8.195.101 (-):
UNION DE CABLEOPERADORES DEL CENTRO CABLECENTRO S.A,
CO. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:47:00 Win2K-f 122.126.130.105 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

10:51:00 Win2K-f 212.163.165.244 (-):
CONCERT,
PARIS, ILE-DE-FRANCE, FR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:570 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

10:54:00 Win2K-f 190.140.100.5 (CABLEONDA.NET):
CABLE ONDA,
PANAMA CITY, PANAMA, PA. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:58:00 Win2K-f 38.116.132.19 (COGENTCO.COM):
PERFORMANCE SYSTEMS INTERNATIONAL INC,
DENVER, COLORADO, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:415 hits: 11-21 to 12-18] none[3] none:none
StarForce| none trace

T:10:59:00 Win2K-f 190.97.158.244 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:01:00 Win2K-f 61.216.248.18 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

11:01:00 Win2K-f 190.55.183.110 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

11:06:00 Win2K-f 201.252.208.252 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:11:08:00 Win2K-f 61.216.248.18 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

11:12:00 Win2K-f 189.43.21.212 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
189.43.21.212:9865
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:118 hits: 11-20 to 12-18] none[3] none:none
StarForce| none trace

T:11:13:00 Win2K-f 59.120.76.102 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:16:00 Win2K-f 211.74.54.228 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:19:00 Win2K-f 87.246.31.176 (-):
TRIPLE PLAY CLIENT OF CABLETEL PLC IN SHUMEN,
BG. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 9 of 38 e1a2e3980d
[Firefox: 3 hits: 12-05 to 12-16] none[3] none:none
UPX| none trace

T:11:25:00 Win2K-f 200.21.12.50 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
CO. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:11:28:00 Win2K-f 208.65.156.162 (-):
OMNI BUSINESS SOLUTIONS,
ST. GEORGE, UTAH, US. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

11:28:00 Win2K-f 114.47.210.120 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:31:00 Win2K-f 221.127.138.200 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:35:00 Win2K-f 61.217.130.12 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:36:00 Win2K-f 219.81.203.208 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:36:00 Win2K-f 221.127.138.200 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:36:00 Win2K-f 200.21.12.50 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:11:40:00 Win2K-f 190.26.41.231 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:45:00 Win2K-f 89.29.137.63 (NOT-ASSIGNED.TVALMANSA.ES):
TV ALMANSA ALMANSA INFRAESTRUCTURE/ACCESS,
ES. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:45:00 Win2K-f 200.7.178.102 (-):
COOP. ELCT. Y DE OBRAS Y SERV. PBLICO LTDA DE JUSTINIANO POSSE,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:11:50:00 Win2K-f 190.173.221.33 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:11:55:00 Win2K-f 219.81.203.208 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:56:00 Win2K-f 124.81.99.167 (CARSURIN.COM):
PT INDOSAT MEGA MEDIA,
ID. (100Mbps) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:00:00 Win2K-f 89.29.137.63 (NOT-ASSIGNED.TVALMANSA.ES):
TV ALMANSA ALMANSA INFRAESTRUCTURE/ACCESS,
ES. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:02:00 Win2K-f 200.108.200.245 (DEDICADO.COM.UY):
TECNOWIND S.A,
LIMA, LIMA, PE. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:70 hits: 11-29 to 12-18] none[3] none:none
UPX| none trace

12:05:00 Win2K-f 200.40.203.243 (ADINET.COM.UY):
SERVICIO INTERNET CLASS,
MONTEVIDEO, MONTEVIDEO, UY. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:05:00 Win2K-f 118.232.22.90 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:10:00 Win2K-f 122.125.2.72 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:12:10:00 Win2K-f 190.139.130.88 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

12:18:00 Win2K-f 190.139.130.88 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:12:20:00 Win2K-f 200.40.203.243 (ADINET.COM.UY):
SERVICIO INTERNET CLASS,
MONTEVIDEO, MONTEVIDEO, UY. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:20:00 Win2K-f 200.117.95.51 (NET.AR):
APOLO -GOLD-TELECOM-PER,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

12:23:00 Win2K-f 203.67.50.25 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
TW:203.67.50.25:4329
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:28:00 Win2K-f 114.46.161.224 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:30:00 Win2K-f 200.117.95.51 (NET.AR):
APOLO -GOLD-TELECOM-PER,
AR. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:12:30:00 Win2K-f 114.44.99.10 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:35:00 Win2K-f 78.34.232.29 (NETCOLOGNE.DE):
NETCOLOGNE,
DE. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:38:00 Win2K-f 122.116.5.74 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:38:00 Win2K-f 190.24.77.173 (ETB.NET.CO):
ETB - COLOMBIA,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:12:42:00 Win2K-f 200.125.8.180 (ANTELDATA.NET.UY):
ADMINISTRACION NACIONAL DE TELECOMUNICACIONES,
MONTEVIDEO, MONTEVIDEO, UY. (DIAL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:43:00 Win2K-f 186.9.47.78 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:49:00 Win2K-f 200.87.207.108 (ORION.PNUD.BO):
ENTEL S.A. - ENTELNET,
BO. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:12:52:00 Win2K-f 93.80.116.138 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:52:00 Win2K-f 190.136.245.203 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:12:57:00 Win2K-f 200.125.12.199 (ANTELDATA.NET.UY):
ADMINISTRACION NACIONAL DE TELECOMUNICACIONES,
MONTEVIDEO, MONTEVIDEO, UY. (DIAL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

12:58:00 Win2K-f 190.50.203.206 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:13:02:00 Win2K-f 78.84.47.119 (MICROLINK.LV):
TELEKOM,
RIGA, RIGA, LV. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 fcb4920986
[Firefox:26 hits: 11-21 to 12-17] none[3] none:none
UPX| none trace

13:03:00 Win2K-f 201.221.15.28 (DEDICADO.COM.UY):
TECNOWIND S.A,
MONTEVIDEO, MONTEVIDEO, UY. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

13:03:00 Win2K-f 122.121.154.25 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:07:00 Win2K-f 61.57.97.210 (LSC.NET.TW):
TBCOM-NET,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:08:00 Win2K-f 118.232.22.90 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:11:00 Win2K-f 201.234.15.208 (COM.AR):
VER TV S.A,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:13:12:00 Win2K-f 190.128.73.32 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:570 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

13:16:00 Win2K-f 121.72.254.141 (TELSTRACLEAR.NET):
TELSTRACLEAR CHRISTCHURCH CABLE CUSTOMERS,
WELLINGTON, WELLINGTON, NZ. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:13:17:00 Win2K-f 77.21.225.57 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:20:00 Win2K-f 94.72.135.15 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:23:00 Win2K-f 122.121.154.25 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:28:00 Win2K-f 114.44.99.10 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:28:00 Win2K-f 190.69.16.98 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:30:00 Win2K-f 94.81.234.67 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:33:00 Win2K-f 219.95.187.34 (TM.NET.MY):
ADSL-STREAMYX-TMNET,
JOHOR BAHARU, JOHOR, MY. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:570 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

13:38:00 Win2K-f 196.20.17.67 (NWR.COM.NA):
AFRINIC,
WINDHOEK, KHOMAS, NA. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:38:00 Win2K-f 190.50.203.206 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:13:47:00 Win2K-f 70.65.241.117 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
NANAIMO, BRITISH COLUMBIA, CA. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:47:00 Win2K-f 190.3.30.120 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:48:00 Win2K-f 121.254.64.18 (TCOL.COM.TW):
MONAD DIGITNAMIC CORP,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:13:51:00 Win2K-f 190.55.181.210 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:13:53:00 Win2K-f 190.50.125.194 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

13:56:00 Win2K-f 200.127.0.65 (NET.AR):
PRIMA S.A,
BUENOS AIRES, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:13:59:00 Win2K-f 59.117.113.92 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:00:00 Win2K-f 121.254.64.18 (TCOL.COM.TW):
MONAD DIGITNAMIC CORP,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

14:01:00 Win2K-f 190.50.125.194 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:14:07:00 Win2K-f 91.66.243.178 (SUPERKABEL.DE):
KABEL DEUTSCHLAND BREITBAND SERVICE GMBH,
DE. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:210 hits: 11-25 to 12-18] none[3] none:none
Armadillo| none trace

14:09:00 Win2K-f 122.124.33.143 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:14:00 Win2K-f 85.95.132.84 (-):
PTKOM-NET,
RU. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

14:17:00 Win2K-f 123.204.52.173 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

14:17:00 Win2K-f 118.170.226.44 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:19:00 Win2K-f 201.253.21.156 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:14:19:00 Win2K-f 118.170.226.44 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:22:00 Win2K-f 201.234.138.218 (COM.AR):
IMPSAT ARGENTINA-ADSL,
AR. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

14:24:00 Win2K-f 96.48.163.119 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:210 hits: 11-25 to 12-18] none[3] none:none
Armadillo| none trace

T:14:27:00 Win2K-f 122.121.154.130 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:29:00 Win2K-f 190.172.241.198 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:14:34:00 Win2K-f 59.114.141.12 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:34:00 Win2K-f 190.128.38.22 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:39:00 Win2K-f 190.5.205.217 (EMTEL.NET.CO):
EMTEL S.A. E.S.P,
CO. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:14:39:00 Win2K-f 190.5.205.217 (EMTEL.NET.CO):
EMTEL S.A. E.S.P,
CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:14:44:00 Win2K-f 190.48.150.208 (COM.AR):
TELEFONICA DE ARGENTINA,
USHUAIA, ANTARTIDA E ISLAS DEL ATLAN TIERRA DEL FUEGO, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:48:00 Win2K-f 61.217.131.140 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:49:00 Win2K-f 190.48.150.208 (COM.AR):
TELEFONICA DE ARGENTINA,
USHUAIA, ANTARTIDA E ISLAS DEL ATLAN TIERRA DEL FUEGO, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:49:00 Win2K-f 94.81.234.67 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:53:00 Win2K-f 122.118.64.7 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:56:00 Win2K-f 220.243.122.44 (-):
ETRUNK NETWORK TELECOMUNICATION LTD,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:59:00 Win2K-f 78.40.231.110 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:01:00 Win2K-f 200.46.107.122 (PSINETPA.NET):
NET2NET CORP,
PANAMA CITY, PANAMA, PA. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:06:00 Win2K-f 201.236.210.116 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:13:00 Win2K-f 190.84.220.101 (CABLE.NET.CO):
TV CABLE S.A,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:15:13:00 Win2K-f 84.126.240.247 (ONO.COM):
PROVIDER LOCAL REGISTRY,
ES. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:15:14:00 Win2K-f 82.30.44.46 (NTL.COM):
NTL INFRASTRUCTURE - NOTTINGHAM,
STOKE ON TRENT, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:20:00 Win2K-f 190.90.108.103 (EQUITEL.COM.CO):
INTERNEXA S.A. E.S.P,
CO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 9 of 38 9877a58a9b
NEW none[3] none:none
StarForce| none trace

15:21:00 Win2K-f 170.51.134.223 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:70 hits: 11-29 to 12-18] none[3] none:none
UPX| none trace

T:15:26:00 Win2K-f 201.236.210.116 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:26:00 Win2K-f 81.73.143.98 (BUSINESS.TELECOMITALIA.IT):
TIWS,
IT. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:32:00 Win2K-f 190.128.55.232 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 37 4f88618d4f
[Firefox:53 hits: 11-29 to 12-18] none[3] none:none
UPX| none trace

T:15:33:00 Win2K-f 190.69.87.210 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
CO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:15:35:00 Win2K-f 190.90.108.103 (EQUITEL.COM.CO):
INTERNEXA S.A. E.S.P,
CO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

15:37:00 Win2K-f 190.48.148.201 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
NEW none[3] none:none
MEW| none trace

15:38:00 Win2K-f 190.50.102.116 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

15:38:00 Win2K-f 78.40.231.110 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:44:00 Win2K-f 190.128.9.116 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:570 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

15:46:00 Win2K-f 200.100.50.241 (TELESP.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DIAL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 37 4f88618d4f
[Firefox:53 hits: 11-29 to 12-18] none[3] none:none
UPX| none trace

T:15:48:00 Win2K-f 195.24.219.61 (-):
DATA COMMUNICATION AND INTERNATIONAL,
CM. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

15:49:00 Win2K-f 201.46.249.215 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:54:00 Win2K-f 208.1.230.101 (NETPIPE.COM):
INFINITY INFORMATION INC,
PACIFIC GROVE, CALIFORNIA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:58:00 Win2K-f 38.98.243.230 (COGENTCO.COM):
PERFORMANCE SYSTEMS INTERNATIONAL INC,
WASHINGTON, DISTRICT OF COLUMBIA, US. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:01:00 Win2K-f 190.137.151.75 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 bd35d4d98f
[Firefox:23 hits: 11-27 to 12-17] none[3] none:none
Armadillo| none trace

T:16:05:00 Win2K-f 201.46.249.215 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:06:00 Win2K-f 201.234.161.130 (COM.AR):
COOPERATIVA VILLA DEL ROSARIO (COOVILROS),
ROSARIO, SANTA FE, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:70 hits: 11-29 to 12-18] none[3] none:none
UPX| none trace

16:07:00 Win2K-f 114.137.37.197 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

16:09:00 Win2K-f 189.58.151.14 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

16:11:00 WinXP 172.130.6.229 (AOL.COM):
AMERICA ONLINE,
RESTON, VIRGINIA, US. (DSL) n/a US:microsoft.com 135 pcap raw alerts
ruleset other
110 lines Yeah : 1.3
profile none summary
tarball 30 of 33
29 of 33 3373948767
[Firefox:41 hits: 07-03 to 11-06]
c73f738c30
[Firefox:41 hits: 07-03 to 11-06] cd17602c34 [0]
4eeba8be6f[0] ASM:Graph
ASM:Graph
tElock|
Armadillo| lines=64
embedded dns
lines=91 trace
trace

T:16:13:00 Win2K-f 190.50.127.13 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

16:14:00 Win2K-f 208.29.184.218 (NEP.NET):
THE NORTH-EASTERN PENNSYLVANIA TELEPHONE COMPANY,
FOREST CITY, PENNSYLVANIA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

16:15:00 Win2K-f 220.138.105.24 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 fcb4920986
[Firefox:26 hits: 11-21 to 12-17] none[3] none:none
UPX| none trace

T:16:18:00 Win2K-f 61.60.216.55 (-):
YEONG JIA LEH CABLE TV CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:415 hits: 11-21 to 12-18] none[3] none:none
StarForce| none trace

16:19:00 Win2K-f 190.140.191.230 (CABLEONDA.NET):
CABLE ONDA,
PA. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:16:23:00 Win2K-f 201.236.228.83 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

16:24:00 Win2K-f 68.92.177.101 (VERNONCOLLEGE.EDU):
VERNON REGIONAL JUNIOR COLLEGE,
DALLAS, TEXAS, US. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:16:33:00 Win2K-f 190.208.121.132 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:33:00 Win2K-f 219.127.218.24 (-):
DOOGA CO. LTD,
JP. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:34:00 Win2K-f 212.63.206.73 (-):
SPACEDUMP,
SE. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:38:00 Win2K-f 190.141.200.13 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:43:00 Win2K-f 208.1.230.101 (NETPIPE.COM):
INFINITY INFORMATION INC,
PACIFIC GROVE, CALIFORNIA, US. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:44:00 Win2K-f 201.172.149.172 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:16:48:00 Win2K-f 173.45.67.129 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:49:00 Win2K-f 38.99.165.240 (COGENTCO.COM):
PERFORMANCE SYSTEMS INTERNATIONAL INC,
TORONTO, ONTARIO, CA. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:50:00 WinXP 67.10.90.237 (RR.COM):
ROAD RUNNER HOLDCO LLC,
HOUSTON, TEXAS, US. (100Mbps) 194.109.11.65:1023 NL:0x80.online-software.org
NL:0x80.martiansong.com
:0xff.memzero.info
:0x80.my-secure.name
NL:0x80.goingformars.com
NL:0x80.my1x1.com
NL:194.109.11.65:6556 135 pcap raw alerts
ruleset other
1444 lines Yeah : 1.8
profile none summary
tarball 32 of 32 15d4d85dc0
[Firefox:14 hits: 06-10 to 10-30] 4c95ae4b3d [0] ASM:Graph
StarForce| lines=212
embedded dns trace

16:53:00 Win2K-f 24.68.224.51 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
CALGARY, ALBERTA, CA. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:16:53:00 Win2K-f 203.70.159.178 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:54:00 Win2K-f 173.45.67.129 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:59:00 Win2K-f 200.94.130.67 (ALESTRA.NET.MX):
ALESTRA,
MX. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
MX:200.94.130.67:4077
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:06:00 Win2K-f 86.22.130.67 (NTL.COM):
NTL INFRASTRUCTURE - MIDDLESBROUGH,
UK. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:118 hits: 11-20 to 12-18] none[3] none:none
StarForce| none trace

T:17:13:00 Win2K-f 193.69.143.127 (BLUECOM.NO):
CATCH COMMUNCIATIONS ASA,
NO. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:17:15:00 Win2K-f 221.125.170.80 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HK. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:16:00 Win2K-f 38.117.93.129 (COGENTCO.COM):
PERFORMANCE SYSTEMS INTERNATIONAL INC,
US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

17:16:00 Win2K-f 221.125.170.80 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:21:00 Win2K-f 200.91.223.54 (IFX.NET.CO):
DOBLE CLICK,
CO. (100Mbps) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:23:00 Win2K-f 220.138.105.24 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 fcb4920986
[Firefox:26 hits: 11-21 to 12-17] none[3] none:none
UPX| none trace

T:17:23:00 Win2K-f 190.51.245.54 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

17:30:00 Win2K-f 193.69.143.127 (BLUECOM.NO):
CATCH COMMUNCIATIONS ASA,
NO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

17:31:00 Win2K-f 186.9.177.29 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:31:00 Win2K-f 58.252.107.151 (CNCNET.NET):
CNC GROUP GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:36:00 Win2K-f 114.231.142.165 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:37:00 Win2K-f 59.114.133.31 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:39:00 Win2K-f 201.172.149.172 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:17:42:00 Win2K-f 203.70.255.68 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:46:00 Win2K-f 203.70.255.68 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:46:00 Win2K-f 218.13.141.138 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:51:00 Win2K-f 58.252.107.151 (CNCNET.NET):
CNC GROUP GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:52:00 Win2K-f 201.254.79.77 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:01:00 Win2K-f 201.234.162.75 (COM.AR):
COOPERATIVA VILLA DEL ROSARIO (COOVILROS),
ROSARIO, SANTA FE, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:70 hits: 11-29 to 12-18] none[3] none:none
UPX| none trace

18:01:00 Win2K-f 118.171.173.107 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:06:00 Win2K-f 190.157.80.146 (CABLE.NET.CO):
TV CABLE S.A,
CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:09:00 Win2K-f 190.6.178.124 (ERT.COM.CO):
EMPRESA REGIONAL DE TELECOMUNICACIONES,
CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

18:11:00 Win2K-f 124.112.234.46 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:415 hits: 11-21 to 12-18] none[3] none:none
StarForce| none trace

T:18:12:00 Win2K-f 124.112.234.46 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:415 hits: 11-21 to 12-18] none[3] none:none
StarForce| none trace

T:18:14:00 Win2K-f 67.159.45.225 (JILLYRED.NET):
FDC SERVERS.NET LLC,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:16:00 Win2K-f 212.12.3.188 (TULA.NET):
TULATELECOM,
RU. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:16:00 Win2K-f 190.6.178.124 (ERT.COM.CO):
EMPRESA REGIONAL DE TELECOMUNICACIONES,
CO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

18:21:00 Win2K-f 221.235.87.118 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
HUBEI, HUBEI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 bd35d4d98f
[Firefox:23 hits: 11-27 to 12-17] none[3] none:none
Armadillo| none trace

T:18:22:00 Win2K-f 190.137.54.48 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:29:00 Win2K-f 116.59.8.196 (-):
MOBILE BUSINESS GROUP CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:30:00 Win2K-f 114.121.75.15 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:111 hits: 11-26 to 12-18] none[3] none:none
Armadillo| none trace

18:30:00 Win2K-f 116.59.8.196 (-):
MOBILE BUSINESS GROUP CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:31:00 Win2K-f 122.116.126.33 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:36:00 Win2K-f 208.35.59.126 (AERONETPR.COM):
AERONET WIRELESS,
LAKE JACKSON, TEXAS, US. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:40:00 Win2K-f 186.12.15.54 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:18:42:00 Win2K-f 187.31.5.11 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:43:00 Win2K-f 125.16.72.5 (59.AIRTELBROADBAND.IN):
BHARTI TELEVENTURES LIMITED A/C ABTS MP,
BHOPAL, MADHYA PRADESH, IN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:46:00 Win2K-f 200.117.152.1 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:210 hits: 11-25 to 12-18] none[3] none:none
Armadillo| none trace

18:50:00 Win2K-f 201.244.194.20 (ETB.NET.CO):
ETB - COLOMBIA,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:18:51:00 Win2K-f 190.136.37.44 (-):
TELECOM-CEB,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 10 of 38 8b6560d2fd
NEW none[3] none:none
UPX| none trace

18:53:00 Win2K-f 114.42.4.5 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:56:00 Win2K-f 186.12.15.54 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

19:01:00 Win2K-f 58.68.77.67 (-):
DISHNET WIRELESS LTD INDIA,
IN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:415 hits: 11-21 to 12-18] none[3] none:none
StarForce| none trace

T:19:01:00 Win2K-f 207.75.209.12 (MI.US):
EASTERN UPPER PENINSULA ISD,
MACKINAC ISLAND, MICHIGAN, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset lanman
http
27 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:07:00 Win2K-f 118.74.26.86 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:10:00 Win2K-f 84.119.9.140 (SWIPNET.SE):
PROVIDER LOCAL REGISTRY,
SE. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:11:00 Win2K-f 123.195.198.66 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:12:00 Win2K-f 220.133.218.211 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:24:00 Win2K-f 221.234.151.103 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
HUBEI, HUBEI, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
GB:www.getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:28:00 Win2K-f 124.8.229.229 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:28:00 Win2K-f 59.126.41.216 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a 445 pcap raw alerts
ruleset http
1 line Argh : 0.3
profile none summary
tarball none none none none none none none

T:19:31:00 Win2K-f 89.19.14.66 (CIZGIBILGISAYAR.COM):
CIZGI BILGISAYAR SISTEMLERI SAN. TIC. LTD. STI,
TR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:31:00 Win2K-f 200.87.49.34 (ORION.PNUD.BO):
ENTEL S.A. - ENTELNET,
SANTA CRUZ, SANTA CRUZ, BO. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:19:36:00 Win2K-f 119.141.117.89 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:39:00 Win2K-f 201.254.94.87 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:415 hits: 11-21 to 12-18] none[3] none:none
StarForce| none trace

19:42:00 Win2K-f 91.102.160.163 (ATOLYEWEB.NET):
DATAFON ILETISIM A.S,
TR. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:43:00 Win2K-f 116.9.98.77 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
NANNING, GUANGXI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:45:00 Win2K-f 190.30.136.206 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:19:48:00 Win2K-f 190.128.41.42 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

19:53:00 Win2K-f 173.45.67.206 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:56:00 Win2K-f 60.49.36.60 (TM.NET.MY):
TELEKOM MALAYSIA BERHAD,
KUALA LUMPUR, WILAYAH PERSEKUTUAN, MY. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:56:00 Win2K-f 65.85.46.94 (DSL.NET):
DSL.NET INC,
WALLINGFORD, CONNECTICUT, US. (100Mbps) n/a US:microsoft.com 135 pcap raw alerts
ruleset other
110 lines Yeah : 1.3
profile none summary
tarball 33 of 38
35 of 38 6dea646ad4
NEW
81b606082f
NEW 0341c6090a [0]
d5b69b4350[0] ASM:Graph
ASM:Graph
Armadillo|
tElock| lines=91
lines=64
embedded dns trace
trace

T:19:58:00 Win2K-f 61.216.113.66 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:59:00 Win2K-f 203.73.247.3 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:03:00 Win2K-f 61.31.136.223 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:04:00 Win2K-f 203.73.247.3 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:08:00 Win2K-f 122.100.112.27 (UBBN.NET):
UNION BROADBAND NETWORK,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:08:00 Win2K-f 200.39.119.133 (MARCATEL.NET.MX):
MARCATEL,
MX. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:09:00 Win2K-f 189.97.204.43 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:14:00 Win2K-f 218.161.75.239 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:19:00 Win2K-f 207.75.209.12 (MI.US):
EASTERN UPPER PENINSULA ISD,
MACKINAC ISLAND, MICHIGAN, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:24:00 Win2K-f 170.51.19.22 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:26:00 Win2K-f 203.70.53.101 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:415 hits: 11-21 to 12-18] none[3] none:none
StarForce| none trace

T:20:33:00 Win2K-f 124.115.38.218 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:34:00 Win2K-f 24.109.73.121 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
EDMONTON, ALBERTA, CA. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

20:34:00 Win2K-f 203.70.148.110 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:34:00 Win2K-f 218.36.124.133 (KRLINE.NET):
KRLINE INTERNET SERVICE INC,
SEOUL, KYONGGI-DO, KR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:37:00 Win2K-f 61.31.136.223 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:38:00 Win2K-f 190.27.44.169 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:20:43:00 Win2K-f 125.113.100.14 (163DATA.COM.CN):
CHINANET-ZJ JINHUA NODE NETWORK,
CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:43:00 Win2K-f 122.126.142.213 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:20:48:00 Win2K-f 151.67.231.58 (38-151.NET24.IT):
IUNET-BNET,
IT. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

20:54:00 Win2K-f 78.110.175.31 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:570 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

20:55:00 Win2K-f 202.155.58.210 (BAYAN.COM.SG):
INDOSATM2 DEDICATED PLATINUM CUSTOMER,
JAKARTA, JAKARTA RAYA (DJAKARTA RAYA), ID. (100Mbps) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:57:00 Win2K-f 151.67.231.58 (38-151.NET24.IT):
IUNET-BNET,
IT. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

21:02:00 Win2K-f 116.111.185.20 (USER7-175.ENET.VN):
ELECTRIC TELECOMMUNICATION COMPANY,
VN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:03:00 Win2K-f 211.121.209.193 (ODN.AD.JP):
OPEN DATA NETWORK(JAPAN TELECOM CO. LTD.),
MISAWA, AOMORI, JP. (DIAL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:06:00 Win2K-f 116.111.185.20 (USER7-175.ENET.VN):
ELECTRIC TELECOMMUNICATION COMPANY,
VN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:07:00 Win2K-f 60.53.76.251 (TM.NET.MY):
TELEKOM MALAYSIA BERHAD,
KUALA LUMPUR, WILAYAH PERSEKUTUAN, MY. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:415 hits: 11-21 to 12-18] none[3] none:none
StarForce| none trace

T:21:08:00 Win2K-f 124.8.187.233 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:210 hits: 11-25 to 12-18] none[3] none:none
Armadillo| none trace

T:21:11:00 Win2K-f 190.27.44.169 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

21:12:00 Win2K-f 122.3.244.247 (PLDT.NET):
IPG,
PH. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:21:22:00 Win2K-f 190.68.112.99 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
CO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:24:00 Win2K-f 61.20.131.77 (-):
FAR EASTONE TELECOMMUNICATION CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:26:00 Win2K-f 201.172.185.132 (INTERCABLE.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MONTERREY, NUEVO LEON, MX. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

21:27:00 Win2K-f 122.123.1.42 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:27:00 Win2K-f 122.123.1.42 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:32:00 Win2K-f 117.43.196.195 (163DATA.COM.CN):
CHINANET JIANGXI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

21:35:00 Win2K-f 89.148.220.177 (PERM.RU):
FOR PPPOE CUSTOMERS,
RU. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:36:00 Win2K-f 89.148.220.177 (PERM.RU):
FOR PPPOE CUSTOMERS,
RU. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:37:00 Win2K-f 125.232.67.133 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:118 hits: 11-20 to 12-18] none[3] none:none
StarForce| none trace

21:38:00 Win2K-f 60.51.64.233 (TM.NET.MY):
TELEKOM MALAYSIA BERHAD,
SUNGAI PETANI, KEDAH, MY. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:48:00 Win2K-f 123.53.187.8 (163DATA.COM.CN):
CHINANET HENAN PROVINCE NETWORK,
HENAN, GUIZHOU, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:50 hits: 11-23 to 12-18] none[3] none:none
StarForce| none trace

T:21:48:00 Win2K-f 60.51.64.233 (TM.NET.MY):
TELEKOM MALAYSIA BERHAD,
SUNGAI PETANI, KEDAH, MY. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:52:00 Win2K-f 80.59.45.73 (RIMA-TDE.NET):
TELEFONICA DE ESPANA SAU,
ES. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:21:56:00 Win2K-f 201.250.190.254 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:57:00 Win2K-f 218.23.204.48 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
ANHUI, ANHUI, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:415 hits: 11-21 to 12-18] none[3] none:none
StarForce| none trace

21:58:00 Win2K-f 122.118.158.106 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:58:00 Win2K-f 123.53.187.8 (163DATA.COM.CN):
CHINANET HENAN PROVINCE NETWORK,
HENAN, GUIZHOU, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:50 hits: 11-23 to 12-18] none[3] none:none
StarForce| none trace

T:22:03:00 Win2K-f 80.59.45.73 (RIMA-TDE.NET):
TELEFONICA DE ESPANA SAU,
ES. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

22:05:00 Win2K-f 125.232.67.133 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:118 hits: 11-20 to 12-18] none[3] none:none
StarForce| none trace

T:22:06:00 Win2K-f 93.110.108.17 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:14:00 Win2K-f 122.118.158.106 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:15:00 Win2K-f 94.72.138.103 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 2 of 37 fcb4920986
[Firefox:26 hits: 11-21 to 12-17] none[3] none:none
UPX| none trace

T:22:16:00 Win2K-f 190.84.28.43 (CABLE.NET.CO):
TV CABLE S.A,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

22:23:00 Win2K-f 66.90.101.67 (ON-DEMAND-TECH.COM):
FDC SERVERS.NET LLC,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:22:24:00 Win2K-f 66.90.101.67 (ON-DEMAND-TECH.COM):
FDC SERVERS.NET LLC,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

22:25:00 Win2K-f 221.125.49.107 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:28:00 Win2K-f 190.84.28.43 (CABLE.NET.CO):
TV CABLE S.A,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
:checkip.dyndns.org
CO:190.84.28.43:7391
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:22:29:00 Win2K-f 60.53.173.121 (TM.NET.MY):
TELEKOM MALAYSIA BERHAD,
IPOH, PERAK, MY. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:30:00 Win2K-f 207.75.134.36 (WCCNET.ORG):
WASHTENAW COMMUNITY COLLEGE,
YPSILANTI, MICHIGAN, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:22:34:00 Win2K-f 24.68.224.51 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
CALGARY, ALBERTA, CA. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

22:37:00 Win2K-f 61.105.194.84 (KRLINE.NET):
KRNIC,
KR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:210 hits: 11-25 to 12-18] none[3] none:none
Armadillo| none trace

T:22:41:00 Win2K-f 124.10.0.60 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:42:00 Win2K-f 186.9.148.217 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:22:43:00 Win2K-f 186.9.148.217 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

T:22:46:00 Win2K-f 121.63.49.31 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
WUHAN, HUBEI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:47:00 Win2K-f 121.63.49.31 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
WUHAN, HUBEI, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:51:00 Win2K-f 59.125.107.30 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:210 hits: 11-25 to 12-18] none[3] none:none
Armadillo| none trace

22:52:00 Win2K-f 124.8.245.127 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:56:00 Win2K-f 124.8.245.127 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:02:00 Win2K-f 210.107.69.6 (-):
BORANET-NET,
KATHMANDU, BAGMATI, NP. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:02:00 Win2K-f 202.100.85.19 (-):
HOST TRUSTEESHIP,
LANZHOU, GANSU, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:439 hits: 11-30 to 12-18] none[3] none:none
StarForce| none trace

T:23:06:00 Win2K-f 61.217.152.197 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:08:00 Win2K-f 71.85.115.158 (CHARTER.COM):
CHARTER COMMUNICATIONS,
US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:12:00 Win2K-f 59.125.107.30 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:210 hits: 11-25 to 12-18] none[3] none:none
Armadillo| none trace

T:23:16:00 Win2K-f 89.149.250.54 (INTERNETSERVICETEAM.COM):
NETDIRECT,
DE. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:17:00 Win2K-f 59.125.4.221 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:21:00 Win2K-f 114.46.160.204 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1184 hits: 11-22 to 12-18] none[3] none:none
UPX| none trace

T:23:24:00 Win2K-f 61.216.44.163 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:26:00 Win2K-f 124.227.223.129 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:27:00 Win2K-f 70.70.42.36 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
CHILLIWACK, BRITISH COLUMBIA, CA. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:756 hits: 11-24 to 12-18] none[3] none:none
UPX| none trace

23:27:00 Win2K-f 124.8.238.81 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:27:00 Win2K-f 124.115.32.41 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:31:00 Win2K-f 62.2.254.54 (-):
8005 ZUERICH,
CH. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:32:00 Win2K-f 87.7.166.188 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA S.P.A. TIN EASY LITE,
CALTANISSETTA, SICILIA, IT. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:40:00 Win2K-f 90.151.251.69 (PERMONLINE.RU):
OJSC URALSVYAZINFORM,
RU. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:44:00 Win2K-f 211.91.100.62 (CNUNINET.NET):
CHINA UNITED TELECOMMUNICATIONS CORPORATION,
HEFEI, ANHUI, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:45:00 Win2K-f 86.123.136.34 (RDSNET.RO):
GDV SYSTEM S.R.L,
RO. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:46:00 Win2K-f 124.8.238.81 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:49:00 Win2K-f 94.76.206.134 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:55:00 Win2K-f 220.136.250.187 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:57:00 Win2K-f 94.76.206.134 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:58:00 Win2K-f 203.118.235.156 (-):
GRAND TAINAN TECHNOLOGY CO.LTD,
TAINAN, KAO-HSIUNG, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:58:00 Win2K-f 123.195.70.228 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:9765 hits: 11-20 to 12-18] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace