Multiperspective Malware Analysis Page

Welcome to the Cyber-TA
SRI's Multiperspective Malware Infection Analysis Page

UNCENSORED PAGE

<Click here: to download BotHunter>

30 December 2008
<prev> <next>

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Daily Summary Files: [DNS Lookups & Failed Connects] [ Attacker IPs ] [C&C Servers] [Binary Digests]
Cumulative Summary Files: [DNS Lookup Log] [Attacker IP Log] [C&C Server Log] [Antivirus Detection] [Code Segment Overlap]
[Behavioral Clusters] [Binary Digest Log]

[See Country Codes ]

Time
Victim
OS
Infection
Source
C&C
Server
DNS Lookups &
Failed Connects Infection
Port
Packet
Trace
Detection
Signatures
Infection
Chatter
BotHunter
Analysis
Behavioral
Cluster
Forensic
Logs
Antivirus
Labels
Packed Malware_Binary Unpacked egg.exe
Unpacked egg.asm
Packer PEID
Data Strings
Syscall Trace

T:00:06:00 Win2K-f 192.100.76.54 (WESTLAB.COM):
WESTLAB CONSULTING,
RICHMOND, VIRGINIA, US. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:08:00 Win2K-f 170.51.35.84 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

00:10:00 Win2K-f 62.112.115.196 (SPDOP.RU):
MGTS-NET,
MOSCOW, MOSKVA, RU. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:12:00 Win2K-f 170.51.35.84 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

T:00:14:00 Win2K-f 208.105.170.129 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:16:00 Win2K-f 190.136.71.89 (NET.AR):
APOLO -GOLD-TELECOM-PER,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:22:00 Win2K-f 125.21.242.18 (125.AIRTELBROADBAND.IN):
BHARTI TELEVENTURES LTD. - ABTS,
DELHI, DELHI, IN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:25:00 Win2K-f 59.104.73.146 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:27:00 Win2K-f 77.23.193.120 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

00:28:00 Win2K-f 218.161.75.23 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:31:00 Win2K-f 115.82.193.250 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:00:32:00 Win2K-f 59.104.73.146 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:39:00 Win2K-f 122.3.255.214 (PLDT.NET):
IPG,
PH. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:45:00 Win2K-f 89.19.21.98 (CIZGIBILGISAYAR.COM):
CIZGI BILGISAYAR SISTEMLERI SAN. TIC. LTD. STI,
TR. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

00:48:00 Win2K-f 96.50.131.103 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:42 hits: 12-19 to 12-29] none[3] none:none
MEW| none trace

T:00:48:00 Win2K-f 114.101.181.134 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:49:00 Win2K-f 190.139.229.253 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:42 hits: 12-19 to 12-29] none[3] none:none
MEW| none trace

00:50:00 Win2K-f 122.121.235.167 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:52:00 Win2K-f 190.139.229.253 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:42 hits: 12-19 to 12-29] none[3] none:none
MEW| none trace

T:00:59:00 Win2K-f 222.180.219.57 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:00:00 Win2K-f 218.87.207.22 (163DATA.COM.CN):
CHINANET JIANGXI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:01:00 Win2K-f 140.113.165.40 (TTCT.EDU.TW):
TAIWAN ACADEMIC NETWORK,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:42 hits: 12-19 to 12-29] none[3] none:none
MEW| none trace

T:01:02:00 Win2K-f 66.109.29.195 (GALAXYVISIONS.COM):
GALAXYVISIONS INC,
ALBANY, NEW YORK, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:02:00 Win2K-f 82.91.141.2 (POOL8291.INTERBUSINESS.IT):
TELECOM ITALIA WIRELINE SERVICES,
ROME, LAZIO, IT. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:05:00 Win2K-f 220.138.130.11 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:11:00 Win2K-f 124.8.50.149 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:17:00 Win2K-f 74.53.222.44 (THEPLANET.COM):
THEPLANET.COM INTERNET SERVICES INC,
DALLAS, TEXAS, US. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:42 hits: 12-19 to 12-29] none[3] none:none
MEW| none trace

T:01:23:00 Win2K-f 88.134.136.228 (SUPERKABEL.DE):
KABEL-DEUTSCHLAND-CUSTOMER-SERVICES,
DE. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:312 hits: 11-25 to 12-29] none[3] none:none
Armadillo| none trace

T:01:29:00 Win2K-f 220.131.169.186 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:33:00 Win2K-f 189.22.250.6 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:312 hits: 11-25 to 12-29] none[3] none:none
Armadillo| none trace

T:01:33:00 Win2K-f 61.59.145.204 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:35:00 Win2K-f 61.59.145.204 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:43:00 Win2K-f 203.73.101.239 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:44:00 Win2K-f 89.19.21.98 (CIZGIBILGISAYAR.COM):
CIZGI BILGISAYAR SISTEMLERI SAN. TIC. LTD. STI,
TR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

01:44:00 Win2K-f 80.183.37.136 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA S.P.A. TIN EASY LITE,
ACQUI TERME, PIEMONTE, IT. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

01:46:00 Win2K-f 211.115.64.102 (-):
KIDC-INFRA-SERVERHOSTING-INEMPIRE,
SEOUL, KYONGGI-DO, KR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:563 hits: 11-21 to 12-29] none[3] none:none
StarForce| none trace

01:50:00 Win2K-f 170.51.138.46 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:01:55:00 Win2K-f 89.19.14.82 (CIZGIBILGISAYAR.COM):
CIZGI BILGISAYAR SISTEMLERI SAN. TIC. LTD. STI,
TR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:56:00 Win2K-f 186.12.47.123 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

T:01:58:00 Win2K-f 123.97.66.139 (HZ.ZJ.CN):
CHINANET ZHEJIANG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:58:00 Win2K-f 195.35.185.35 (ATWORK.NL):
T. MADE B.V,
GRONINGEN, GRONINGEN, NL. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:01:00 Win2K-f 120.50.1.61 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:01:00 Win2K-f 124.8.50.149 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:03:00 Win2K-f 89.19.14.82 (CIZGIBILGISAYAR.COM):
CIZGI BILGISAYAR SISTEMLERI SAN. TIC. LTD. STI,
TR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:10:00 Win2K-f 124.112.234.174 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:12:00 Win2K-f 170.51.183.0 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:706 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:02:15:00 WinXP 78.59.219.74 (ZEBRA.LT):
LIETUVOS,
LT. n/a HK:proxim.ircgalaxy.pl
UA:citi-bank.ru
UA:194.54.90.246:80
HK:58.65.234.90:65520 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 34 of 36 cd1d4a8f0a
[Firefox: 2 hits: 11-03 to 11-05] 8bdc6a6b23 [0] ASM:Graph
PolyEnE| lines=125 trace

02:17:00 Win2K-f 122.120.42.94 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:22:00 Win2K-f 189.44.166.62 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:23:00 Win2K-f 96.52.133.87 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

02:26:00 Win2K-f 119.47.90.3 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:27:00 WinXP 78.59.219.74 (ZEBRA.LT):
LIETUVOS,
LT. n/a HK:proxim.ircgalaxy.pl
UA:citi-bank.ru
UA:194.54.90.246:80
HK:58.65.234.90:65520 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 34 of 36 cd1d4a8f0a
[Firefox: 2 hits: 11-03 to 11-05] 8bdc6a6b23 [0] ASM:Graph
PolyEnE| lines=125 trace

02:28:00 Win2K-f 94.25.141.235 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:02:31:00 Win2K-f 212.5.106.121 (VNIISDM.RU):
REQUESTED NETWORK IP NUMBERS WILL BE USED FOR CONNECTING,
RU. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:32:00 Win2K-f 88.15.183.235 (RIMA-TDE.NET):
TELEFONICA DE ESPANA,
ES. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:33:00 Win2K-f 120.50.1.75 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

T:02:37:00 Win2K-f 114.137.134.169 (-):
. n/a 445 pcap raw alerts
ruleset other
10 lines Argh : 0.3
profile none summary
tarball none none none none none none none

T:02:42:00 Win2K-f 216.97.229.93 (CYPRESSCOM.NET):
PHATPIPE,
CARLSBAD, CALIFORNIA, US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:43:00 Win2K-f 123.52.147.106 (163DATA.COM.CN):
CHINANET HENAN PROVINCE NETWORK,
HENAN, GUIZHOU, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:46:00 Win2K-f 74.127.36.28 (SPEAKEASY.NET):
US. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
74.127.36.28:6324
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:723 hits: 11-30 to 12-29] none[3] none:none
StarForce| none trace

T:02:54:00 Win2K-f 116.125.56.222 (-):
HANARO TELECOM,
SEOUL, KYONGGI-DO, KR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:59:00 Win2K-f 84.3.200.113 (T-ONLINE.HU):
HUNGARIAN TELECOM,
HU. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:01:00 Win2K-f 203.77.60.41 (GCN.NET.TW):
GLOBAL COMMUNICATION NETWORK CORP,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:02:00 Win2K-f 60.250.188.161 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:03:00 Win2K-f 116.59.141.180 (-):
MOBILE BUSINESS GROUP CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:04:00 Win2K-f 91.66.212.46 (SUPERKABEL.DE):
KABEL DEUTSCHLAND BREITBAND SERVICE GMBH,
DE. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:04:00 Win2K-f 119.85.216.60 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:09:00 Win2K-f 200.69.227.3 (IPLANNETWORKS.NET):
NSS S.A,
ROSARIO, SANTA FE, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:706 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

03:14:00 Win2K-f 64.122.54.20 (INDEXCOMPUTERS.COM):
INTEGRA TELECOM INC,
PRIOR LAKE, MINNESOTA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:706 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

03:16:00 Win2K-f 219.91.82.161 (APOL.COM.TW):
ASIA PACIFIC ON-LINE SERVICES INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

T:03:24:00 Win2K-f 219.146.93.88 (-):
QINGDAO-TECHNOLOGY-BUILDING QINGDAO CITY SHANDONG PROVINCE,
QINGDAO, SHANDONG, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:706 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

03:25:00 Win2K-f 74.127.36.28 (SPEAKEASY.NET):
US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:723 hits: 11-30 to 12-29] none[3] none:none
StarForce| none trace

03:25:00 Win2K-f 217.31.178.172 (BITNET.NU):
ADSL FOR PRIVATE CUSTOMERS,
BORLäNGE, DALARNAS, SE. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:31:00 Win2K-f 80.183.37.136 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA S.P.A. TIN EASY LITE,
ACQUI TERME, PIEMONTE, IT. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

T:03:33:00 Win2K-f 190.51.225.10 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:37:00 Win2K-f 219.146.93.88 (-):
QINGDAO-TECHNOLOGY-BUILDING QINGDAO CITY SHANDONG PROVINCE,
QINGDAO, SHANDONG, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:706 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

03:39:00 Win2K-f 94.248.144.140 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:39:00 Win2K-f 122.117.247.94 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:50:00 Win2K-f 122.125.225.186 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:54:00 Win2K-f 122.125.225.186 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:56:00 Win2K-f 82.114.227.175 (-):
NEW GAMMA TELECOM LTD,
NICOSIA, NICOSIA, CY. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:57:00 Win2K-f 89.20.105.182 (PERMONLINE.RU):
DYNAMIC POOL FOR ADSL CLIENTS,
PERM', PERMSKAYA OBLAST', RU. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

03:57:00 Win2K-f 60.188.112.51 (163DATA.COM.CN):
CHINANET-ZJ TAIZHOU NODE NETWORK,
CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:00:00 Win2K-f 195.43.6.8 (NRIAG.SCI.EG):
MINISTRY OF SCIENTIFIC RESEARCH,
EG. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:06:00 Win2K-f 190.1.162.76 (METROTEL.NET.CO):
METROTEL REDES S.A,
BARRANQUILLA, ATLANTICO, CO. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

T:04:08:00 Win2K-f 94.76.147.183 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:09:00 Win2K-f 87.24.83.106 (BUSINESS.TELECOMITALIA.IT):
TELECOM ITALIA NET,
IT. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:16:00 Win2K-f 189.22.250.6 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:312 hits: 11-25 to 12-29] none[3] none:none
Armadillo| none trace

T:04:22:00 Win2K-f 119.47.90.3 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:23:00 Win2K-f 88.3.175.228 (RIMA-TDE.NET):
TELEFONICA DE ESPANA,
ES. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

04:24:00 Win2K-f 119.85.216.60 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
5 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:25:00 Win2K-f 210.4.126.141 (-):
COMCLARK,
ROXAS, CAPIZ, PH. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:25:00 Win2K-f 114.44.115.85 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:26:00 Win2K-f 79.0.244.243 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA NET,
ROME, LAZIO, IT. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:723 hits: 11-30 to 12-29] none[3] none:none
StarForce| none trace

04:32:00 Win2K-f 120.50.1.61 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:38:00 Win2K-f 118.165.73.242 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:42:00 Win2K-f 190.92.18.22 (-):
CABLECOLOR S.A,
TEGUCIGALPA, FRANCISCO MORAZAN, HN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:43:00 Win2K-f 118.165.73.242 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:44:00 Win2K-f 221.127.5.216 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:48:00 Win2K-f 123.176.35.103 (-):
INTERNET TELEPHONY SERVICE PROVIDER,
HYDERABAD, ANDHRA PRADESH, IN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:54:00 Win2K-f 186.9.25.220 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:706 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

04:55:00 Win2K-f 221.127.5.216 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:56:00 Win2K-f 89.19.14.82 (CIZGIBILGISAYAR.COM):
CIZGI BILGISAYAR SISTEMLERI SAN. TIC. LTD. STI,
TR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80
TR:89.19.14.82:1431 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:59:00 Win2K-f 114.45.219.234 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:04:00 Win2K-f 170.51.177.199 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:07:00 Win2K-f 212.95.40.60 (-):
DEUTSCHES INTERNET-ZENTRUM AG,
DE. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:723 hits: 11-30 to 12-29] none[3] none:none
StarForce| none trace

T:05:13:00 Win2K-f 59.104.248.2 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:563 hits: 11-21 to 12-29] none[3] none:none
StarForce| none trace

05:14:00 Win2K-f 60.53.223.252 (TM.NET.MY):
TELEKOM MALAYSIA BERHAD,
KUALA LUMPUR, WILAYAH PERSEKUTUAN, MY. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

05:19:00 Win2K-f 118.232.57.30 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:20:00 Win2K-f 61.224.96.50 (HINET.NET):
DATA COMMUNICATION BUSINESS GROUP CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:21:00 Win2K-f 59.53.125.224 (163DATA.COM.CN):
CHINANET JIANGXI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:21:00 Win2K-f 122.123.201.124 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:34:00 Win2K-f 222.84.167.36 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
GUANGXI, GUANGXI, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:111 hits: 11-29 to 12-29] none[3] none:none
UPX| none trace

T:05:34:00 Win2K-f 221.126.117.135 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:39:00 Win2K-f 200.141.194.4 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:111 hits: 11-29 to 12-29] none[3] none:none
UPX| none trace

05:39:00 Win2K-f 59.117.240.153 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:43:00 Win2K-f 118.161.136.188 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:48:00 Win2K-f 190.30.192.172 (NET.AR):
APOLO -GOLD-TELECOM-PER,
CORDOBA, CORDOBA, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

T:05:49:00 Win2K-f 123.204.130.105 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:49:00 Win2K-f 124.104.121.251 (PLDT.NET):
JNEC7300I01_CONSUMER,
PH. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 9 of 38 e1a2e3980d
[Firefox:11 hits: 12-05 to 12-28] none[3] none:none
UPX| none trace

05:54:00 Win2K-f 201.41.33.5 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:55:00 Win2K-f 124.6.19.252 (-):
PHOENIX CATV C,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 6 of 37 13e15a653e
[Firefox:38 hits: 11-21 to 12-29] none[3] none:none
UPX| none trace

05:56:00 Win2K-f 84.3.200.113 (T-ONLINE.HU):
HUNGARIAN TELECOM,
HU. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:57:00 Win2K-f 190.9.9.18 (COM.AR):
COOPERATIVA TELEFONICA CARLOS TEJEDOR LTDA,
MAR DEL PLATA, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

06:07:00 Win2K-f 88.112.120.15 (ELISA-LAAJAKAISTA.FI):
ELISA-ADSL,
FI. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 26 of 38 c645a73bd2
NEW none[3] none:none
tElock| none trace

06:09:00 Win2K-f 186.9.25.220 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:706 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

06:12:00 Win2K-f 220.132.180.105 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:13:00 Win2K-f 114.44.190.212 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:14:00 Win2K-f 210.59.187.34 (TMA.ORG.TW):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:22:00 Win2K-f 114.44.190.212 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:25:00 Win2K-f 79.108.3.122 (G-M-I.NET):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:27:00 Win2K-f 79.108.3.122 (G-M-I.NET):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:30:00 Win2K-f 189.61.64.70 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:35:00 Win2K-f 190.9.9.18 (COM.AR):
COOPERATIVA TELEFONICA CARLOS TEJEDOR LTDA,
MAR DEL PLATA, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

06:37:00 Win2K-f 69.13.195.30 (PROPAGATION.NET):
C I HOST,
US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:37:00 Win2K-f 93.113.48.160 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:46:00 Win2K-f 122.123.201.124 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:46:00 Win2K-f 211.74.129.218 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:51:00 Win2K-f 114.46.86.205 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:51:00 Win2K-f 59.95.199.150 (10/24.BSNL.IN):
NIB (NATIONAL INTERNET BACKBONE),
DELHI, DELHI, IN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:52:00 Win2K-f 82.11.3.54 (NTL.COM):
NTL INFRASTRUCTURE - WALTHAM PARK,
NOTTINGHAM, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 6 of 37 fcb1f9cdfa
[Firefox: 5 hits: 11-25 to 11-29] none[3] none:none
UPX| none trace

T:06:56:00 Win2K-f 76.8.176.125 (SPEAKEASY.NET):
US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:58:00 Win2K-f 189.61.64.70 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:02:00 Win2K-f 219.91.115.45 (APOL.COM.TW):
ASIA PACIFIC ON-LINE SERVICES INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:06:00 Win2K-f 93.113.48.160 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:06:00 Win2K-f 200.127.211.161 (NET.AR):
PRIMA S.A,
BUENOS AIRES, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

T:07:08:00 Win2K-f 122.120.44.121 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:13:00 Win2K-f 200.58.77.129 (SUPERNET.COM.BO):
COMTECO LTDA,
COCHABAMBA, COCHABAMBA, BO. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

T:07:23:00 Win2K-f 200.117.211.110 (NET.AR):
APOLO -GOLD-TELECOM-PER,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:23:00 Win2K-f 118.232.45.57 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:24:00 Win2K-f 190.51.104.250 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

07:30:00 Win2K-f 212.117.163.75 (-):
EYENET,
UK. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:563 hits: 11-21 to 12-29] none[3] none:none
StarForce| none trace

T:07:33:00 Win2K-f 94.51.233.113 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:36:00 Win2K-f 115.88.60.213 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:38:00 Win2K-f 84.120.81.26 (ONO.COM):
CABLEUROPA - ONO,
VALENCIA, VALENCIA, ES. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:111 hits: 11-29 to 12-29] none[3] none:none
UPX| none trace

07:38:00 Win2K-f 58.27.252.210 (-):
NATIONAL WIMAX/IMS ENVIRONMENT,
PK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:39:00 Win2K-f 189.123.29.37 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

07:44:00 Win2K-f 87.246.57.176 (-):
TRIPLE PLAY OF CABLETEL PLC IN SHUMEN - NEW CMTS,
BG. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 9 of 38 e1a2e3980d
[Firefox:11 hits: 12-05 to 12-28] none[3] none:none
UPX| none trace

07:49:00 Win2K-f 200.117.211.110 (NET.AR):
APOLO -GOLD-TELECOM-PER,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:52:00 Win2K-f 200.58.77.129 (SUPERNET.COM.BO):
COMTECO LTDA,
COCHABAMBA, COCHABAMBA, BO. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

T:07:57:00 Win2K-f 210.64.248.36 (TAYA.COM.TW):
DIGITAL UNITED INC,
TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:58:00 Win2K-f 190.4.42.37 (GRUPONAVEGA.COM):
NAVEGA.COM S.A,
GT. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:07:59:00 Win2K-f 190.51.104.250 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

08:03:00 Win2K-f 59.124.87.97 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:12:00 Win2K-f 123.97.57.161 (HZ.ZJ.CN):
CHINANET ZHEJIANG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:18:00 Win2K-f 190.49.126.238 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

T:08:19:00 Win2K-f 78.39.73.110 (-):
INFORMATION TECHNOLOGY COMPANY (ITC),
IR. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:20:00 Win2K-f 190.227.178.183 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:21:00 Win2K-f 59.125.238.142 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAINAN, KAO-HSIUNG, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:23:00 Win2K-f 221.127.165.71 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:25:00 Win2K-f 151.23.66.191 (-):
MANAGEMENT SCHEDE E1/PRI,
IT. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:563 hits: 11-21 to 12-29] none[3] none:none
StarForce| none trace

08:28:00 Win2K-f 151.23.66.191 (-):
MANAGEMENT SCHEDE E1/PRI,
IT. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:563 hits: 11-21 to 12-29] none[3] none:none
StarForce| none trace

08:37:00 Win2K-f 123.52.150.123 (163DATA.COM.CN):
CHINANET HENAN PROVINCE NETWORK,
HENAN, GUIZHOU, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

08:42:00 Win2K-f 89.40.58.82 (SMANET.RO):
JUMP NETWORK SERVICES S.R.L,
RO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 507252387e
[Firefox:35 hits: 11-27 to 12-29] none[3] none:none
UPX| none trace

T:08:46:00 Win2K-f 123.52.150.123 (163DATA.COM.CN):
CHINANET HENAN PROVINCE NETWORK,
HENAN, GUIZHOU, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

08:46:00 Win2K-f 201.253.217.133 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

T:08:47:00 Win2K-f 122.121.106.114 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:51:00 Win2K-f 195.16.34.234 (-):
SOVINTEL-MSK-MTK-GROUP-SA-NET,
MOSCOW, MOSKVA, RU. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:706 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:08:52:00 Win2K-f 59.114.198.2 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:312 hits: 11-25 to 12-29] none[3] none:none
Armadillo| none trace

08:54:00 Win2K-f 218.162.249.60 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:02:00 Win2K-f 60.249.206.251 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:07:00 Win2K-f 116.252.24.228 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
NANNING, GUANGXI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:11:00 Win2K-f 124.8.65.237 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:11:00 Win2K-f 194.84.146.10 (MRDOORS.RU):
(7164) MR DOORS HOME DECOR MOSCOW,
MOSCOW, MOSKVA, RU. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:42 hits: 12-19 to 12-29] none[3] none:none
MEW| none trace

T:09:11:00 Win2K-f 189.49.215.147 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:15:00 Win2K-f 61.91.127.42 (ASIANET.CO.TH):
TRUE INTERNET CO. LTD,
BANGKOK, KRUNG THEP MAHANAKHON, TH. (DIAL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:21:00 Win2K-f 221.127.165.71 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:22:00 Win2K-f 190.3.35.31 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

09:33:00 Win2K-f 82.249.23.158 (PROXAD.NET):
PROXAD / FREE SAS,
NICE, PROVENCE-ALPES-COTE D'AZUR, FR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:33:00 Win2K-f 80.4.81.107 (NTL.COM):
NTL INFRASTRUCTURE - CAMBRIDGE,
HUDDERSFIELD, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:38:00 Win2K-f 116.252.24.228 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
NANNING, GUANGXI, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:38:00 Win2K-f 77.37.193.157 (NCNET.RU):
NCN-INFRA,
RU. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:46:00 Win2K-f 190.90.197.63 (EQUITEL.COM.CO):
INTERNEXA S.A. E.S.P,
CO. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:47:00 Win2K-f 82.249.23.158 (PROXAD.NET):
PROXAD / FREE SAS,
NICE, PROVENCE-ALPES-COTE D'AZUR, FR. (DSL) n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:09:47:00 Win2K-f 79.21.103.198 (SRC.ORG):
TELECOM ITALIA NET,
ROME, LAZIO, IT. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:50:00 Win2K-f 59.95.199.150 (10/24.BSNL.IN):
NIB (NATIONAL INTERNET BACKBONE),
DELHI, DELHI, IN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:00:00 Win2K-f 125.232.6.206 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:05:00 Win2K-f 85.13.222.82 (COREIX.NET):
COREIX LIMITED,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:10:00 Win2K-f 77.20.190.227 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:10:00 Win2K-f 190.51.28.221 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:723 hits: 11-30 to 12-29] none[3] none:none
StarForce| none trace

10:14:00 Win2K-f 80.4.81.107 (NTL.COM):
NTL INFRASTRUCTURE - CAMBRIDGE,
HUDDERSFIELD, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:15:00 Win2K-f 61.224.54.37 (HINET.NET):
DATA COMMUNICATION BUSINESS GROUP CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:16:00 Win2K-f 94.51.233.113 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:21:00 Win2K-f 98.66.173.121 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:30:00 Win2K-f 190.165.47.107 (-):
EMTELSA S.A. E.S.P,
CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:30:00 Win2K-f 59.174.65.98 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
WUHAN, HUBEI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:312 hits: 11-25 to 12-29] none[3] none:none
Armadillo| none trace

T:10:33:00 Win2K-f 125.232.6.206 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:37:00 Win2K-f 84.121.47.221 (ONO.COM):
CABLEUROPA - ONO,
ALICANTE, VALENCIA, ES. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:41:00 Win2K-f 190.128.78.64 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:42:00 Win2K-f 122.126.143.238 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:43:00 Win2K-f 190.30.93.143 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. (DIAL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:563 hits: 11-21 to 12-29] none[3] none:none
StarForce| none trace

T:10:44:00 Win2K-f 190.50.88.159 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:53:00 Win2K-f 59.105.21.248 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:56:00 Win2K-f 72.44.69.122 (MULTACOM.COM):
MULTACOM CORPORATION,
CANYON COUNTRY, CALIFORNIA, US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:00:00 Win2K-f 61.224.54.37 (HINET.NET):
DATA COMMUNICATION BUSINESS GROUP CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:00:00 Win2K-f 60.54.29.198 (TM.NET.MY):
TELEKOM MALAYSIA BERHAD,
KUALA LUMPUR, WILAYAH PERSEKUTUAN, MY. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

T:11:01:00 Win2K-f 124.115.35.16 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:79 hits: 11-23 to 12-29] none[3] none:none
StarForce| none trace

11:01:00 Win2K-f 98.66.173.121 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:03:00 Win2K-f 82.252.32.162 (PROXAD.NET):
PROXAD / FREE SAS,
NICE, PROVENCE-ALPES-COTE D'AZUR, FR. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:06:00 Win2K-f 190.220.95.124 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:11:00 Win2K-f 59.116.165.145 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:11:00 Win2K-f 124.115.35.16 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:79 hits: 11-23 to 12-29] none[3] none:none
StarForce| none trace

T:11:13:00 Win2K-f 200.49.19.166 (BSR1000.PAPNET.CL):
PLUG AND PLAY NET S.A,
CL. n/a US:www.maxmind.com
:checkip.dyndns.org
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 7 of 37 bd35d4d98f
[Firefox:41 hits: 11-27 to 12-29] none[3] none:none
Armadillo| none trace

11:16:00 Win2K-f 70.38.9.39 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:23:00 Win2K-f 77.110.125.60 (ZAJOUL.NET.SA):
ZAJOUL NET,
RIYADH, AR RIYAD, SA. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:111 hits: 11-29 to 12-29] none[3] none:none
UPX| none trace

T:11:27:00 Win2K-f 114.47.91.9 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:29:00 Win2K-f 82.252.32.162 (PROXAD.NET):
PROXAD / FREE SAS,
NICE, PROVENCE-ALPES-COTE D'AZUR, FR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:39:00 Win2K-f 61.224.107.31 (HINET.NET):
DATA COMMUNICATION BUSINESS GROUP CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:64.246.48.99:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
4 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:40:00 Win2K-f 201.172.110.120 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:723 hits: 11-30 to 12-29] none[3] none:none
StarForce| none trace

T:11:43:00 Win2K-f 84.121.47.221 (ONO.COM):
CABLEUROPA - ONO,
ALICANTE, VALENCIA, ES. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:49:00 Win2K-f 114.47.91.9 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:51:00 Win2K-f 186.9.177.135 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:52:00 Win2K-f 195.49.240.84 (EKSJO.COM):
EKSJO ENERGI ELIT AB,
EKSJö, JöNKöPING, SE. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
SE:195.49.240.84:9850
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:59:00 Win2K-f 192.100.76.54 (WESTLAB.COM):
WESTLAB CONSULTING,
RICHMOND, VIRGINIA, US. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:00:00 Win2K-f 190.50.88.159 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:02:00 Win2K-f 195.49.240.84 (EKSJO.COM):
EKSJO ENERGI ELIT AB,
EKSJö, JöNKöPING, SE. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:04:00 Win2K-f 201.172.110.120 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:723 hits: 11-30 to 12-29] none[3] none:none
StarForce| none trace

12:08:00 Win2K-f 77.110.125.60 (ZAJOUL.NET.SA):
ZAJOUL NET,
RIYADH, AR RIYAD, SA. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:111 hits: 11-29 to 12-29] none[3] none:none
UPX| none trace

12:08:00 Win2K-f 186.9.177.135 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:10:00 Win2K-f 67.101.132.24 (COVAD.NET):
COVAD COMMUNICATIONS CO,
NEW YORK, NEW YORK, US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset lanman
http
34 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:13:00 Win2K-f 59.116.165.145 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:19:00 Win2K-f 200.49.19.166 (BSR1000.PAPNET.CL):
PLUG AND PLAY NET S.A,
CL. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 bd35d4d98f
[Firefox:41 hits: 11-27 to 12-29] none[3] none:none
Armadillo| none trace

12:29:00 Win2K-f 125.232.6.206 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:32:00 Win2K-f 186.9.47.117 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:34:00 Win2K-f 219.10.178.9 (BBTEC.NET):
SOFTBANK BB CORP,
TOKYO, TOKYO, JP. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:42 hits: 12-19 to 12-29] none[3] none:none
MEW| none trace

12:38:00 Win2K-f 115.83.166.214 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:12:40:00 Win2K-f 190.50.94.231 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:563 hits: 11-21 to 12-29] none[3] none:none
StarForce| none trace

12:42:00 Win2K-f 190.7.159.146 (-):
EMTELSA S.A. E.S.P,
CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:46:00 Win2K-f 89.232.228.82 (ISURGUT.RU):
USHOPPING CENTER-OFFICE CENTRAL IN SURGUT RUSSIA,
RU. (DIAL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:50:00 Win2K-f 201.173.27.74 (IFXNW.COM.MX):
NETWORK INFORMATION CENTER MEXICO,
MX. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:723 hits: 11-30 to 12-29] none[3] none:none
StarForce| none trace

T:12:52:00 Win2K-f 190.49.205.190 (COM.AR):
TELEFONICA DE ARGENTINA,
USHUAIA, ANTARTIDA E ISLAS DEL ATLAN TIERRA DEL FUEGO, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

12:52:00 Win2K-f 190.50.94.231 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:563 hits: 11-21 to 12-29] none[3] none:none
StarForce| none trace

T:12:53:00 Win2K-f 190.208.97.45 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:54:00 Win2K-f 211.75.78.124 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:54:00 Win2K-f 202.149.44.179 (EXATT.NET):
POWERNET,
MUMBAI, MAHARASHTRA, IN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:57:00 Win2K-f 84.120.102.113 (ONO.COM):
CABLEUROPA - ONO,
VALENCIA, VALENCIA, ES. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:03:00 Win2K-f 190.30.93.143 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. (DIAL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:563 hits: 11-21 to 12-29] none[3] none:none
StarForce| none trace

13:05:00 Win2K-f 190.51.125.190 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:05:00 Win2K-f 92.68.11.194 (PLANET.NL):
KONINKLIJKE KPN N.V,
NL. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:10:00 Win2K-f 190.7.159.146 (-):
EMTELSA S.A. E.S.P,
CO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:16:00 Win2K-f 200.75.249.135 (CABLEONDA.NET):
CABLE ONDA,
PANAMA CITY, PANAMA, PA. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:22:00 Win2K-f 67.101.132.24 (COVAD.NET):
COVAD COMMUNICATIONS CO,
NEW YORK, NEW YORK, US. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:23:00 Win2K-f 190.105.50.137 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

13:30:00 Win2K-f 190.49.205.190 (COM.AR):
TELEFONICA DE ARGENTINA,
USHUAIA, ANTARTIDA E ISLAS DEL ATLAN TIERRA DEL FUEGO, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

T:13:30:00 Win2K-f 79.113.146.203 (RDSNET.RO):
RDS,
BUCHAREST, BUCURESTI, RO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

13:35:00 Win2K-f 190.229.35.94 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

T:13:36:00 Win2K-f 61.224.54.37 (HINET.NET):
DATA COMMUNICATION BUSINESS GROUP CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:37:00 Win2K-f 82.67.160.77 (PROXAD.NET):
PROXAD / FREE SAS,
LIMOGES, LIMOUSIN, FR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:111 hits: 11-29 to 12-29] none[3] none:none
UPX| none trace

T:13:40:00 Win2K-f 190.26.143.19 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:41:00 Win2K-f 114.47.65.216 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:53:00 Win2K-f 217.162.38.100 (HISPEED.CH):
CABLECOMMAIN-NET,
ZURICH, ZURICH, CH. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:54:00 Win2K-f 122.121.135.46 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:55:00 Win2K-f 190.51.125.190 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:58:00 Win2K-f 189.81.158.250 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

13:58:00 Win2K-f 92.68.11.194 (PLANET.NL):
KONINKLIJKE KPN N.V,
NL. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:59:00 Win2K-f 113.61.129.12 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:02:00 Win2K-f 89.124.86.12 (IRISHBROADBAND.IE):
ESB ORANMORE CUSTOMER EXPANSION,
IE. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

T:14:05:00 Win2K-f 62.42.56.5 (ONOLAB.COM):
CABLEUROPA - ONO,
ES. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 37 4f88618d4f
[Firefox:83 hits: 11-29 to 12-29] none[3] none:none
UPX| none trace

14:11:00 Win2K-f 190.51.49.195 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

T:14:11:00 Win2K-f 113.61.129.12 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:17:00 Win2K-f 213.22.9.22 (CPE.NETCABO.PT):
TVCABO-PORTUGAL CABLE MODEM NETWORK,
LISBON, LISBOA, PT. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

T:14:18:00 Win2K-f 88.85.191.104 (-):
IVTELECOM,
RU. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:14:21:00 Win2K-f 190.51.49.195 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

T:14:23:00 Win2K-f 59.104.101.238 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:30:00 Win2K-f 194.8.75.145 (LIX.LV):
LAST RESORT LOCAL REGISTRY,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

T:14:32:00 Win2K-f 190.69.245.117 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

T:14:33:00 Win2K-f 116.1.131.1 (MOLLINDUSTRIES.COM):
CHINANET GUANGXI PROVINCE NETWORK,
NANNING, GUANGXI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:42:00 Win2K-f 190.69.245.117 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
CO. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

T:14:48:00 Win2K-f 114.47.65.216 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:48:00 Win2K-f 59.104.101.238 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:51:00 Win2K-f 190.156.69.97 (CABLE.NET.CO):
TV CABLE S.A,
CO. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:723 hits: 11-30 to 12-29] none[3] none:none
StarForce| none trace

T:14:53:00 Win2K-f 212.62.118.20 (-):
ICCSOLUTIONS,
SA. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:563 hits: 11-21 to 12-29] none[3] none:none
StarForce| none trace

14:54:00 Win2K-f 124.8.96.251 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:58:00 Win2K-f 190.139.73.128 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

T:15:03:00 Win2K-f 203.67.49.195 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:15:06:00 Win2K-f 190.50.104.238 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

15:06:00 Win2K-f 118.161.214.223 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:07:00 Win2K-f 211.74.54.240 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:16:00 Win2K-f 59.115.211.58 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:19:00 Win2K-f 86.8.134.9 (NTL.COM):
NTL INFRASTRUCTURE - OXFORD,
UK. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:20:00 Win2K-f 122.118.184.230 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:22:00 Win2K-f 186.9.191.7 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset lanman
http
31 lines Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

15:23:00 Win2K-f 122.123.97.195 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:28:00 Win2K-f 62.120.81.202 (-):
EUNET,
FR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:29:00 Win2K-f 12.104.239.109 (-):
SANDWICH ISLES COMMUNICATIONS I,
HONOLULU, HAWAII, US. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:563 hits: 11-21 to 12-29] none[3] none:none
StarForce| none trace

15:38:00 Win2K-f 59.174.65.18 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
WUHAN, HUBEI, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:40:00 Win2K-f 190.105.49.162 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:15:44:00 Win2K-f 190.30.137.93 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

15:45:00 Win2K-f 190.253.73.170 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:723 hits: 11-30 to 12-29] none[3] none:none
StarForce| none trace

T:15:48:00 Win2K-f 59.104.255.102 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:55:00 Win2K-f 59.104.255.102 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:57:00 Win2K-f 190.0.131.59 (ANTELDATA.NET.UY):
ADMINISTRACION NACIONAL DE TELECOMUNICACIONES,
MONTEVIDEO, MONTEVIDEO, UY. (DIAL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

16:00:00 Win2K-f 190.55.165.72 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:16:01:00 Win2K-f 201.255.65.232 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:04:00 Win2K-f 222.88.88.107 (163DATA.COM.CN):
CHINANET HENAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:05:00 Win2K-f 114.44.145.136 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:16:11:00 Win2K-f 190.51.19.41 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:15:00 Win2K-f 190.128.80.15 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:706 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

16:15:00 Win2K-f 195.56.7.177 (DATANET.HU):
ORG_UNIT_EN: GTS-DATANET TELECOMMUNICATION CO. LTD,
BUDAPEST, BUDAPEST, HU. n/a US:www.maxmind.com
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:723 hits: 11-30 to 12-29] none[3] none:none
StarForce| none trace

T:16:16:00 Win2K-f 190.128.80.15 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:706 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:16:20:00 Win2K-f 70.72.7.17 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
CALGARY, ALBERTA, CA. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:22:00 Win2K-f 114.47.65.216 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:22:00 Win2K-f 221.126.250.245 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:27:00 Win2K-f 170.51.178.45 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:34:00 Win2K-f 122.126.3.229 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:36:00 Win2K-f 170.51.64.207 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

T:16:41:00 Win2K-f 62.82.97.2 (AUNA.NET):
AUNA S.A.U,
PALMA DE MALLORCA, BALEARES, ES. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:51:00 Win2K-f 123.204.117.152 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:52:00 Win2K-f 190.48.26.51 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:55:00 Win2K-f 24.56.229.73 (CABLESPEED.COM):
MILLENNIUM DIGITAL MEDIA L.L.C,
SOUTH LYON, MICHIGAN, US. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:57:00 Win2K-f 59.114.143.109 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:05:00 Win2K-f 201.254.91.143 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:42 hits: 12-19 to 12-29] none[3] none:none
MEW| none trace

17:09:00 Win2K-f 170.51.55.242 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:14:00 Win2K-f 170.51.55.242 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:17:00 Win2K-f 91.40.81.50 (T-IPCONNECT.DE):
DEUTSCHE TELEKOM AG,
DE. (DIAL) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:21:00 Win2K-f 208.72.135.75 (TEKLINKS.COM):
TEKLINKS INC,
BIRMINGHAM, ALABAMA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:23:00 Win2K-f 91.64.197.24 (SUPERKABEL.DE):
KABEL-DEUTSCHLAND-CUSTOMER-SERVICES,
DE. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:706 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:17:25:00 Win2K-f 83.38.64.213 (RIMA-TDE.NET):
TELEFONICA DE ESPANA,
MADRID, MADRID, ES. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:29:00 Win2K-f 190.136.198.96 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:31:00 Win2K-f 190.105.49.162 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 6 of 37 fcb1f9cdfa
[Firefox: 5 hits: 11-25 to 11-29] none[3] none:none
UPX| none trace

17:32:00 Win2K-f 220.132.12.108 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:33:00 Win2K-f 190.65.189.90 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
BARRANQUILLA, ATLANTICO, CO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

T:17:38:00 Win2K-f 190.136.198.96 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:45:00 Win2K-f 88.28.110.135 (RIMA-TDE.NET):
TELEFONICA MOVILES ESPANA (NCC#2007041930),
ES. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

17:46:00 Win2K-f 83.38.64.213 (RIMA-TDE.NET):
TELEFONICA DE ESPANA,
MADRID, MADRID, ES. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:47:00 Win2K-f 122.120.128.230 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:48:00 Win2K-f 88.44.233.50 (BUSINESS.TELECOMITALIA.IT):
INTERBUSINESS,
ROME, LAZIO, IT. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:50:00 Win2K-f 61.31.35.249 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:57:00 Win2K-f 217.20.89.19 (-):
WEST-REGION,
RU. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:00:00 Win2K-f 200.111.140.189 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:18:01:00 Win2K-f 190.19.232.116 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:03:00 Win2K-f 190.188.152.172 (NET.AR):
PRIMA S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

18:05:00 Win2K-f 120.87.247.38 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
5 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:06:00 Win2K-f 189.126.17.141 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 507252387e
[Firefox:35 hits: 11-27 to 12-29] none[3] none:none
UPX| none trace

18:12:00 Win2K-f 190.208.110.111 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:16:00 Win2K-f 122.121.240.76 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:723 hits: 11-30 to 12-29] none[3] none:none
StarForce| none trace

T:18:19:00 Win2K-f 61.59.153.139 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:20:00 Win2K-f 187.3.231.67 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:172 hits: 11-20 to 12-29] none[3] none:none
StarForce| none trace

T:18:21:00 Win2K-f 190.208.110.111 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:27:00 Win2K-f 190.188.152.172 (NET.AR):
PRIMA S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

T:18:30:00 Win2K-f 122.121.240.76 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:723 hits: 11-30 to 12-29] none[3] none:none
StarForce| none trace

18:30:00 Win2K-f 201.172.36.35 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:723 hits: 11-30 to 12-29] none[3] none:none
StarForce| none trace

T:18:32:00 Win2K-f 208.98.1.163 (SHARKTECH.NET):
SHARKTECH INTERNET SERVICES,
MISSOULA, MONTANA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:37:00 Win2K-f 216.6.167.121 (WARWICK.NET):
WVT COMMUNICATIONS,
HIGHLAND LAKES, NEW JERSEY, US. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:37:00 Win2K-f 201.172.36.35 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 9 of 38 139b1ecc3e
NEW none[3] none:none
StarForce| none trace

18:37:00 Win2K-f 72.29.94.42 (DIMENOC.COM):
HOSTDIME.COM INC,
US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:48:00 Win2K-f 190.208.76.79 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:52:00 Win2K-f 217.20.89.19 (-):
WEST-REGION,
RU. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:55:00 Win2K-f 190.51.63.98 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:56:00 Win2K-f 190.49.5.112 (COM.AR):
TELEFONICA DE ARGENTINA,
CIPOLLETTI, NEUQUEN, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

T:19:01:00 Win2K-f 190.51.63.98 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:04:00 Win2K-f 217.11.27.58 (-):
WIRELESS LINK,
TEHRAN, TEHRAN, IR. (100Mbps) n/a 445 pcap raw alerts
ruleset http
2 lines Argh : 0.3
profile none summary
tarball none none none none none none none

T:19:04:00 Win2K-f 190.49.127.194 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:06:00 Win2K-f 94.101.129.222 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

19:06:00 Win2K-f 189.126.17.141 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 507252387e
[Firefox:35 hits: 11-27 to 12-29] none[3] none:none
UPX| none trace

T:19:11:00 Win2K-f 114.44.184.56 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:20:00 Win2K-f 190.51.118.177 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

T:19:21:00 Win2K-f 195.11.241.30 (KVAZAR-MICRO.NL):
DEMON NL CO-LOCATION CUSTOMER,
MARKNESSE, OVERIJSSEL, NL. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:26:00 Win2K-f 190.51.118.177 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

19:26:00 Win2K-f 219.83.73.43 (-):
HOST SIMKARI KEJAKSAAN AGUNG RI,
JAKARTA, JAKARTA RAYA (DJAKARTA RAYA), ID. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:706 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

19:27:00 Win2K-f 83.59.237.197 (RIMA-TDE.NET):
TELEFONICA DE ESPANA(NCC#2005070725),
ES. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

T:19:32:00 Win2K-f 219.83.73.43 (-):
HOST SIMKARI KEJAKSAAN AGUNG RI,
JAKARTA, JAKARTA RAYA (DJAKARTA RAYA), ID. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:706 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:19:37:00 Win2K-f 62.82.97.2 (AUNA.NET):
AUNA S.A.U,
PALMA DE MALLORCA, BALEARES, ES. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:38:00 Win2K-f 219.86.224.251 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:41:00 Win2K-f 114.44.96.190 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:42:00 Win2K-f 125.22.105.58 (125.AIRTELBROADBAND.IN):
BHARTI INFOTEL LTD. (BBANDTS KK),
BANGALORE, KARNATAKA, IN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:42 hits: 12-19 to 12-29] none[3] none:none
MEW| none trace

T:19:43:00 Win2K-f 83.59.237.197 (RIMA-TDE.NET):
TELEFONICA DE ESPANA(NCC#2005070725),
ES. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

19:48:00 Win2K-f 186.0.33.212 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:50:00 Win2K-f 61.185.3.59 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
SHANXI, SHANXI, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:53:00 Win2K-f 170.51.170.130 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

19:53:00 Win2K-f 186.9.51.65 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:19:53:00 Win2K-f 186.9.51.65 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:19:55:00 Win2K-f 125.116.140.140 (HZ.ZJ.CN):
CHINANET ZHEJIANG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:58:00 Win2K-f 84.75.181.209 (HISPEED.CH):
CABLECOMMAIN-NET,
ZURICH, ZURICH, CH. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:312 hits: 11-25 to 12-29] none[3] none:none
Armadillo| none trace

20:03:00 Win2K-f 218.20.162.194 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:20:06:00 Win2K-f 190.3.101.100 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

20:12:00 Win2K-f 190.220.8.20 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:13:00 Win2K-f 117.86.88.92 (163DATA.COM.CN):
CHINANET JIANGSU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:18:00 Win2K-f 186.9.26.6 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:42 hits: 12-19 to 12-29] none[3] none:none
MEW| none trace

T:20:20:00 Win2K-f 122.125.136.188 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:23:00 Win2K-f 125.116.140.140 (HZ.ZJ.CN):
CHINANET ZHEJIANG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:24:00 Win2K-f 24.77.215.187 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
KELOWNA, BRITISH COLUMBIA, CA. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:28:00 Win2K-f 70.15.193.26 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:33:00 Win2K-f 79.20.154.67 (SRC.ORG):
TELECOM ITALIA NET,
ROME, LAZIO, IT. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:563 hits: 11-21 to 12-29] none[3] none:none
StarForce| none trace

20:34:00 Win2K-f 77.79.103.18 (GRID.COM.TR):
GRID BILISIM TEKNOLOJILERI A.S,
ISTANBUL, ISTANBUL, TR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:34:00 Win2K-f 87.108.101.69 (ACADEMICA.FI):
ACADEMICA,
FI. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:43:00 Win2K-f 170.51.209.160 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:45:00 Win2K-f 218.163.131.197 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:48:00 Win2K-f 59.124.5.202 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
TW:59.124.5.202:6592
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:48:00 Win2K-f 186.9.26.6 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:42 hits: 12-19 to 12-29] none[3] none:none
MEW| none trace

T:20:52:00 Win2K-f 70.15.193.26 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:58:00 Win2K-f 123.204.35.7 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:02:00 Win2K-f 67.15.180.7 (EV1SERVERS.NET):
EVERYONES INTERNET,
HAMILTON, ONTARIO, CA. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:02:00 Win2K-f 71.100.85.227 (VERIZON.NET):
VERIZON INTERNET SERVICES INC,
TAMPA, FLORIDA, US. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:03:00 Win2K-f 92.125.94.11 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:05:00 Win2K-f 79.12.45.112 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA NET,
ROME, LAZIO, IT. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:09:00 Win2K-f 83.110.111.44 (NET.AE):
EMIRATES TELECOMMUNICATIONS CORPORATION,
DUBAI, DUBAI, AE. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

21:16:00 Win2K-f 59.113.170.20 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:17:00 Win2K-f 87.6.17.124 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA S.P.A. TIN EASY LITE,
LIVORNO, TOSCANA, IT. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

21:18:00 Win2K-f 190.68.236.2 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
CO. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:24:00 Win2K-f 92.125.94.11 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:30:00 Win2K-f 122.54.35.120 (PLDT.NET):
IPG,
PH. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:31:00 Win2K-f 222.85.47.227 (163DATA.COM.CN):
CHINANET HENAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:21:31:00 Win2K-f 200.70.86.34 (COM.AR):
TELEFONICA DATA ARGENTINA S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:67.15.94.80:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

21:34:00 Win2K-f 200.109.100.234 (CANTV.NET):
CANTV SERVICIOS VENEZUELA,
VE. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:36:00 Win2K-f 119.98.94.23 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:21:38:00 WinXP 74.70.168.64 (RR.COM):
ROAD RUNNER HOLDCO LLC,
STEPHENTOWN, NEW YORK, US. 194.54.90.246:80 UA:citi-bank.ru 445 pcap raw alerts
ruleset http
2 lines Yeah : 1.3
profile none summary
tarball 26 of 28 7d99b0e910
[Firefox:1033 hits: 05-01 to 12-28] none[0] none:none
PolyEnE| lines=68 trace

T:21:39:00 Win2K-f 72.29.94.42 (DIMENOC.COM):
HOSTDIME.COM INC,
US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:39:00 Win2K-f 212.68.42.198 (-):
NETWING,
AT. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:172 hits: 11-20 to 12-29] none[3] none:none
StarForce| none trace

T:21:42:00 Win2K-f 78.38.78.118 (-):
INFORMATION TECHNOLOGY COMPANY (ITC),
IR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:43:00 Win2K-f 119.95.216.42 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

21:46:00 Win2K-f 222.85.47.227 (163DATA.COM.CN):
CHINANET HENAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

21:48:00 WinXP 74.70.168.64 (RR.COM):
ROAD RUNNER HOLDCO LLC,
STEPHENTOWN, NEW YORK, US. n/a UA:citi-bank.ru
UA:194.54.90.246:80 445 pcap raw alerts
ruleset http
1 line Yeah : 1.3
profile none summary
tarball 26 of 28 7d99b0e910
[Firefox:1033 hits: 05-01 to 12-28] none[0] none:none
PolyEnE| lines=68 trace

21:52:00 Win2K-f 119.98.94.23 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:21:57:00 Win2K-f 74.41.206.99 (FRONTIERNET.NET):
FRONTIER COMMUNICATIONS OF AMERICA INC,
US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:57:00 Win2K-f 221.127.195.228 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:03:00 WinXP 72.188.107.128 (RR.COM):
ROAD RUNNER HOLDCO LLC,
ORLANDO, FLORIDA, US. n/a :www.proxy-socks.net
DE:siliconfireware.ru
:wpad
US:searchportal.information.com
RU:ebookfinaltrash.ru
US:208.73.210.121:80 445 pcap raw alerts
ruleset http
http
2 lines Yeah : 0.8
profile none summary
tarball 29 of 29 df17a625ee
[Firefox:209 hits: 05-02 to 12-09] none[0] none:none
ASPack| lines=298
embedded dns trace

22:05:00 Win2K-f 65.65.74.10 (FCMINVEST.COM):
FCM INVESTMENTS,
DALLAS, TEXAS, US. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:07:00 Win2K-f 212.68.42.198 (-):
NETWING,
AT. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:172 hits: 11-20 to 12-29] none[3] none:none
StarForce| none trace

22:07:00 Win2K-f 203.70.120.97 (SEED.NET.TW):
DIGITAL UNITED INC,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:16:00 Win2K-f 60.50.240.110 (TM.NET.MY):
TELEKOM MALAYSIA BERHAD,
KLANG, SELANGOR, MY. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 507252387e
[Firefox:35 hits: 11-27 to 12-29] none[3] none:none
UPX| none trace

22:20:00 Win2K-f 87.97.208.215 (GGBIT.NET):
EKK CATV PLOVDIV,
PLOVDIV, PLOVDIV, BG. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:255 hits: 11-26 to 12-29] none[3] none:none
Armadillo| none trace

T:22:22:00 Win2K-f 114.40.193.126 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:24:00 Win2K-f 114.47.114.204 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:24:00 Win2K-f 78.38.78.118 (-):
INFORMATION TECHNOLOGY COMPANY (ITC),
IR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:25:00 Win2K-f 190.220.8.20 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:34:00 Win2K-f 59.94.238.39 (10/24.BSNL.IN):
NIB (NATIONAL INTERNET BACKBONE),
DELHI, DELHI, IN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:35:00 Win2K-f 122.88.90.250 (JWS.COM):
CHINA TIETONG TELECOMMUNICATIONS CORPORATION,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:22:36:00 Win2K-f 59.94.238.39 (10/24.BSNL.IN):
NIB (NATIONAL INTERNET BACKBONE),
DELHI, DELHI, IN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:39:00 Win2K-f 82.250.183.131 (PROXAD.NET):
PROXAD / FREE SAS,
METZ, NANTERRE, FR. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:40:00 Win2K-f 202.55.81.18 (VQBN.COM):
VIEWQWEST PTE LTD INTERNET SERVICE PROVIDER SINGAPORE,
SINGAPORE, SINGAPORE, SG. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:43:00 Win2K-f 82.250.183.131 (PROXAD.NET):
PROXAD / FREE SAS,
METZ, NANTERRE, FR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:48:00 Win2K-f 116.68.171.130 (-):
PT. ERESHA TECHNOLOGIES,
ID. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:48:00 Win2K-f 124.13.101.88 (TM.NET.MY):
TELEKOM MALAYSIA BERHAD,
MY. n/a US:www.maxmind.com
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:55:00 Win2K-f 208.68.90.103 (G4BOX.COM):
G4BOX INC,
TORONTO, ONTARIO, CA. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:58:00 Win2K-f 94.102.6.33 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:00:00 Win2K-f 203.73.23.166 (TSRC.COM.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:563 hits: 11-21 to 12-29] none[3] none:none
StarForce| none trace

23:03:00 Win2K-f 59.113.165.218 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:07:00 Win2K-f 80.30.99.66 (CAMPUSPARTY06.NET):
TELEFONICA DE ESPANA (NCC#2007050901),
ES. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1196 hits: 11-24 to 12-29] none[3] none:none
UPX| none trace

23:07:00 Win2K-f 186.9.3.107 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:42 hits: 12-19 to 12-29] none[3] none:none
MEW| none trace

T:23:10:00 Win2K-f 190.48.18.124 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:23:18:00 Win2K-f 82.31.187.154 (NTL.COM):
NTL INFRASTRUCTURE - NORWICH,
LONDON, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:23:25:00 Win2K-f 84.127.199.38 (ONO.COM):
PROVIDER LOCAL REGISTRY,
ES. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:723 hits: 11-30 to 12-29] none[3] none:none
StarForce| none trace

23:27:00 Win2K-f 87.97.238.15 (GGBIT.NET):
EKK CATV PLOVDIV,
PLOVDIV, PLOVDIV, BG. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:42 hits: 12-19 to 12-29] none[3] none:none
MEW| none trace

T:23:29:00 Win2K-f 87.97.238.15 (GGBIT.NET):
EKK CATV PLOVDIV,
PLOVDIV, PLOVDIV, BG. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:42 hits: 12-19 to 12-29] none[3] none:none
MEW| none trace

T:23:31:00 Win2K-f 203.73.23.166 (TSRC.COM.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:563 hits: 11-21 to 12-29] none[3] none:none
StarForce| none trace

23:35:00 Win2K-f 202.148.12.126 (DNET.NET.ID):
DIPENDA JAWA TIMUR,
SURABAYA, JAWA TIMUR (DJAWA TIMUR), ID. (100Mbps) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:40:00 Win2K-f 59.112.80.105 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1502 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

23:41:00 Win2K-f 124.81.99.166 (CARSURIN.COM):
PT INDOSAT MEGA MEDIA,
ID. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:47:00 Win2K-f 79.21.62.16 (SRC.ORG):
TELECOM ITALIA NET,
ROME, LAZIO, IT. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:706 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:23:49:00 Win2K-f 202.148.12.126 (DNET.NET.ID):
DIPENDA JAWA TIMUR,
SURABAYA, JAWA TIMUR (DJAWA TIMUR), ID. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:49:00 Win2K-f 82.250.119.182 (PROXAD.NET):
PROXAD / FREE SAS,
NICE, PROVENCE-ALPES-COTE D'AZUR, FR. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:52:00 Win2K-f 211.74.52.214 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:57:00 Win2K-f 190.49.51.231 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:706 hits: 11-22 to 12-29] none[3] none:none
UPX| none trace

T:23:58:00 Win2K-f 222.185.114.205 (163DATA.COM.CN):
CHINANET JIANGSU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13551 hits: 11-20 to 12-29] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace