Multiperspective Malware Analysis Page

Welcome to the Cyber-TA
SRI's Multiperspective Malware Infection Analysis Page

UNCENSORED PAGE

<Click here: to download BotHunter>

23 December 2008
<prev> <next>

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Daily Summary Files: [DNS Lookups & Failed Connects] [ Attacker IPs ] [C&C Servers] [Binary Digests]
Cumulative Summary Files: [DNS Lookup Log] [Attacker IP Log] [C&C Server Log] [Antivirus Detection] [Code Segment Overlap]
[Behavioral Clusters] [Binary Digest Log]

[See Country Codes ]

Time
Victim
OS
Infection
Source
C&C
Server
DNS Lookups &
Failed Connects Infection
Port
Packet
Trace
Detection
Signatures
Infection
Chatter
BotHunter
Analysis
Behavioral
Cluster
Forensic
Logs
Antivirus
Labels
Packed Malware_Binary Unpacked egg.exe
Unpacked egg.asm
Packer PEID
Data Strings
Syscall Trace

T:00:07:00 Win2K-f 84.16.224.52 (INTERNETSERVICETEAM.COM):
NETDIREKT E.K,
DE. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:13:00 Win2K-f 67.159.45.213 (JILLYRED.NET):
FDC SERVERS.NET LLC,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:17:00 Win2K-f 221.127.199.112 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:18:00 Win2K-f 58.63.104.59 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:22:00 Win2K-f 125.230.13.96 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:24:00 Win2K-f 85.95.148.24 (COM.RU):
PORTTELEKOM LLC 9 STRELNIKOVA ST. AREA SUBSCRIBERS,
RU. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:26:00 Win2K-f 213.13.113.51 (STATIC-B3-113-10.TELEPAC.PT):
TELEPAC - COMUNICACOES INTERACTIVAS SA,
AVEIRO, AVEIRO, PT. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:28:00 Win2K-f 213.13.113.51 (STATIC-B3-113-10.TELEPAC.PT):
TELEPAC - COMUNICACOES INTERACTIVAS SA,
AVEIRO, AVEIRO, PT. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:28:00 Win2K-f 221.127.199.112 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:35:00 Win2K-f 219.71.235.6 (NVWTV.COM.TW):
HOSHIN GIGAMEDIA CENTER INC,
TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:35:00 Win2K-f 218.16.127.254 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

T:00:36:00 Win2K-f 84.126.84.134 (ONO.COM):
PROVIDER LOCAL REGISTRY,
ES. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:67.15.94.80:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

00:36:00 Win2K-f 88.203.209.145 (SPNET.NET):
SPNET,
BG. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:40:00 Win2K-f 61.57.72.133 (LSC.NET.TW):
TBCOM-NET,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:45:00 Win2K-f 118.160.239.157 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

00:47:00 Win2K-f 122.121.234.229 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:49:00 Win2K-f 200.42.211.93 (TRICOM.NET):
TRICOM,
SANTO DOMINGO, DISTRITO NACIONAL, DO. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

00:50:00 Win2K-f 114.47.118.78 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:50:00 Win2K-f 58.63.104.59 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:55:00 Win2K-f 212.79.96.52 (BIRCOM.COM):
OMURGA NSP SERVICES,
TR. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:55:00 Win2K-f 121.58.203.205 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:00:00 Win2K-f 186.9.191.48 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:00:00 Win2K-f 61.17.23.149 (VSNL.NET.IN):
VIDESH SANCHAR NIGAM LTD - INDIA,
COCHIN, KERALA, IN. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 37 17cf6a5252
[Firefox: 7 hits: 12-03 to 12-18] none[3] none:none
UPX| none trace

01:05:00 Win2K-f 60.251.143.200 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:05:00 Win2K-f 190.48.152.3 (COM.AR):
TELEFONICA DE ARGENTINA,
USHUAIA, ANTARTIDA E ISLAS DEL ATLAN TIERRA DEL FUEGO, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

01:10:00 Win2K-f 190.48.152.3 (COM.AR):
TELEFONICA DE ARGENTINA,
USHUAIA, ANTARTIDA E ISLAS DEL ATLAN TIERRA DEL FUEGO, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:01:11:00 Win2K-f 115.83.243.75 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:250 hits: 11-25 to 12-22] none[3] none:none
Armadillo| none trace

01:15:00 Win2K-f 61.17.23.149 (VSNL.NET.IN):
VIDESH SANCHAR NIGAM LTD - INDIA,
COCHIN, KERALA, IN. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

01:20:00 Win2K-f 121.58.203.205 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
9 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:20:00 Win2K-f 122.5.93.116 (163DATA.COM.CN):
CHINANET SHANDONG PROVINCE NETWORK,
JINAN, SHANDONG, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:20:00 Win2K-f 186.9.191.48 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:25:00 Win2K-f 195.91.84.2 (T-MOBILE.SK):
FLARION DYNAMIC PUBLIC IP POOL,
SK. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

01:28:00 Win2K-f 219.80.132.83 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:35:00 Win2K-f 59.124.104.244 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:40:00 Win2K-f 59.124.104.244 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
4 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:43:00 Win2K-f 124.104.200.174 (PLDT.NET):
CLAC7300I01_CONSUMER,
PH. n/a US:www.maxmind.com
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:45:00 Win2K-f 119.122.167.181 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:45:00 Win2K-f 217.59.166.34 (BUSINESS.TELECOMITALIA.IT):
COMUNE DI COLOBRARO,
IT. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:48:00 Win2K-f 60.251.146.36 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:50:00 Win2K-f 87.121.27.239 (NETERRA.NET):
NETERRAIP,
BG. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:150 hits: 11-26 to 12-22] none[3] none:none
Armadillo| none trace

T:01:51:00 Win2K-f 201.170.217.197 (TELNOR.NET):
TELEFONOS DEL NOROESTE S.A. DE C.V,
MX. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:463 hits: 11-21 to 12-22] none[3] none:none
StarForce| none trace

01:54:00 Win2K-f 219.126.64.74 (ICNTV.NE.JP):
ICHIHARA COMMUNITY NETWORK TV CO.LTD,
ICHIHARA, CHIBA, JP. n/a US:www.maxmind.com
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
9 lines Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

T:01:57:00 Win2K-f 219.126.64.74 (ICNTV.NE.JP):
ICHIHARA COMMUNITY NETWORK TV CO.LTD,
ICHIHARA, CHIBA, JP. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

01:59:00 Win2K-f 61.61.55.48 (KGEX.COM.TW):
KGEX.COM,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
GB:www.getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
9 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:02:00 Win2K-f 203.70.116.231 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:04:00 Win2K-f 217.20.112.128 (INTERNETSERVICETEAM.COM):
NETDIREKT E. K,
DE. 217.20.112.128:4142 US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 1.3
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

02:11:00 Win2K-f 124.10.227.94 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:16:00 Win2K-f 78.107.13.62 (CORBINA.NET):
INVESTELEKTROSVIAZ LTD,
RU. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:19:00 Win2K-f 114.47.39.93 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:20:00 Win2K-f 79.8.195.177 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA NET,
NAPOLI, CAMPANIA, IT. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:20:00 Win2K-f 190.48.119.170 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:23:00 Win2K-f 78.107.13.62 (CORBINA.NET):
INVESTELEKTROSVIAZ LTD,
RU. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:27:00 Win2K-f 59.111.119.12 (-):
RINGLINK TELECOM LTD,
SHENZHEN, GUANGDONG, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:02:29:00 Win2K-f 212.40.90.117 (-):
DRAVANET ADSL CUSTOMERS IP POOL,
HU. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:250 hits: 11-25 to 12-22] none[3] none:none
Armadillo| none trace

02:30:00 Win2K-f 200.115.173.11 (OPTYNEX.COM):
OPTYNEX TELECOM,
PA. 200.115.173.11:2954 200.115.173.11:1411 200.115.173.11:3664 200.115.173.11:2078 200.115.173.11:4047 200.115.173.11:2472 200.115.173.11:4730 200.115.173.11:3130 200.115.173.11:1561 200.115.173.11:3806 US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 1.3
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:02:34:00 Win2K-f 91.64.69.134 (-):
KABEL-DEUTSCHLAND-CUSTOMER-SERVICES,
'S-HERTOGENBOSCH, NOORD-BRABANT, NL. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:35:00 Win2K-f 212.40.90.117 (-):
DRAVANET ADSL CUSTOMERS IP POOL,
HU. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
9 lines Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:250 hits: 11-25 to 12-22] none[3] none:none
Armadillo| none trace

T:02:39:00 Win2K-f 61.11.35.213 (ETH.NET):
VIDESH SANCHAR NIGAM LTD - INDIA,
NEW DELHI, DELHI, IN. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:44:00 Win2K-f 125.86.242.1 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

02:46:00 Win2K-f 221.233.20.25 (-):
THE CHINANET NETWORK IN JINZHOU HUBEI PROVINCE,
HUBEI, HUBEI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
CN:221.233.20.25:8664
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:49:00 Win2K-f 123.195.196.222 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:54:00 Win2K-f 200.115.173.11 (OPTYNEX.COM):
OPTYNEX TELECOM,
PA. 200.115.173.11:2206 200.115.173.11:4578 200.115.173.11:3007 200.115.173.11:1469 200.115.173.11:3752 200.115.173.11:2192 200.115.173.11:4476 200.115.173.11:2949 200.115.173.11:1414 200.115.173.11:3713 US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 1.3
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

02:55:00 Win2K-f 218.23.218.120 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
ANHUI, ANHUI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:56:00 Win2K-f 80.26.140.234 (RIMA-TDE.NET):
TELEFONICA DE ESPANA SAU,
MURCIA, MURCIA, ES. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 8 of 37 0784acb08f
[Firefox: 3 hits: 11-21 to 11-29] none[3] none:none
UPX| none trace

T:02:57:00 Win2K-f 122.121.79.130 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:58:00 WinXP 79.163.186.113 (-):
IDEA,
PL. n/a HK:proxim.ircgalaxy.pl
HK:58.65.234.90:65520 445 pcap raw alerts
ruleset shell
ftp
14 lines Yeah : 1.3
profile none summary
tarball 36 of 39 43d054160f
NEW a81b968ac4 [0] ASM:Graph
none|none lines=125
embedded dns trace

03:01:00 Win2K-f 118.232.12.193 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:03:00 Win2K-f 218.23.218.120 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
ANHUI, ANHUI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:05:00 Win2K-f 189.109.26.139 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:250 hits: 11-25 to 12-22] none[3] none:none
Armadillo| none trace

03:09:00 Win2K-f 189.38.192.2 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:03:14:00 Win2K-f 123.195.56.126 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:21:00 Win2K-f 122.118.43.219 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:26:00 Win2K-f 212.79.96.52 (BIRCOM.COM):
OMURGA NSP SERVICES,
TR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:28:00 Win2K-f 81.21.118.48 (MUERZNET.AT):
STADTWERKE MUERZZUSCHLAG GMBH,
AT. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

03:29:00 Win2K-f 193.91.133.26 (BLUECOM.NO):
CATCH COMMUNCIATIONS ASA,
PORSGRUNN, TELEMARK, NO. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:29:00 Win2K-f 67.159.45.213 (JILLYRED.NET):
FDC SERVERS.NET LLC,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:32:00 Win2K-f 170.51.43.57 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:34:00 Win2K-f 190.220.94.116 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:03:36:00 Win2K-f 170.51.43.57 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:44:00 Win2K-f 87.59.117.142 (IP.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
DK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:48:00 Win2K-f 186.9.149.42 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:49:00 Win2K-f 82.83.185.151 (ARCOR-IP.NET):
ARCOR-DSL-NET,
DE. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:51:00 Win2K-f 123.195.38.181 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:52:00 Win2K-f 59.124.5.187 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:53:00 Win2K-f 125.224.59.74 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:53:00 Win2K-f 87.59.117.142 (IP.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
DK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:54:00 Win2K-f 123.204.80.213 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:01:00 Win2K-f 59.124.5.187 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:04:00 Win2K-f 77.79.86.106 (GRID.COM.TR):
GRID BILISIM TEKNOLOJILERI A.S,
ISTANBUL, ISTANBUL, TR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:04:00 Win2K-f 210.192.186.88 (TTN.NET):
TAIWAN TELECOMMUNICATION NETWORK SERVICES CO. LTD,
TAIPEI, T'AI-PEI, TW. (DSL) n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:04:14:00 Win2K-f 86.38.174.58 (ERDVES.LT):
SC LITHUANIAN RADIO AND TV CENTER,
LT. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:463 hits: 11-21 to 12-22] none[3] none:none
StarForce| none trace

04:18:00 Win2K-f 122.5.93.116 (163DATA.COM.CN):
CHINANET SHANDONG PROVINCE NETWORK,
JINAN, SHANDONG, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:19:00 Win2K-f 71.105.79.104 (VERIZON.NET):
VERIZON INTERNET SERVICES INC,
LOS ANGELES, CALIFORNIA, US. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:19:00 Win2K-f 122.124.32.54 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:19:00 Win2K-f 71.105.79.104 (VERIZON.NET):
VERIZON INTERNET SERVICES INC,
LOS ANGELES, CALIFORNIA, US. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:26:00 Win2K-f 201.216.216.42 (IPLANNETWORKS.NET):
NSS S.A,
ROSARIO, SANTA FE, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:04:29:00 Win2K-f 61.20.134.20 (-):
FAR EASTONE TELECOMMUNICATION CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:30:00 Win2K-f 124.123.85.252 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

T:04:34:00 Win2K-f 59.116.201.45 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:36:00 Win2K-f 59.124.104.244 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:39:00 Win2K-f 222.85.16.64 (163DATA.COM.CN):
CHINANET HENAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:04:39:00 Win2K-f 190.30.243.56 (NET.AR):
INFRACOM DE INFRAESTRUCTURAS S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:40:00 Win2K-f 59.111.119.12 (-):
RINGLINK TELECOM LTD,
SHENZHEN, GUANGDONG, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

04:44:00 Win2K-f 122.124.32.54 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:47:00 Win2K-f 87.121.14.11 (-):
NETERRA-TELECABLENET-NET,
BG. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:150 hits: 11-26 to 12-22] none[3] none:none
Armadillo| none trace

T:04:48:00 Win2K-f 87.121.14.11 (-):
NETERRA-TELECABLENET-NET,
BG. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:150 hits: 11-26 to 12-22] none[3] none:none
Armadillo| none trace

T:04:49:00 Win2K-f 123.108.248.95 (-):
INTERNET SERVICE PROVIDER,
KH. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:59:00 Win2K-f 216.74.29.108 (HOSTING.COM):
HOSTING.COM INC,
LOUISVILLE, KENTUCKY, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:04:00 Win2K-f 78.3.97.15 (T-COM.HR):
T-COM CROATIA INTERNET NETWORK,
ZAGREB, GRAD ZAGREB, HR. (DSL) n/a 445 pcap raw alerts
ruleset http
1 line Argh : 0.3
profile none summary
tarball none none none none none none none

05:04:00 Win2K-f 122.121.160.10 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:04:00 Win2K-f 59.116.201.45 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:06:00 Win2K-f 216.74.29.108 (HOSTING.COM):
HOSTING.COM INC,
LOUISVILLE, KENTUCKY, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:14:00 Win2K-f 190.220.127.74 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

05:14:00 Win2K-f 58.42.9.184 (AGENT1.GZ.CN):
CHINANET GUIZHOU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

05:16:00 Win2K-f 81.98.101.185 (NTL.COM):
NTL INFRASTRUCTURE - LEICESTER,
BRACKNELL, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:16:00 Win2K-f 122.118.47.151 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:16:00 Win2K-f 218.0.207.237 (163DATA.COM.CN):
CHINANET-ZJ HANGZHOU NODE NETWORK,
HANGZHOU, ZHEJIANG, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:21:00 Win2K-f 122.121.160.10 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:21:00 Win2K-f 71.4.24.42 (REZMAIL.NET):
NOEL COMMUNICATIONS INC,
NAPLES, FLORIDA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

05:26:00 Win2K-f 200.81.218.99 (COM.AR):
ERTACH S.A,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:28:00 Win2K-f 221.127.197.30 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:31:00 Win2K-f 221.10.220.184 (SHUZG.COM):
CNC GROUP SICHUAN PROVINCE NETWORK,
CHENGDU, SICHUAN, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:31:00 Win2K-f 61.217.186.244 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:36:00 Win2K-f 186.9.34.46 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:41:00 Win2K-f 78.110.166.102 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:89 hits: 11-29 to 12-22] none[3] none:none
UPX| none trace

T:05:45:00 Win2K-f 119.19.8.6 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

05:46:00 Win2K-f 203.57.80.71 (-):
WARATAH WYNYARD COUNCIL,
WYNYARD, TASMANIA, AU. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:48:00 Win2K-f 222.39.204.147 (HERBALQC.COM):
CHINA RAILWAY TELECOMMUNICATIONS CENTER,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:05:51:00 Win2K-f 121.247.66.46 (VSNL.NET.IN):
VIDESH SANCHAR NIGAM LTD - INDIA,
PUNE, MAHARASHTRA, IN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

05:51:00 Win2K-f 122.120.46.249 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:51:00 Win2K-f 186.9.34.46 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:56:00 Win2K-f 119.72.21.5 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

05:56:00 Win2K-f 218.83.241.242 (163DATA.COM.CN):
CHINANET SHANGHAI PROVINCE NETWORK,
SHANGHAI, SHANGHAI, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:01:00 Win2K-f 58.42.5.154 (AGENT1.GZ.CN):
CHINANET GUIZHOU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:06:05:00 Win2K-f 189.62.132.118 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:06:11:00 Win2K-f 203.57.80.71 (-):
WARATAH WYNYARD COUNCIL,
WYNYARD, TASMANIA, AU. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 12 of 39 ca4cee3fcf
NEW none[3] none:none
UPX| none trace

T:06:11:00 Win2K-f 170.51.73.179 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:89 hits: 11-29 to 12-22] none[3] none:none
UPX| none trace

06:11:00 Win2K-f 122.118.47.151 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:12:00 Win2K-f 87.219.116.150 (DYNAMIC.JAZZTEL.ES):
JAZZTEL TRIPLE PLAY SERVICES,
BARCELONA, CATALUñA, ES. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 4e533978e1
[Firefox: 2 hits: 11-21 to 11-29] none[3] none:none
UPX| none trace

T:06:16:00 Win2K-f 76.192.84.94 (-):
SALOME ROY,
PLANO, TEXAS, US. (100Mbps) n/a 445 pcap raw alerts
ruleset http
1 line Argh : 0.3
profile none summary
tarball none none none none none none none

06:19:00 Win2K-f 187.8.48.114 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:26:00 Win2K-f 122.120.46.249 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:26:00 Win2K-f 212.106.50.147 (-):
TWELVENET,
UK. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:28:00 Win2K-f 189.62.139.221 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

06:30:00 Win2K-f 189.36.172.2 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:06:31:00 Win2K-f 190.55.157.102 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:31:00 Win2K-f 88.29.5.146 (RIMA-TDE.NET):
TELEFONICA MOVILES ESPANA (NCC#2007041930),
ES. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

06:36:00 Win2K-f 78.59.186.54 (ZEBRA.LT):
LIETUVOS,
LT. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:41:00 Win2K-f 78.59.186.54 (ZEBRA.LT):
LIETUVOS,
LT. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:43:00 Win2K-f 121.70.225.219 (-):
BEIJING KUANDAITONG TELECOM TECHNOLOGY CO. LTD,
BEIJING, GUANGDONG, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:43:00 Win2K-f 189.62.139.221 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:06:48:00 Win2K-f 59.124.91.181 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:06:51:00 Win2K-f 203.201.172.147 (-):
PT. DYVIACOM INTRABUMI TBK,
ID. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:51:00 Win2K-f 121.254.110.2 (TCOL.COM.TW):
MONAD DIGITNAMIC CORP,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:06:56:00 Win2K-f 194.8.75.155 (LIX.LV):
LAST RESORT LOCAL REGISTRY,
UK. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

07:00:00 Win2K-f 121.70.225.219 (-):
BEIJING KUANDAITONG TELECOM TECHNOLOGY CO. LTD,
BEIJING, GUANGDONG, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:01:00 Win2K-f 221.127.197.30 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:01:00 Win2K-f 115.83.0.157 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:04:00 Win2K-f 201.65.91.197 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:07:06:00 Win2K-f 220.243.120.227 (-):
ETRUNK NETWORK TELECOMUNICATION LTD,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

07:08:00 Win2K-f 190.55.227.64 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:07:14:00 Win2K-f 83.102.174.4 (-):
CORBINA-DATAFORT-BLK,
RU. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:15:00 Win2K-f 60.177.204.223 (163DATA.COM.CN):
CHINANET-ZJ HANGZHOU NODE NETWORK,
HANGZHOU, ZHEJIANG, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:20:00 Win2K-f 190.50.171.18 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:21:00 Win2K-f 89.29.140.38 (NOT-ASSIGNED.TVALMANSA.ES):
TV ALMANSA ALMANSA INFRAESTRUCTURE/ACCESS,
ES. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 bd35d4d98f
[Firefox:29 hits: 11-27 to 12-22] none[3] none:none
Armadillo| none trace

07:22:00 Win2K-f 220.243.120.227 (-):
ETRUNK NETWORK TELECOMUNICATION LTD,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

07:23:00 Win2K-f 210.1.58.19 (-):
REASSIGN TO INFORMATION TECHNOLOGY CENTER DEPARTMENT OF AGRICULTURE,
TH. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:31:00 Win2K-f 202.55.95.3 (VQBN.COM):
VIEWQWEST PTE LTD INTERNET SERVICE PROVIDER SINGAPORE,
SG. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:32:00 Win2K-f 203.73.61.161 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:37:00 Win2K-f 85.117.2.71 (ZICOM.PL):
ZICOM WIM ZIELINSKI SPOLKA JAWNA,
PL. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:41:00 Win2K-f 87.122.170.154 (VERSANET.DE):
VERSATEL DEUTSCHLAND DYNAMIC POOL,
COLOGNE, NORDRHEIN-WESTFALEN, DE. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:43:00 Win2K-f 87.121.24.222 (NETERRA.NET):
NETERRAIP,
BG. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:150 hits: 11-26 to 12-22] none[3] none:none
Armadillo| none trace

T:07:46:00 Win2K-f 200.49.22.93 (BSR1000.PAPNET.CL):
PLUG AND PLAY NET S.A,
CL. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:47:00 Win2K-f 83.102.174.4 (-):
CORBINA-DATAFORT-BLK,
RU. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:49:00 Win2K-f 221.125.24.208 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:52:00 Win2K-f 200.87.171.69 (ORION.PNUD.BO):
ENTEL S.A. - ENTELNET,
COCHABAMBA, COCHABAMBA, BO. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:54:00 Win2K-f 123.204.33.172 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:02:00 Win2K-f 121.243.24.150 (VSNL.NET.IN):
VIDESH SANCHAR NIGAM LTD - INDIA,
IN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:04:00 Win2K-f 190.225.51.167 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:61 hits: 11-23 to 12-22] none[3] none:none
StarForce| none trace

T:08:06:00 Win2K-f 190.184.60.248 (-):
CABLENET S.A,
NI. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 16 of 39 9a9f93c4d2
NEW none[3] none:none
UPX| none trace

08:08:00 Win2K-f 186.12.8.82 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:08:09:00 Win2K-f 117.63.36.14 (163DATA.COM.CN):
CHINANET JIANGSU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:64.246.48.99:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
4 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:15:00 Win2K-f 200.110.171.2 (-):
CABLE UNIN DE OCCIDENTE,
PEREIRA, RISARALDA, CO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:16:00 Win2K-f 186.12.8.82 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

08:21:00 Win2K-f 59.113.174.118 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:23:00 Win2K-f 83.57.18.89 (RIMA-TDE.NET):
TELEFONICA DE ESPANA(NCC#2005070725),
MADRID, MADRID, ES. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:08:23:00 Win2K-f 87.56.189.82 (IP.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
DK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:150 hits: 11-26 to 12-22] none[3] none:none
Armadillo| none trace

08:23:00 Win2K-f 190.225.51.167 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:61 hits: 11-23 to 12-22] none[3] none:none
StarForce| none trace

08:25:00 Win2K-f 186.12.88.190 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

08:27:00 Win2K-f 58.42.217.75 (AGENT1.GZ.CN):
CHINANET GUIZHOU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:28:00 Win2K-f 58.42.37.91 (AGENT1.GZ.CN):
CHINANET GUIZHOU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:463 hits: 11-21 to 12-22] none[3] none:none
StarForce| none trace

T:08:33:00 Win2K-f 186.12.88.190 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

08:37:00 Win2K-f 122.124.111.125 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:42:00 Win2K-f 121.243.24.150 (VSNL.NET.IN):
VIDESH SANCHAR NIGAM LTD - INDIA,
IN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:43:00 Win2K-f 190.51.242.227 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:43:00 Win2K-f 200.127.0.44 (NET.AR):
PRIMA S.A,
BUENOS AIRES, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:463 hits: 11-21 to 12-22] none[3] none:none
StarForce| none trace

T:08:51:00 Win2K-f 92.113.62.211 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:52:00 Win2K-f 58.42.217.75 (AGENT1.GZ.CN):
CHINANET GUIZHOU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:53:00 Win2K-f 66.90.103.45 (ON-DEMAND-TECH.COM):
FDC SERVERS.NET LLC,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:56:00 Win2K-f 92.113.62.211 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:58:00 Win2K-f 87.121.24.222 (NETERRA.NET):
NETERRAIP,
BG. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:150 hits: 11-26 to 12-22] none[3] none:none
Armadillo| none trace

T:08:58:00 Win2K-f 66.90.103.45 (ON-DEMAND-TECH.COM):
FDC SERVERS.NET LLC,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:58:00 Win2K-f 220.137.188.219 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:08:00 Win2K-f 62.103.30.11 (ONDSL.GR):
MULTIPROTOCOL SERVICE PROVIDER TO OTHER ISP'S AND END USERS,
ATHENS, ATTIKI, GR. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:11:00 Win2K-f 123.204.17.72 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:11:00 Win2K-f 200.87.171.69 (ORION.PNUD.BO):
ENTEL S.A. - ENTELNET,
COCHABAMBA, COCHABAMBA, BO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:13:00 Win2K-f 190.224.196.45 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:13:00 Win2K-f 201.48.221.23 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:18:00 Win2K-f 123.204.17.72 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:24:00 Win2K-f 190.55.220.109 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:09:25:00 Win2K-f 80.165.158.70 (ADSL-DHCP.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
ODENSE, FYN, DK. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:28:00 WinXP 86.106.201.53 (RNT.RO):
SC REAL NETWORK AND TELECOMUNCATIONS SRL,
RO. n/a HK:proxim.ircgalaxy.pl
HK:58.65.234.90:65520 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 34 of 36 a330d0d1c1
NEW 46c57acfb9 [0] ASM:Graph
PolyEnE| lines=131 trace

09:28:00 Win2K-f 201.74.164.130 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:31:00 Win2K-f 121.32.72.116 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:35:00 Win2K-f 208.75.188.10 (-):
FLOWLINELIQUIDLEVEL.NET,
DE. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:38:00 Win2K-f 74.63.196.114 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:39:00 Win2K-f 72.37.161.174 (-):
SIRIUS TELECOM,
SANTA BARBARA, CALIFORNIA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:43:00 Win2K-f 190.48.5.226 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:150 hits: 11-26 to 12-22] none[3] none:none
Armadillo| none trace

T:09:48:00 Win2K-f 208.75.188.10 (-):
FLOWLINELIQUIDLEVEL.NET,
DE. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:53:00 Win2K-f 222.33.128.106 (HERBALQC.COM):
CHINA RAILWAY TELECOMMUNICATIONS CENTER,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

09:53:00 Win2K-f 87.20.247.220 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA S.P.A. TIN EASY LITE,
IT. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:59:00 Win2K-f 81.9.214.19 (CM-81-9-211-10.TELECABLE.ES):
TELECABLE,
OVIEDO, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:00:00 Win2K-f 190.48.105.207 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:10:04:00 Win2K-f 91.84.239.53 (ECLIPSE.NET.UK):
ECLIPSE NETWORKING LIMITED,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:06:00 Win2K-f 209.17.186.13 (-):
AXION INTERNET COMMUNICATIONS,
VANCOUVER, BRITISH COLUMBIA, CA. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

10:09:00 Win2K-f 190.128.15.145 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:14:00 Win2K-f 190.128.15.145 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:17:00 Win2K-f 202.72.243.14 (-):
MONGOLIAN RAILWAY COMMERCIAL CENTER - RAILCOM,
MN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

10:17:00 Win2K-f 62.87.35.20 (AIRTEL.NET):
GLOBAL MOBILE OPERATOR,
BARCELONA, CATALUñA, ES. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:19:00 Win2K-f 200.43.249.113 (NET.AR):
MIDAS-TELECOM,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:23:00 Win2K-f 87.121.11.56 (-):
NETERRA-TELECABLENET-NET,
SOFIA, SOFIYA, BG. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:150 hits: 11-26 to 12-22] none[3] none:none
Armadillo| none trace

T:10:24:00 Win2K-f 87.20.247.220 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA S.P.A. TIN EASY LITE,
IT. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:27:00 Win2K-f 201.65.91.197 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:10:34:00 Win2K-f 190.51.242.227 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:34:00 Win2K-f 66.58.229.240 (GCI.NET):
GCI COMMUNICATIONS INC,
ANCHORAGE, ALASKA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:36:00 Win2K-f 189.10.40.58 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:150 hits: 11-26 to 12-22] none[3] none:none
Armadillo| none trace

T:10:39:00 Win2K-f 190.64.4.209 (ANTELDATA.NET.UY):
ADMINISTRACION NACIONAL DE TELECOMUNICACIONES,
MONTEVIDEO, MONTEVIDEO, UY. (DIAL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

10:43:00 Win2K-f 82.65.114.169 (PROXAD.NET):
PROXAD / FREE SAS,
VERSAILLES, ILE-DE-FRANCE, FR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:44:00 Win2K-f 89.104.106.106 (NEVALINK.NET):
UNNET-NEVALINK,
RU. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:47:00 Win2K-f 91.66.222.251 (SUPERKABEL.DE):
KABEL DEUTSCHLAND BREITBAND SERVICE GMBH,
DE. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:10:49:00 Win2K-f 190.105.21.39 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:51:00 Win2K-f 170.51.136.186 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

T:10:54:00 Win2K-f 218.89.146.224 (-):
CHINANET-SC-GA-NETBAR,
CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:55:00 Win2K-f 190.105.21.39 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

10:59:00 Win2K-f 122.117.233.221 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:59:00 Win2K-f 89.43.150.207 (TVSATRM.RO):
SC TV SAT 2002 SRL,
BUZAU, BUZAU, RO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:00:00 Win2K-f 81.56.153.250 (PROXAD.NET):
PROXAD / FREE SAS,
NANCY, LORRAINE, FR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:04:00 Win2K-f 122.117.233.221 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:17:00 Win2K-f 59.105.20.144 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:19:00 Win2K-f 189.15.87.152 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:22:00 Win2K-f 190.208.71.181 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:23:00 Win2K-f 220.136.183.175 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:24:00 Win2K-f 61.59.151.52 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:29:00 Win2K-f 78.59.126.193 (ZEBRA.LT):
LIETUVOS,
LT. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:30:00 Win2K-f 212.117.163.73 (-):
EYENET,
UK. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:33:00 Win2K-f 122.65.43.212 (JWS.COM):
CHINA TIETONG TELECOMMUNICATIONS CORPORATION,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:37:00 Win2K-f 200.112.143.201 (NET.AR):
BROADBANDTECH S. A,
MENDOZA, MENDOZA, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:11:39:00 Win2K-f 173.45.71.66 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:40:00 Win2K-f 190.225.100.187 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

11:41:00 Win2K-f 82.116.1.173 (FORATEC.NET):
FORATEC COMMUNICATION JSC,
SURGUT, KHANTY-MANSIYSKIY AVTONOMNYY OKRUG, RU. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:46:00 Win2K-f 200.24.49.162 (-):
EMTELSA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:46:00 Win2K-f 190.225.100.187 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

11:55:00 Win2K-f 60.54.65.37 (TM.NET.MY):
TELEKOM MALAYSIA BERHAD,
KUALA LUMPUR, WILAYAH PERSEKUTUAN, MY. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:463 hits: 11-21 to 12-22] none[3] none:none
StarForce| none trace

T:11:56:00 Win2K-f 190.240.58.215 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:57:00 Win2K-f 122.89.249.169 (JWS.COM):
CHINA TIETONG TELECOMMUNICATIONS CORPORATION,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:58:00 Win2K-f 190.128.54.153 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:59:00 Win2K-f 114.31.10.178 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:06:00 Win2K-f 190.240.58.215 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:06:00 Win2K-f 60.54.65.37 (TM.NET.MY):
TELEKOM MALAYSIA BERHAD,
KUALA LUMPUR, WILAYAH PERSEKUTUAN, MY. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:463 hits: 11-21 to 12-22] none[3] none:none
StarForce| none trace

12:07:00 Win2K-f 190.220.64.35 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:12:11:00 Win2K-f 89.19.22.82 (CIZGIBILGISAYAR.COM):
CIZGI BILGISAYAR SISTEMLERI SAN. TIC. LTD. STI,
TR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

12:17:00 Win2K-f 200.61.41.63 (NET.AR):
VELOCOM,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:150 hits: 11-26 to 12-22] none[3] none:none
Armadillo| none trace

T:12:17:00 Win2K-f 125.85.241.247 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:19:00 Win2K-f 190.27.52.182 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:250 hits: 11-25 to 12-22] none[3] none:none
Armadillo| none trace

T:12:23:00 Win2K-f 212.72.182.109 (EKB-KIESERLING.DE):
ARTFILES NEW MEDIA GMBH,
HAMBURG, HAMBURG, DE. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:26:00 Win2K-f 123.195.68.120 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:27:00 Win2K-f 125.22.105.58 (125.AIRTELBROADBAND.IN):
BHARTI INFOTEL LTD. (BBANDTS KK),
BANGALORE, KARNATAKA, IN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox: 2 hits: 12-19 to 12-21] none[3] none:none
MEW| none trace

T:12:28:00 Win2K-f 122.89.249.169 (JWS.COM):
CHINA TIETONG TELECOMMUNICATIONS CORPORATION,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:30:00 Win2K-f 69.1.89.12 (DOMAIN.NOT.CONFIGURED):
WCIX.NET INC,
RENO, NEVADA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:33:00 Win2K-f 77.23.186.83 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:38:00 Win2K-f 190.49.17.241 (COM.AR):
TELEFONICA DE ARGENTINA,
CIPOLLETTI, NEUQUEN, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:41:00 Win2K-f 200.106.172.159 (SUPERCABLETV.NET.CO):
SUPERCABLE TELECOMUNICACIONES,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:43:00 Win2K-f 115.80.70.128 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

12:46:00 Win2K-f 81.57.154.88 (PROXAD.NET):
PROXAD / FREE SAS,
FOURMIES, NORD-PAS-DE-CALAIS, FR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:48:00 Win2K-f 190.49.102.176 (COM.AR):
TELEFONICA DE ARGENTINA,
MIRAMAR, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
4 lines Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

12:48:00 Win2K-f 209.105.149.73 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:55:00 Win2K-f 59.90.19.112 (10/24.BSNL.IN):
NIB (NATIONAL INTERNET BACKBONE),
DELHI, DELHI, IN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:56:00 Win2K-f 79.107.76.66 (G-M-I.NET):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:58:00 Win2K-f 82.116.1.173 (FORATEC.NET):
FORATEC COMMUNICATION JSC,
SURGUT, KHANTY-MANSIYSKIY AVTONOMNYY OKRUG, RU. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:00:00 Win2K-f 201.173.60.167 (IFXNW.COM.MX):
NETWORK INFORMATION CENTER MEXICO,
MX. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

T:13:03:00 Win2K-f 59.90.19.112 (10/24.BSNL.IN):
NIB (NATIONAL INTERNET BACKBONE),
DELHI, DELHI, IN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:05:00 Win2K-f 122.125.4.113 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:09:00 Win2K-f 202.75.222.206 (CHINAGREENTOWN.COM):
HANGZHOU SILK ROAD INFORMATION TECHNOLOGIES CO. LTD,
HANGZHOU, ZHEJIANG, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

13:10:00 Win2K-f 200.80.182.39 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
MAR DEL PLATA, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:14:00 Win2K-f 190.51.124.78 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 21 of 38 9c4ad5fe13
[Firefox: 3 hits: 12-19 to 12-20] none[3] none:none
StarForce| none trace

13:15:00 Win2K-f 190.186.110.36 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:18:00 Win2K-f 190.184.24.244 (-):
CABLENET S.A,
NI. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 16 of 39 9a9f93c4d2
NEW none[3] none:none
UPX| none trace

13:20:00 Win2K-f 190.48.110.7 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:25:00 Win2K-f 190.141.184.35 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:27:00 Win2K-f 190.128.78.177 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 37 4f88618d4f
[Firefox:66 hits: 11-29 to 12-22] none[3] none:none
UPX| none trace

T:13:28:00 Win2K-f 201.253.53.114 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

13:30:00 Win2K-f 190.49.102.176 (COM.AR):
TELEFONICA DE ARGENTINA,
MIRAMAR, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:13:35:00 Win2K-f 189.38.228.229 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:35:00 Win2K-f 201.173.33.123 (IFXNW.COM.MX):
NETWORK INFORMATION CENTER MEXICO,
MX. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

T:13:39:00 Win2K-f 79.122.209.230 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

13:40:00 Win2K-f 89.28.30.82 (89-28-0-10.STARNET.MD):
STARNET,
CHISINAU, CHISINAU, MD. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:13:44:00 Win2K-f 190.186.110.36 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:45:00 Win2K-f 79.122.209.230 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:13:45:00 Win2K-f 190.141.154.61 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

13:50:00 Win2K-f 190.141.154.61 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:13:53:00 Win2K-f 122.125.4.113 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:56:00 Win2K-f 200.58.174.7 (COTAS.COM.BO):
COTAS LTDA,
SANTA CRUZ, SANTA CRUZ, BO. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:59:00 Win2K-f 200.7.99.234 (GENESISBCI.NET):
AP CELDA 1 - OTASSCA,
VE. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:00:00 Win2K-f 200.58.174.7 (COTAS.COM.BO):
COTAS LTDA,
SANTA CRUZ, SANTA CRUZ, BO. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:04:00 Win2K-f 71.121.238.147 (-):
CCPC,
KIRKLAND, WASHINGTON, US. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:09:00 Win2K-f 92.80.61.142 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:10:00 Win2K-f 118.170.211.29 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 fcb4920986
[Firefox:32 hits: 11-21 to 12-21] none[3] none:none
UPX| none trace

T:14:11:00 Win2K-f 118.170.211.29 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 fcb4920986
[Firefox:32 hits: 11-21 to 12-21] none[3] none:none
UPX| none trace

T:14:15:00 Win2K-f 70.32.37.90 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:15:00 Win2K-f 87.96.188.57 (BLIXTVIK.NET):
BLIXTVIK INTERNET OCH TELEFONI AB,
SE. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:16:00 Win2K-f 190.184.7.60 (-):
CABLENET S.A,
NI. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 16 of 39 9a9f93c4d2
NEW none[3] none:none
UPX| none trace

14:25:00 Win2K-f 190.184.7.60 (-):
CABLENET S.A,
NI. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 16 of 39 9a9f93c4d2
NEW none[3] none:none
UPX| none trace

14:25:00 Win2K-f 114.45.27.229 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:26:00 Win2K-f 201.172.228.59 (INTERCABLE.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MONTERREY, NUEVO LEON, MX. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

T:14:28:00 Win2K-f 81.98.219.232 (NTL.COM):
NTL INFRASTRUCTURE - HUDDERSFIELD,
LUTON, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

14:32:00 Win2K-f 70.68.126.46 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
COQUITLAM, BRITISH COLUMBIA, CA. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:14:43:00 Win2K-f 61.217.129.163 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:43:00 Win2K-f 200.87.114.98 (ORION.PNUD.BO):
ENTEL S.A. - ENTELNET,
LA PAZ, LA PAZ, BO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:44:00 Win2K-f 81.13.210.104 (-):
IP DHCP VALLE,
SION, VALAIS, CH. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:45:00 Win2K-f 117.68.38.162 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:50:00 Win2K-f 200.87.114.98 (ORION.PNUD.BO):
ENTEL S.A. - ENTELNET,
LA PAZ, LA PAZ, BO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:50:00 Win2K-f 61.217.129.163 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:52:00 Win2K-f 194.44.236.35 (FOREST.LVIV.UA):
FOREST UNIVERSITY,
UA. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:54:00 Win2K-f 74.63.196.130 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:55:00 Win2K-f 93.110.4.178 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox: 2 hits: 12-19 to 12-21] none[3] none:none
MEW| none trace

14:58:00 Win2K-f 219.105.94.148 (ADACHI.NE.JP):
CABLE TELEVISION ADACHI CORP,
JP. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:00:00 Win2K-f 115.83.187.149 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:463 hits: 11-21 to 12-22] none[3] none:none
StarForce| none trace

15:09:00 Win2K-f 71.121.238.147 (-):
CCPC,
KIRKLAND, WASHINGTON, US. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:12:00 Win2K-f 190.6.155.121 (TRICOM.NET):
TRICOM,
DO. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:15:13:00 Win2K-f 115.83.151.197 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:15:00 Win2K-f 62.63.15.53 (BBFT.NET):
BREDBANDSFYLKET TROMS AS,
NO. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:15:00 Win2K-f 190.246.206.50 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:15:20:00 Win2K-f 83.97.226.71 (CM-83-97-128-10.TELECABLE.ES):
TELECABLE,
GIJON, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:24:00 Win2K-f 124.82.85.203 (TM.NET.MY):
TM ADSL SERVICE PROVIDER MALAYSIA,
BENTONG, PAHANG, MY. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:28:00 Win2K-f 81.98.219.232 (NTL.COM):
NTL INFRASTRUCTURE - HUDDERSFIELD,
LUTON, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:15:29:00 Win2K-f 190.5.193.7 (UNICAUCA.EDU.CO):
EMTEL S.A. E.S.P,
POPAYAN, CAUCA, CO. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

15:30:00 Win2K-f 94.80.183.139 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:31:00 Win2K-f 118.161.245.95 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:36:00 Win2K-f 81.12.9.53 (-):
PIROOZ,
IR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

15:36:00 Win2K-f 116.11.3.25 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
NANNING, GUANGXI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:45:00 Win2K-f 186.12.14.239 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:15:49:00 Win2K-f 87.110.149.151 (-):
ADDRESS POOL FOR LTC-HOME CUSTOMERS,
RIGA, RIGA, LV. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:53:00 Win2K-f 200.35.209.55 (SUPERCABLE.NET.VE):
SUPERCABLE,
CARACAS, DISTRITO FEDERAL, VE. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:89 hits: 11-29 to 12-22] none[3] none:none
UPX| none trace

T:15:55:00 Win2K-f 200.35.209.55 (SUPERCABLE.NET.VE):
SUPERCABLE,
CARACAS, DISTRITO FEDERAL, VE. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:89 hits: 11-29 to 12-22] none[3] none:none
UPX| none trace

15:55:00 Win2K-f 124.8.129.119 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
KAOHSIUNG, KAO-HSIUNG, TW. n/a 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball none none none none none none none

15:57:00 Win2K-f 118.161.245.95 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:00:00 Win2K-f 190.98.149.117 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
7 lines Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:16:04:00 Win2K-f 212.68.42.186 (-):
NETWING,
AT. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:140 hits: 11-20 to 12-22] none[3] none:none
StarForce| none trace

T:16:04:00 Win2K-f 203.70.191.36 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:11:00 Win2K-f 190.48.18.54 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:89 hits: 11-29 to 12-22] none[3] none:none
UPX| none trace

16:14:00 Win2K-f 94.25.6.178 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:14:00 Win2K-f 201.236.196.147 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:15:00 Win2K-f 220.128.128.86 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:24:00 Win2K-f 78.109.141.193 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:26:00 Win2K-f 200.52.129.11 (INEXT.NET.MX):
PROTEL I-NEXT_NETWORK,
MEXICO, DISTRITO FEDERAL, MX. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:27:00 Win2K-f 91.98.159.156 (-):
PARS,
IR. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:29:00 Win2K-f 190.97.151.122 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:32:00 Win2K-f 190.6.155.121 (TRICOM.NET):
TRICOM,
DO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

16:34:00 Win2K-f 24.78.46.65 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
BURNABY, BRITISH COLUMBIA, CA. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:36:00 Win2K-f 190.97.151.122 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:42:00 Win2K-f 213.230.30.2 (-):
JEDDAH CHAMBER OF COMMERCE,
JEDDAH, MAKKAH, SA. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

16:44:00 Win2K-f 190.246.188.24 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:16:46:00 Win2K-f 189.72.172.122 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:46:00 Win2K-f 94.25.6.178 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80
94.25.6.178:9700 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:52:00 Win2K-f 114.137.167.131 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:54:00 Win2K-f 61.6.67.102 (BTL50.JARING.MY):
MIMOS BERHAD,
KUALA LUMPUR, WILAYAH PERSEKUTUAN, MY. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:56:00 Win2K-f 222.221.169.123 (CN.NET):
CHINANET YUNNAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:57:00 Win2K-f 196.40.92.177 (RACSA.CO.CR):
SERVIDOR ACCESO PAVAS,
SAN JOSE, SAN JOSE, CR. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

16:59:00 Win2K-f 87.97.249.125 (GGBIT.NET):
EKK CATV PLOVDIV,
PLOVDIV, PLOVDIV, BG. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:463 hits: 11-21 to 12-22] none[3] none:none
StarForce| none trace

17:01:00 Win2K-f 218.85.92.87 (163DATA.COM.CN):
CHINANET FUJIAN PROVINCE NETWORK,
FUJIAN, FUJIAN, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:02:00 Win2K-f 190.0.79.232 (ASTER.COM.DO):
ASTER,
SANTO DOMINGO, DISTRITO NACIONAL, DO. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

17:07:00 Win2K-f 190.48.18.54 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:89 hits: 11-29 to 12-22] none[3] none:none
UPX| none trace

T:17:07:00 Win2K-f 59.115.21.42 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:12:00 Win2K-f 122.118.38.109 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:12:00 Win2K-f 198.64.250.2 (VERIO.NET):
NTT AMERICA INC,
ENGLEWOOD, COLORADO, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:17:00 Win2K-f 64.32.66.25 (CODETEL.NET.DO):
VERIZON DOMINICANA,
DO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:17:21:00 Win2K-f 122.125.73.217 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:25:00 Win2K-f 83.222.165.3 (83.IN-ADDR.ARPA):
CABLETEL CLIENTS IN BOURGAS FOR INTERNET AND VOIP,
BURGAS, BURGAS, BG. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 9 of 38 e1a2e3980d
[Firefox: 6 hits: 12-05 to 12-21] none[3] none:none
UPX| none trace

T:17:27:00 Win2K-f 89.19.3.117 (CIZGIBILGISAYAR.COM):
CIZGI BILGISAYAR SISTEMLERI SAN. TIC. LTD. STI,
TR. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:36:00 Win2K-f 61.217.129.163 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:37:00 Win2K-f 201.76.74.38 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:17:38:00 WinXP 119.95.68.73 (-):
. n/a RU:moscow-advokat.ru
US:lia.zanet.net
:washington.dc.us.undernet.org
SE:viking.dal.net
SE:broadway.ny.us.dal.net
:brussels.be.eu.undernet.org
:flanders.be.eu.undernet.org
AT:graz.at.eu.undernet.org
SE:ozbytes.dal.net
:caen.fr.eu.undernet.org
:los-angeles.ca.us.undernet.org
SE:qis.md.us.dal.net
:lulea.se.eu.undernet.org
NL:diemen.nl.eu.undernet.org
:gaspode.zanet.org.za
NO:london.uk.eu.undernet.org 445 pcap raw alerts
ruleset http
1 line Yeah : 1.3
profile none summary
tarball 34 of 36 96d089e522
[Firefox:89 hits: 10-08 to 12-15] b9dd25bdfb [0] ASM:Graph
PolyEnE| lines=93
embedded dns trace

T:17:40:00 Win2K-f 221.169.225.116 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:43:00 Win2K-f 61.6.67.102 (BTL50.JARING.MY):
MIMOS BERHAD,
KUALA LUMPUR, WILAYAH PERSEKUTUAN, MY. n/a US:www.maxmind.com
GB:getmyip.co.uk
GB:www.getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:45:00 Win2K-f 190.70.104.231 (ORBITEL.NET.CO):
ORBITEL S.A. E.S.P,
CO. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:48:00 Win2K-f 59.114.241.163 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:48:00 Win2K-f 190.105.12.81 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:57:00 Win2K-f 122.118.38.109 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:58:00 Win2K-f 186.9.42.173 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

17:58:00 Win2K-f 140.113.130.134 (NTU.EDU.TW):
TAIWAN ACADEMIC NETWORK,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:01:00 Win2K-f 59.114.241.163 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:03:00 Win2K-f 218.85.92.87 (163DATA.COM.CN):
CHINANET FUJIAN PROVINCE NETWORK,
FUJIAN, FUJIAN, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:04:00 Win2K-f 61.136.159.61 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
WUHAN, HUBEI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:11:00 Win2K-f 60.174.105.129 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

18:12:00 Win2K-f 122.116.113.249 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:17:00 Win2K-f 221.169.225.116 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:17:00 Win2K-f 190.0.72.74 (ASTER.COM.DO):
ASTER,
SANTO DOMINGO, DISTRITO NACIONAL, DO. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

T:18:17:00 Win2K-f 122.116.113.249 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:22:00 Win2K-f 200.68.49.218 (PTR.TIC.CL):
TEEMSR-LACNIC,
SANTIAGO, REGION METROPOLITANA, CL. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:22:00 Win2K-f 58.254.107.150 (CNCNET.NET):
CNC GROUP GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:27:00 Win2K-f 170.51.98.46 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:150 hits: 11-26 to 12-22] none[3] none:none
Armadillo| none trace

T:18:27:00 Win2K-f 58.50.0.24 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

18:32:00 Win2K-f 58.254.107.150 (CNCNET.NET):
CNC GROUP GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:35:00 Win2K-f 91.102.160.78 (ATOLYEWEB.NET):
DATAFON ILETISIM A.S,
TR. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:37:00 Win2K-f 91.102.160.78 (ATOLYEWEB.NET):
DATAFON ILETISIM A.S,
TR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:37:00 Win2K-f 65.64.83.19 (MERIDIANDATA.COM):
MERIDIAN DATA SYSTEMS INC,
OKLAHOMA CITY, OKLAHOMA, US. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:49:00 Win2K-f 84.110.64.53 (BEZEQINT.NET):
BEZEQ-INTERNATIONAL,
JERUSALEM, YERUSHALAYIM (JERUSALEM), IL. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:463 hits: 11-21 to 12-22] none[3] none:none
StarForce| none trace

18:50:00 Win2K-f 24.77.61.44 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
VICTORIA, BRITISH COLUMBIA, CA. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:18:51:00 Win2K-f 74.43.113.40 (FRONTIERNET.NET):
FRONTIER COMMUNICATIONS OF AMERICA INC,
US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:53:00 Win2K-f 83.103.39.221 (IP.FASTWEBNET.IT):
SOFTWORK DI PAPOIA PUBLIC SUBNET,
ROME, LAZIO, IT. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80
IT:83.103.39.221:5701 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:57:00 Win2K-f 118.169.44.204 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:59:00 Win2K-f 202.43.180.72 (-):
CEPATNET,
JAKARTA, JAKARTA RAYA (DJAKARTA RAYA), ID. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:01:00 Win2K-f 118.169.44.204 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:06:00 Win2K-f 65.64.83.19 (MERIDIANDATA.COM):
MERIDIAN DATA SYSTEMS INC,
OKLAHOMA CITY, OKLAHOMA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:07:00 Win2K-f 202.43.180.72 (-):
CEPATNET,
JAKARTA, JAKARTA RAYA (DJAKARTA RAYA), ID. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:10:00 WinXP 220.100.235.6 (IIJ4U.OR.JP):
IIJ INTERNET,
JP. n/a HK:proxim.ircgalaxy.pl
HK:58.65.234.90:65520 445 pcap raw alerts
ruleset shell
ftp
14 lines Yeah : 1.3
profile none summary
tarball 35 of 38 6e24a6ff82
NEW 85c7fcc1b2 [0] ASM:Graph
PolyEnE| lines=61 trace

T:19:10:00 Win2K-f 94.25.141.116 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:19:11:00 Win2K-f 190.137.244.174 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:13:00 Win2K-f 69.17.158.89 (ON.CA):
AURORA CABLE INTERNET,
AURORA, ONTARIO, CA. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:19:14:00 Win2K-f 115.99.7.107 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:16:00 Win2K-f 190.137.244.174 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:18:00 Win2K-f 94.25.141.116 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:19:20:00 Win2K-f 118.169.35.186 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:23:00 Win2K-f 200.52.129.11 (INEXT.NET.MX):
PROTEL I-NEXT_NETWORK,
MEXICO, DISTRITO FEDERAL, MX. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:25:00 Win2K-f 75.125.236.66 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:38:00 Win2K-f 219.135.244.184 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:40:00 Win2K-f 121.63.251.194 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
WUHAN, HUBEI, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:48:00 Win2K-f 190.208.121.30 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:49:00 Win2K-f 66.98.78.172 (CODETEL.NET.DO):
VERIZON DOMINICANA,
DO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

T:19:50:00 Win2K-f 203.73.248.95 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:52:00 Win2K-f 88.65.79.121 (ARCOR-IP.NET):
ARCOR-DSL-NET,
WIESBADEN, HESSEN, DE. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:55:00 Win2K-f 140.113.139.28 (NTU.EDU.TW):
TAIWAN ACADEMIC NETWORK,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:58:00 Win2K-f 218.36.62.119 (KRLINE.NET):
KRLINE INTERNET SERVICE INC,
SEOUL, KYONGGI-DO, KR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:02:00 Win2K-f 92.48.127.88 (IKBCC.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

20:04:00 Win2K-f 119.8.171.13 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:05:00 Win2K-f 200.82.105.29 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:05:00 Win2K-f 120.50.1.61 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:20:05:00 Win2K-f 124.82.63.114 (TM.NET.MY):
TM ADSL SERVICE PROVIDER MALAYSIA,
MY. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1309 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:20:13:00 Win2K-f 98.134.242.195 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:89 hits: 11-29 to 12-22] none[3] none:none
UPX| none trace

T:20:15:00 Win2K-f 94.76.213.81 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:21:00 Win2K-f 203.73.248.95 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:25:00 Win2K-f 190.4.19.98 (-):
NAVEGA.COM S.A,
MIAMI, FLORIDA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:463 hits: 11-21 to 12-22] none[3] none:none
StarForce| none trace

T:20:29:00 Win2K-f 122.13.31.49 (-):
XIN XIN LING,
CN. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

20:31:00 Win2K-f 190.220.109.173 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

20:31:00 Win2K-f 85.152.228.112 (CM-85-152-232-10.TELECABLE.ES):
TELECABLE,
AVILES, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:37:00 Win2K-f 125.16.17.78 (-):
INTEGRATED DEVELOPMENT PROGRAM AUSTRALIA LTD,
HYDERABAD, ANDHRA PRADESH, IN. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:250 hits: 11-25 to 12-22] none[3] none:none
Armadillo| none trace

20:41:00 Win2K-f 94.101.137.113 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:43:00 Win2K-f 114.46.146.69 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:43:00 Win2K-f 219.87.177.17 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:45:00 Win2K-f 85.152.228.112 (CM-85-152-232-10.TELECABLE.ES):
TELECABLE,
AVILES, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:53:00 Win2K-f 59.93.82.105 (10/24.BSNL.IN):
NIB (NATIONAL INTERNET BACKBONE),
HYDERABAD, ANDHRA PRADESH, IN. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:55:00 Win2K-f 116.111.184.92 (USER7-175.ENET.VN):
ELECTRIC TELECOMMUNICATION COMPANY,
VN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:58:00 Win2K-f 89.19.15.34 (CIZGIBILGISAYAR.COM):
CIZGI BILGISAYAR SISTEMLERI SAN. TIC. LTD. STI,
TR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:58:00 Win2K-f 69.65.53.103 (NETSOLUTIONS.ORG):
ECOMDEVEL LLC,
US. n/a 445 pcap raw alerts
ruleset http
1 line Argh : 0.3
profile none summary
tarball none none none none none none none

T:20:58:00 Win2K-f 200.211.152.5 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:21:03:00 Win2K-f 59.114.49.238 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:08:00 Win2K-f 216.104.166.82 (TIERRA.NET):
TIERRANET INC,
SAN DIEGO, CALIFORNIA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:12:00 Win2K-f 38.96.240.33 (COGENTCO.COM):
PERFORMANCE SYSTEMS INTERNATIONAL INC,
WASHINGTON, DISTRICT OF COLUMBIA, US. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox: 2 hits: 12-19 to 12-21] none[3] none:none
MEW| none trace

21:13:00 Win2K-f 125.230.242.3 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:13:00 Win2K-f 211.72.106.190 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:19:00 Win2K-f 59.114.7.81 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:21:00 Win2K-f 114.40.18.237 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

21:22:00 Win2K-f 114.40.18.237 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:21:23:00 Win2K-f 91.98.31.147 (-):
POOL FOR DEDICATED CUSTOMERS,
TEHRAN, TEHRAN, IR. n/a US:www.maxmind.com
GB:getmyip.co.uk
GB:www.getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:27:00 WinXP 218.162.182.10 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. (DSL) n/a UA:citi-bank.ru
UA:194.54.90.246:80 445 pcap raw alerts
ruleset http
1 line Yeah : 1.3
profile none summary
tarball 26 of 28 7d99b0e910
[Firefox:1030 hits: 05-01 to 12-20] none[0] none:none
PolyEnE| lines=68 trace

21:29:00 Win2K-f 64.32.13.71 (MACINT0SH.NET):
SHARKTECH INTERNET SERVICES,
PATERSON, NEW JERSEY, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:30:00 Win2K-f 125.230.242.3 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:33:00 Win2K-f 218.17.146.8 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:35:00 Win2K-f 114.104.21.148 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:37:00 Win2K-f 201.73.78.210 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

21:39:00 Win2K-f 173.45.68.98 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:46:00 Win2K-f 170.51.230.235 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:50:00 Win2K-f 84.42.16.212 (TVER.RU):
MSS TVER REGION,
RU. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 4e6c4dd8b1
[Firefox:31 hits: 11-25 to 12-22] none[3] none:none
StarForce| none trace

21:51:00 Win2K-f 200.162.206.24 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

21:57:00 Win2K-f 114.57.97.28 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
114.57.97.28:3631
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 9 of 37 a3be1793d9
NEW none[3] none:none
UPX| none trace

T:21:58:00 Win2K-f 64.32.13.71 (MACINT0SH.NET):
SHARKTECH INTERNET SERVICES,
PATERSON, NEW JERSEY, US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:58:00 Win2K-f 170.51.40.92 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:01:00 Win2K-f 123.97.157.73 (HZ.ZJ.CN):
CHINANET ZHEJIANG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:140 hits: 11-20 to 12-22] none[3] none:none
StarForce| none trace

T:22:03:00 Win2K-f 222.221.221.227 (CN.NET):
CHINANET YUNNAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:06:00 Win2K-f 122.123.192.63 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:11:00 Win2K-f 61.57.73.83 (LSC.NET.TW):
TBCOM-NET,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:15:00 Win2K-f 60.54.99.164 (TM.NET.MY):
TELEKOM MALAYSIA BERHAD,
KUALA LUMPUR, WILAYAH PERSEKUTUAN, MY. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:19:00 Win2K-f 74.43.221.94 (FRONTIERNET.NET):
FRONTIER COMMUNICATIONS OF AMERICA INC,
US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:19:00 Win2K-f 122.123.192.63 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:21:00 Win2K-f 121.52.71.114 (PENI.CO.ID):
EXCELCOMINDO PRATAMA PT,
ID. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

22:26:00 Win2K-f 222.221.221.227 (CN.NET):
CHINANET YUNNAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:31:00 Win2K-f 202.123.18.47 (ROD10.INTNET.MU):
NATIONAL ISP,
MU. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:33:00 Win2K-f 61.59.151.162 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:35:00 Win2K-f 186.9.3.248 (-):
. n/a US:www.maxmind.com
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:36:00 Win2K-f 220.137.112.227 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:37:00 Win2K-f 202.123.18.47 (ROD10.INTNET.MU):
NATIONAL ISP,
MU. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:37:00 Win2K-f 201.253.151.241 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

22:41:00 Win2K-f 64.56.64.72 (VRTSERVERS.NET):
VRTSERVERS INC,
SEWICKLEY, PENNSYLVANIA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:49:00 Win2K-f 66.83.42.228 (NUVOX.NET):
NUVOX COMMUNICATIONS INC,
GREENVILLE, SOUTH CAROLINA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:50:00 Win2K-f 59.113.156.188 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:51:00 Win2K-f 196.3.183.114 (NETCOMNG.COM):
AFRINIC,
NG. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:56:00 Win2K-f 114.46.153.134 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:56:00 Win2K-f 219.153.244.34 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:23:01:00 Win2K-f 218.170.219.94 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:01:00 Win2K-f 218.170.219.94 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:01:00 Win2K-f 203.73.27.227 (TSRC.COM.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:463 hits: 11-21 to 12-22] none[3] none:none
StarForce| none trace

23:06:00 Win2K-f 221.122.185.125 (-):
CETCCOMM HUBEI BRANCH,
WUHAN, HUBEI, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:06:00 Win2K-f 119.128.78.246 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:613 hits: 11-22 to 12-22] none[3] none:none
UPX| none trace

T:23:15:00 Win2K-f 125.85.128.206 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:16:00 Win2K-f 59.105.84.187 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:19:00 Win2K-f 66.83.42.228 (NUVOX.NET):
NUVOX COMMUNICATIONS INC,
GREENVILLE, SOUTH CAROLINA, US. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:21:00 Win2K-f 200.71.99.42 (TELESAT.COM.CO):
COLDECON,
CALI, VALLE DEL CAUCA, CO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:21:00 Win2K-f 186.12.0.55 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

23:26:00 Win2K-f 72.40.91.246 (MINDSPRING.COM):
EARTHLINK INC,
TAMPA, FLORIDA, US. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

T:23:26:00 Win2K-f 76.73.244.79 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:31:00 Win2K-f 221.9.220.123 (-):
CNCGROUP-JL,
CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:31:00 Win2K-f 38.96.240.33 (COGENTCO.COM):
PERFORMANCE SYSTEMS INTERNATIONAL INC,
WASHINGTON, DISTRICT OF COLUMBIA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox: 2 hits: 12-19 to 12-21] none[3] none:none
MEW| none trace

T:23:36:00 Win2K-f 119.95.216.42 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

23:37:00 Win2K-f 201.172.110.52 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

T:23:41:00 Win2K-f 77.56.251.157 (SOLPA.NET):
CABLECOM,
ZURICH, ZURICH, CH. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:44:00 Win2K-f 201.172.110.52 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:572 hits: 11-30 to 12-22] none[3] none:none
StarForce| none trace

23:46:00 Win2K-f 200.71.210.3 (-):
INCOVA,
SANTIAGO, REGION METROPOLITANA, CL. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:150 hits: 11-26 to 12-22] none[3] none:none
Armadillo| none trace

23:51:00 Win2K-f 60.50.200.255 (TM.NET.MY):
TELEKOM MALAYSIA BERHAD,
KUALA LUMPUR, WILAYAH PERSEKUTUAN, MY. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:53:00 Win2K-f 59.105.84.187 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:11140 hits: 11-20 to 12-22] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:56:00 Win2K-f 190.6.103.39 (-):
WILSON CONSTRUCCIONES S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:927 hits: 11-24 to 12-22] none[3] none:none
UPX| none trace

T:23:57:00 Win2K-f 206.28.43.17 (NET-BURNER.NET):
NEW EDGE NETWORKS,
MARTIN, KENTUCKY, US. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 12 of 38 502abb4dd2
NEW none[3] none:none
UPX| none trace