Multiperspective Malware Analysis Page

Welcome to the Cyber-TA
SRI's Multiperspective Malware Infection Analysis Page

UNCENSORED PAGE

<Click here: to download BotHunter>

31 December 2008
<prev> <next>

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Daily Summary Files: [DNS Lookups & Failed Connects] [ Attacker IPs ] [C&C Servers] [Binary Digests]
Cumulative Summary Files: [DNS Lookup Log] [Attacker IP Log] [C&C Server Log] [Antivirus Detection] [Code Segment Overlap]
[Behavioral Clusters] [Binary Digest Log]

[See Country Codes ]

Time
Victim
OS
Infection
Source
C&C
Server
DNS Lookups &
Failed Connects Infection
Port
Packet
Trace
Detection
Signatures
Infection
Chatter
BotHunter
Analysis
Behavioral
Cluster
Forensic
Logs
Antivirus
Labels
Packed Malware_Binary Unpacked egg.exe
Unpacked egg.asm
Packer PEID
Data Strings
Syscall Trace

00:11:00 Win2K-f 94.76.206.134 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:14:00 Win2K-f 209.145.225.248 (DIGITALRESOURCES.NET):
DIGITAL RESOURCES INC,
CHANDLER, ARIZONA, US. (100Mbps) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:14:00 Win2K-f 186.9.3.107 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:56 hits: 12-19 to 12-30] none[3] none:none
MEW| none trace

00:17:00 Win2K-f 62.94.195.52 (SN1.EUTELIA.IT):
EDISONTEL,
ROME, LAZIO, IT. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:738 hits: 11-30 to 12-30] none[3] none:none
StarForce| none trace

T:00:18:00 Win2K-f 124.81.102.115 (CARSURIN.COM):
PT INDOSAT MEGA MEDIA,
ID. (100Mbps) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

T:00:22:00 Win2K-f 59.95.182.111 (10/24.BSNL.IN):
NIB (NATIONAL INTERNET BACKBONE),
DELHI, DELHI, IN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:23:00 Win2K-f 91.64.224.68 (SUPERKABEL.DE):
KABEL-DEUTSCHLAND-CUSTOMER-SERVICES,
DE. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:32:00 Win2K-f 116.30.37.38 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:34:00 Win2K-f 119.120.56.105 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:36:00 Win2K-f 167.20.245.103 (NEXTELDATA.NET):
NEXTEL COMMUNICATIONS,
RESTON, VIRGINIA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:40:00 Win2K-f 140.113.226.50 (NCTU.EDU.TW):
TAIWAN ACADEMIC NETWORK,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:42:00 Win2K-f 58.68.25.62 (-):
DISHNET WIRELESS LTD INDIA,
CHENNAI, TAMIL NADU, IN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:47:00 Win2K-f 200.25.203.18 (PORTA.NET):
CONECEL,
EC. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:47:00 Win2K-f 59.125.7.180 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:738 hits: 11-30 to 12-30] none[3] none:none
StarForce| none trace

00:50:00 Win2K-f 91.64.224.68 (SUPERKABEL.DE):
KABEL-DEUTSCHLAND-CUSTOMER-SERVICES,
DE. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:51:00 Win2K-f 88.50.185.91 (BUSINESS.TELECOMITALIA.IT):
INTERBUSINESS,
ROME, LAZIO, IT. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:00:00 Win2K-f 69.30.189.32 (ALLTEL.NET):
WINDSTREAM COMMUNICATIONS INC,
ANAHEIM, CALIFORNIA, US. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:07:00 Win2K-f 82.31.187.154 (NTL.COM):
NTL INFRASTRUCTURE - NORWICH,
LONDON, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

01:08:00 Win2K-f 202.122.17.179 (E-KARNET.NET):
SERVICE PROVIDER,
BANGALORE, KARNATAKA, IN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:10:00 Win2K-f 79.41.170.155 (SRC.ORG):
TELECOM ITALIA NET,
ROME, LAZIO, IT. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:12:00 Win2K-f 117.32.88.234 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:577 hits: 11-21 to 12-30] none[3] none:none
StarForce| none trace

01:13:00 Win2K-f 122.125.2.189 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:16:00 Win2K-f 186.9.198.180 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:01:20:00 Win2K-f 122.117.132.156 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:28:00 Win2K-f 81.57.100.54 (PROXAD.NET):
PROXAD / FREE TELECOM,
PARIS, ILE-DE-FRANCE, FR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:30:00 Win2K-f 122.117.132.156 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:31:00 Win2K-f 194.8.75.105 (LIX.LV):
LAST RESORT LOCAL REGISTRY,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:01:32:00 Win2K-f 82.31.187.154 (NTL.COM):
NTL INFRASTRUCTURE - NORWICH,
LONDON, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:01:36:00 Win2K-f 59.105.85.97 (SEED.NET.TW):
DIGITAL UNITED I,
KAOHSIUNG, KAO-HSIUNG, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:01:38:00 Win2K-f 114.40.193.126 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:41:00 Win2K-f 61.12.122.76 (-):
MILLITECH-LAN,
IN. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

01:46:00 Win2K-f 59.104.253.23 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:50:00 Win2K-f 58.20.192.204 (-):
CNC GROUP HUNAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:51:00 Win2K-f 83.102.174.4 (-):
CORBINA-DATAFORT-BLK,
RU. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:01:00 Win2K-f 72.37.161.179 (-):
SIRIUS TELECOM,
SANTA BARBARA, CALIFORNIA, US. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:04:00 Win2K-f 59.125.7.180 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:738 hits: 11-30 to 12-30] none[3] none:none
StarForce| none trace

02:06:00 Win2K-f 203.70.158.174 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:07:00 Win2K-f 222.86.207.122 (AGENT1.GZ.CN):
CHINANET GUIZHOU PROVINCE NETWORK,
GUIZHOU, GUIZHOU, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:10:00 Win2K-f 219.109.115.64 (CATVNET.NE.JP):
CATV NETWORK SERVICES(STNET INCORPORATED),
OSAKA, OSAKA, JP. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:20:00 Win2K-f 79.109.207.85 (G-M-I.NET):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:22:00 Win2K-f 189.74.133.76 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:23:00 Win2K-f 61.12.122.76 (-):
MILLITECH-LAN,
IN. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:02:27:00 Win2K-f 190.50.52.15 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:281 hits: 11-26 to 12-30] none[3] none:none
Armadillo| none trace

T:02:31:00 Win2K-f 221.127.84.83 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:41:00 Win2K-f 79.109.207.85 (G-M-I.NET):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:44:00 Win2K-f 89.44.29.87 (-):
SC EXPANSION NET SRL,
RO. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:48:00 Win2K-f 59.113.112.211 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:50:00 Win2K-f 78.39.240.34 (-):
INFORMATION TECHNOLOGY COMPANY (ITC),
IR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:50:00 Win2K-f 121.63.157.93 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
WUHAN, HUBEI, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:54:00 Win2K-f 92.46.136.218 (IKBCC.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:56:00 Win2K-f 62.148.132.153 (KALUGA.RU):
JSC CENTERTELECOM KALUGA BRANCH,
RU. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:57:00 Win2K-f 59.113.112.211 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:57:00 WinXP 95.69.138.200 (-):
. n/a UA:citi-bank.ru
UA:194.54.90.246:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 35 of 37 1987904b12
NEW 9fd17c99f9 [0] ASM:Graph
PolyEnE| lines=68 trace

03:06:00 Win2K-f 74.63.252.86 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:738 hits: 11-30 to 12-30] none[3] none:none
StarForce| none trace

T:03:13:00 Win2K-f 118.160.35.28 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:19:00 Win2K-f 116.30.37.38 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:19:00 Win2K-f 222.53.130.148 (HERBALQC.COM):
CHINA RAILWAY TELECOMMUNICATIONS CENTER,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:22:00 Win2K-f 221.126.155.184 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:24:00 Win2K-f 202.39.251.251 (HINET.NET):
DATA COMMUNICATION BUSINESS GROUP,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:25:00 Win2K-f 219.139.101.132 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
HUBEI, HUBEI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:25:00 Win2K-f 200.123.124.108 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
MAR DEL PLATA, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:30:00 Win2K-f 91.103.153.19 (GENERALNET.NET):
GENERALNET NOC NETWORK,
RU. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:31:00 Win2K-f 113.17.251.51 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:32:00 Win2K-f 59.92.244.11 (10/24.BSNL.IN):
NIB (NATIONAL INTERNET BACKBONE),
MANGALORE, KARNATAKA, IN. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:35:00 Win2K-f 117.86.84.245 (163DATA.COM.CN):
CHINANET JIANGSU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:36:00 Win2K-f 190.50.52.15 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:281 hits: 11-26 to 12-30] none[3] none:none
Armadillo| none trace

T:03:41:00 Win2K-f 117.39.104.151 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:41:00 Win2K-f 220.131.154.40 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:51:00 Win2K-f 115.80.250.94 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:55:00 Win2K-f 200.32.173.225 (-):
ADMINISTRADOR MALL PLAZA,
CL. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:56:00 Win2K-f 115.80.250.94 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:00:00 Win2K-f 190.3.70.14 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:01:00 Win2K-f 118.160.35.28 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:02:00 Win2K-f 189.123.179.224 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

T:04:07:00 Win2K-f 74.222.2.30 (VRTSERVERS.NET):
VRTSERVERS INC,
LOS ANGELES, CALIFORNIA, US. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:10:00 Win2K-f 212.37.181.34 (-):
INTRACOM,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:318 hits: 11-25 to 12-30] none[3] none:none
Armadillo| none trace

04:12:00 Win2K-f 117.39.104.151 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:04:16:00 Win2K-f 117.86.84.245 (163DATA.COM.CN):
CHINANET JIANGSU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:20:00 Win2K-f 219.139.204.230 (163DATA.COM.CN):
CHINANET NETWORK IN WUHAN CITY HUBEI PROVINCE,
WUHAN, HUBEI, CN. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:04:20:00 Win2K-f 212.63.206.77 (-):
SPACEDUMP,
SE. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:20:00 Win2K-f 217.112.24.195 (-):
NETWORK FOR GRANDSOFTCITY,
MOSCOW, MOSKVA, RU. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
RU:217.112.24.195:6269
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:28:00 Win2K-f 124.123.62.131 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:738 hits: 11-30 to 12-30] none[3] none:none
StarForce| none trace

04:30:00 Win2K-f 125.85.70.123 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:33:00 Win2K-f 82.254.68.2 (PROXAD.NET):
PROXAD / FREE SAS,
NICE, PROVENCE-ALPES-COTE D'AZUR, FR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:37:00 Win2K-f 116.111.201.154 (USER7-175.ENET.VN):
ELECTRIC TELECOMMUNICATION COMPANY,
VN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:43:00 Win2K-f 217.31.178.172 (BITNET.NU):
ADSL FOR PRIVATE CUSTOMERS,
BORLäNGE, DALARNAS, SE. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:43:00 Win2K-f 189.120.52.85 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:281 hits: 11-26 to 12-30] none[3] none:none
Armadillo| none trace

T:04:45:00 Win2K-f 88.18.49.151 (RIMA-TDE.NET):
TELEFONICA DE ESPANA,
ES. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:67.15.94.80:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:721 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:04:47:00 Win2K-f 32.113.244.38 (PRSERV.NET):
AT&T GLOBAL NETWORK SERVICES,
LAKE MARY, FLORIDA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:54:00 Win2K-f 122.127.39.121 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:56:00 Win2K-f 91.66.9.34 (SUPERKABEL.DE):
KABEL DEUTSCHLAND BREITBAND SERVICE GMBH,
DE. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

05:03:00 Win2K-f 91.103.153.19 (GENERALNET.NET):
GENERALNET NOC NETWORK,
RU. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:03:00 Win2K-f 87.121.5.248 (-):
NETERRA-TELECABLENET-NET,
BG. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:06:00 Win2K-f 59.104.252.12 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:06:00 Win2K-f 190.51.190.72 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:05:11:00 Win2K-f 201.172.110.2 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:738 hits: 11-30 to 12-30] none[3] none:none
StarForce| none trace

T:05:11:00 Win2K-f 89.41.38.154 (PANEVO.RO):
SC PAN ELECTRO SRL,
RO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:14:00 Win2K-f 89.44.29.87 (-):
SC EXPANSION NET SRL,
RO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:23:00 Win2K-f 203.25.148.20 (-):
MULTILINK SYSTEMS P/L,
MELBOURNE, VICTORIA, AU. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

05:30:00 Win2K-f 125.232.94.31 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:36:00 Win2K-f 212.78.187.60 (EASYSERVER.NL):
EASYSERVER,
EINDHOVEN, NOORD-BRABANT, NL. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:41:00 Win2K-f 196.32.138.40 (-):
AYUSTAR CORP,
MIDDLEBURG, FLORIDA, US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:81 hits: 11-23 to 12-30] none[3] none:none
StarForce| none trace

05:45:00 Win2K-f 59.104.121.193 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:47:00 Win2K-f 190.49.17.128 (COM.AR):
TELEFONICA DE ARGENTINA,
CIPOLLETTI, NEUQUEN, AR. n/a 445 pcap raw alerts
ruleset http
2 lines Argh : 0.3
profile none summary
tarball none none none none none none none

T:05:53:00 Win2K-f 122.55.135.66 (PLDT.NET):
IPG,
PH. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

T:05:54:00 Win2K-f 203.25.148.20 (-):
MULTILINK SYSTEMS P/L,
MELBOURNE, VICTORIA, AU. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

05:56:00 Win2K-f 113.27.182.176 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:117 hits: 11-29 to 12-30] none[3] none:none
UPX| none trace

05:59:00 Win2K-f 189.31.140.150 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:06:00 Win2K-f 82.67.187.26 (PROXAD.NET):
PROXAD / FREE SAS,
PARIS, ILE-DE-FRANCE, FR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:56 hits: 12-19 to 12-30] none[3] none:none
MEW| none trace

T:06:10:00 Win2K-f 82.249.98.72 (PROXAD.NET):
PROXAD / FREE SAS,
NICE, PROVENCE-ALPES-COTE D'AZUR, FR. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:11:00 Win2K-f 87.121.152.157 (NETERRA.NET):
NETERRAIP,
BG. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:281 hits: 11-26 to 12-30] none[3] none:none
Armadillo| none trace

T:06:13:00 Win2K-f 125.120.136.210 (163DATA.COM.CN):
CHINANET-ZJ HANGZHOU NODE NETWORK,
HANGZHOU, ZHEJIANG, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

06:15:00 Win2K-f 88.18.49.151 (RIMA-TDE.NET):
TELEFONICA DE ESPANA,
ES. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:721 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

06:16:00 Win2K-f 74.85.103.41 (-):
MOBIUS COMMUNICATION,
HEMINGFORD, NEBRASKA, US. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:17:00 Win2K-f 60.179.162.240 (163DATA.COM.CN):
CHINANET-ZJ NINGBO NODE NETWORK,
NINGBO, ZHEJIANG, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:23:00 Win2K-f 87.121.152.157 (NETERRA.NET):
NETERRAIP,
BG. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:281 hits: 11-26 to 12-30] none[3] none:none
Armadillo| none trace

06:24:00 Win2K-f 201.172.110.2 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:738 hits: 11-30 to 12-30] none[3] none:none
StarForce| none trace

T:06:27:00 Win2K-f 125.232.94.31 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:30:00 Win2K-f 200.123.122.97 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
MAR DEL PLATA, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:40:00 Win2K-f 218.162.248.162 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:43:00 Win2K-f 82.249.98.72 (PROXAD.NET):
PROXAD / FREE SAS,
NICE, PROVENCE-ALPES-COTE D'AZUR, FR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:47:00 Win2K-f 89.44.92.80 (RDSNET.RO):
SC FANTASY PRODCOM SERV IMPEX SRL,
RO. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

T:06:48:00 Win2K-f 113.27.182.176 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:117 hits: 11-29 to 12-30] none[3] none:none
UPX| none trace

06:52:00 Win2K-f 77.43.216.131 (CCL.RU):
CCL,
RU. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:52:00 Win2K-f 113.27.246.179 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

06:56:00 Win2K-f 122.120.19.25 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:56:00 Win2K-f 115.43.217.166 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
115.43.217.166:3300
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:02:00 Win2K-f 122.120.19.25 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:04:00 Win2K-f 89.44.92.80 (RDSNET.RO):
SC FANTASY PRODCOM SERV IMPEX SRL,
RO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

07:06:00 Win2K-f 186.9.10.38 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

07:21:00 Win2K-f 190.153.75.115 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 507252387e
[Firefox:39 hits: 11-27 to 12-30] none[3] none:none
UPX| none trace

T:07:22:00 Win2K-f 200.106.203.135 (SUPERCABLETV.NET.CO):
SUPERCABLE TELECOMUNICACIONES,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:24:00 Win2K-f 89.35.188.46 (-):
SC NOR ATLANTIS PREST SRL,
PLOIESTI, PRAHOVA, RO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:30:00 Win2K-f 82.254.68.2 (PROXAD.NET):
PROXAD / FREE SAS,
NICE, PROVENCE-ALPES-COTE D'AZUR, FR. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:36:00 Win2K-f 114.47.56.120 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:39:00 Win2K-f 114.47.56.120 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:39:00 Win2K-f 213.91.172.117 (TVSKAT.NET):
SKAT TV LTD,
BURGAS, BURGAS, BG. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:281 hits: 11-26 to 12-30] none[3] none:none
Armadillo| none trace

T:07:41:00 Win2K-f 122.54.44.146 (PLDT.NET):
IPG,
PH. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:50:00 Win2K-f 202.141.224.40 (MULTI.NET.PK):
MULTINETBROADBAND,
KARACHI, SINDH, PK. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:50:00 Win2K-f 220.97.106.51 (OCN.NE.JP):
OPEN COMPUTER NETWORK,
JP. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:53:00 Win2K-f 220.97.106.51 (OCN.NE.JP):
OPEN COMPUTER NETWORK,
JP. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:55:00 Win2K-f 59.112.240.88 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

08:01:00 Win2K-f 208.100.3.75 (NOZONENET.COM):
NOZONE INC,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:02:00 Win2K-f 122.121.243.213 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:05:00 Win2K-f 200.46.188.27 (PSINETPA.NET):
NET2NET CORP,
PANAMA CITY, PANAMA, PA. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:11:00 Win2K-f 59.125.69.240 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:13:00 Win2K-f 115.80.209.10 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:13:00 Win2K-f 194.8.75.149 (LIX.LV):
LAST RESORT LOCAL REGISTRY,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
:checkip.dyndns.org
EU:194.8.75.149:2098
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:08:18:00 Win2K-f 186.9.10.38 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:19:00 WinXP 79.163.201.166 (-):
IDEA,
PL. 58.65.234.89:65520 HK:proxim.ircgalaxy.pl
CN:horobl.cn
CN:goasi.cn
CN:www.upononjob.cn
US:get.live.com
:msnmercustacqprod.112.2o7.net
US:signup.live.com
US:b.mx.mail.yahoo.com
US:c.mx.mail.yahoo.com
US:d.mx.mail.yahoo.com
US:e.mx.mail.yahoo.com
US:f.mx.mail.yahoo.com
US:g.mx.mail.yahoo.com
:a.mx.mail.yahoo.com
DE:mx-ha02.web.de
DE:mx-ha01.web.de
US:mailin-01.mx.aol.com
US:mailin-04.mx.aol.com
US:mailin-03.mx.aol.com
US:gmail-smtp-in.l.google.com
US:alt1.gmail-smtp-in.l.google.com
US:alt2.gmail-smtp-in.l.google.com
US:gsmtp147.google.com
US:gsmtp183.google.com
:www.google.com 445 pcap raw alerts
ruleset http
irc
441 lines Yeah : 1.3
profile none summary
tarball 5 of 38
36 of 38
9 of 38 1cb2f3da26
NEW
40eb32f611
NEW
db97fcb2d2
NEW 37da677eeb [0]
514bcf653b[0]
9e826e24a7[0] ASM:Graph
ASM:Graph
ASM:Graph
none|none
PolyEnE|
Stranik| lines=0
lines=134
lines=7 trace
trace
trace

08:24:00 Win2K-f 86.107.44.57 (SMANET.RO):
JUMP NETWORK SERVICES S.R.L,
RO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:30:00 Win2K-f 213.91.172.117 (TVSKAT.NET):
SKAT TV LTD,
BURGAS, BURGAS, BG. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:281 hits: 11-26 to 12-30] none[3] none:none
Armadillo| none trace

T:08:37:00 Win2K-f 59.117.122.41 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:45:00 Win2K-f 190.31.108.187 (NET.AR):
APOLO -GOLD-TELECOM-PER,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:56 hits: 12-19 to 12-30] none[3] none:none
MEW| none trace

T:08:45:00 Win2K-f 70.38.109.123 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:46:00 Win2K-f 125.84.159.188 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:57:00 Win2K-f 89.19.25.42 (CIZGIBILGISAYAR.COM):
CIZGI BILGISAYAR SISTEMLERI SAN. TIC. LTD. STI,
TR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80
TR:89.19.25.42:1609 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:02:00 Win2K-f 190.51.191.126 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

T:09:02:00 Win2K-f 200.110.183.182 (COM.AR):
COOPERATIVA RURAL ELECTRICA DE BRAGADO LTDA,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:738 hits: 11-30 to 12-30] none[3] none:none
StarForce| none trace

T:09:02:00 Win2K-f 86.7.244.9 (NTL.COM):
NTL INFRASTRUCTURE - BROMLEY,
LONDON, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:09:00 Win2K-f 124.8.53.112 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:13:00 Win2K-f 194.112.140.18 (-):
TELE KABEL TV GMBH,
AT. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:17:00 Win2K-f 125.81.44.162 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:18:00 Win2K-f 190.68.191.138 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:22:00 Win2K-f 124.8.105.247 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:23:00 Win2K-f 220.178.18.114 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:26:00 Win2K-f 189.12.241.28 (VELOXZONE.COM.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
RIO DE JANEIRO, RIO DE JANEIRO, BR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:721 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:09:28:00 Win2K-f 123.195.70.148 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:34:00 Win2K-f 186.9.53.44 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

09:40:00 Win2K-f 113.27.220.166 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

09:45:00 Win2K-f 189.12.241.28 (VELOXZONE.COM.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
RIO DE JANEIRO, RIO DE JANEIRO, BR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:721 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

09:51:00 Win2K-f 194.112.140.18 (-):
TELE KABEL TV GMBH,
AT. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:56:00 Win2K-f 186.0.9.182 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:738 hits: 11-30 to 12-30] none[3] none:none
StarForce| none trace

09:56:00 Win2K-f 170.51.182.124 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

09:58:00 Win2K-f 170.51.84.123 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

09:58:00 Win2K-f 210.68.184.149 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:02:00 Win2K-f 83.245.255.6 (ELISA-LAAJAKAISTA.FI):
ELISA,
TAMPERE, ETELA-SUOMEN LAANI, FI. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:08:00 Win2K-f 211.20.114.204 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:checkip.dyndns.org
TW:211.20.114.204:7119
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

10:16:00 Win2K-f 83.245.255.6 (ELISA-LAAJAKAISTA.FI):
ELISA,
TAMPERE, ETELA-SUOMEN LAANI, FI. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:21:00 Win2K-f 61.31.134.99 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:27:00 Win2K-f 190.97.152.211 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

10:33:00 Win2K-f 190.128.37.199 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:721 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:10:34:00 Win2K-f 190.51.17.193 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:35:00 Win2K-f 200.209.207.185 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:39:00 Win2K-f 219.81.234.4 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:40:00 Win2K-f 186.9.15.90 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:738 hits: 11-30 to 12-30] none[3] none:none
StarForce| none trace

10:40:00 Win2K-f 222.77.132.21 (163DATA.COM.CN):
CHINANET FUJIAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:43:00 Win2K-f 60.250.218.55 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:45:00 Win2K-f 190.84.18.200 (CABLE.NET.CO):
TV CABLE S.A,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:721 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

10:46:00 Win2K-f 186.9.15.90 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:10:47:00 Win2K-f 96.50.154.11 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:11:01:00 Win2K-f 200.45.40.220 (NET.AR):
MIDAS-TELECOM,
TRELEW, CHUBUT, AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:03:00 Win2K-f 119.0.166.168 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:05:00 Win2K-f 96.50.154.11 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:11:07:00 Win2K-f 212.175.141.9 (-):
SARAYBOSNA CAD. NO17 ERZURUM,
TR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:09:00 Win2K-f 190.84.18.200 (CABLE.NET.CO):
TV CABLE S.A,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:721 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:11:09:00 Win2K-f 80.59.55.250 (RIMA-TDE.NET):
TELEFONICA DE ESPANA SAU,
MADRID, MADRID, ES. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

11:15:00 Win2K-f 72.90.210.32 (VERIZON-GNI.NET):
VERIZON INTERNET SERVICES INC,
KEARNY, NEW JERSEY, US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:23:00 Win2K-f 200.44.156.147 (CANTV.NET):
CANTV SERVICIOS VENEZUELA,
VE. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:23:00 Win2K-f 119.0.166.168 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:26:00 Win2K-f 200.45.40.220 (NET.AR):
MIDAS-TELECOM,
TRELEW, CHUBUT, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:35:00 Win2K-f 81.85.220.98 (BTOPENWORLD.COM):
PROVIDER LOCAL REGISTRY,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:38:00 Win2K-f 189.38.212.5 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

T:11:39:00 Win2K-f 78.50.81.116 (ALICEDSL.DE):
HANSENET TELEKOMMUNIKATION GMBH,
HAMBURG, HAMBURG, DE. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

11:40:00 Win2K-f 201.172.217.11 (INTERCABLE.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MONTERREY, NUEVO LEON, MX. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:738 hits: 11-30 to 12-30] none[3] none:none
StarForce| none trace

T:11:42:00 Win2K-f 189.72.170.234 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:47:00 Win2K-f 89.19.15.74 (CIZGIBILGISAYAR.COM):
CIZGI BILGISAYAR SISTEMLERI SAN. TIC. LTD. STI,
TR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:51:00 Win2K-f 190.31.170.176 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:577 hits: 11-21 to 12-30] none[3] none:none
StarForce| none trace

11:53:00 Win2K-f 212.175.141.9 (-):
SARAYBOSNA CAD. NO17 ERZURUM,
TR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:56:00 Win2K-f 77.20.128.167 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:56:00 Win2K-f 69.90.1.3 (MBCINC.COM):
QITX INC,
LAVAL, QUEBEC, CA. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:11:00 Win2K-f 190.51.8.237 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:17:00 Win2K-f 201.213.119.136 (NET.AR):
PRIMA S.A,
BUENOS AIRES, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

T:12:19:00 Win2K-f 72.90.210.32 (VERIZON-GNI.NET):
VERIZON INTERNET SERVICES INC,
KEARNY, NEW JERSEY, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:20:00 Win2K-f 201.213.119.136 (NET.AR):
PRIMA S.A,
BUENOS AIRES, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

12:28:00 Win2K-f 81.203.225.114 (ONO.COM):
CABLEUROPA - ONO,
ES. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

12:29:00 Win2K-f 189.123.184.18 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

T:12:31:00 Win2K-f 190.48.21.107 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:281 hits: 11-26 to 12-30] none[3] none:none
Armadillo| none trace

T:12:33:00 Win2K-f 201.168.48.60 (MARCATEL.NET.MX):
MARCATEL,
MONTERREY, NUEVO LEON, MX. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:738 hits: 11-30 to 12-30] none[3] none:none
StarForce| none trace

12:38:00 Win2K-f 122.120.220.176 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:41:00 Win2K-f 190.51.231.131 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:738 hits: 11-30 to 12-30] none[3] none:none
StarForce| none trace

12:44:00 Win2K-f 190.55.182.199 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:46:00 Win2K-f 121.9.227.229 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:50:00 Win2K-f 122.120.220.176 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:52:00 Win2K-f 69.90.1.3 (MBCINC.COM):
QITX INC,
LAVAL, QUEBEC, CA. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:57:00 Win2K-f 190.48.21.107 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:281 hits: 11-26 to 12-30] none[3] none:none
Armadillo| none trace

T:12:59:00 Win2K-f 190.51.8.237 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:02:00 Win2K-f 190.208.88.6 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:06:00 Win2K-f 190.137.121.179 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

13:11:00 Win2K-f 190.220.68.90 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

13:11:00 Win2K-f 207.5.220.76 (METROCAST.NET):
GREAT WORKS INTERNET,
ROCHESTER, NEW HAMPSHIRE, US. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:577 hits: 11-21 to 12-30] none[3] none:none
StarForce| none trace

T:13:15:00 Win2K-f 190.220.68.90 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:15:00 Win2K-f 190.208.88.6 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:18:00 Win2K-f 190.51.78.35 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

T:13:19:00 Win2K-f 190.137.121.179 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:13:27:00 Win2K-f 207.5.220.76 (METROCAST.NET):
GREAT WORKS INTERNET,
ROCHESTER, NEW HAMPSHIRE, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:577 hits: 11-21 to 12-30] none[3] none:none
StarForce| none trace

T:13:37:00 Win2K-f 200.58.174.7 (COTAS.COM.BO):
COTAS LTDA,
SANTA CRUZ, SANTA CRUZ, BO. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:38:00 Win2K-f 186.12.13.173 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

13:38:00 Win2K-f 125.22.105.58 (125.AIRTELBROADBAND.IN):
BHARTI INFOTEL LTD. (BBANDTS KK),
BANGALORE, KARNATAKA, IN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:56 hits: 12-19 to 12-30] none[3] none:none
MEW| none trace

13:39:00 Win2K-f 66.90.103.123 (ON-DEMAND-TECH.COM):
FDC SERVERS.NET LLC,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 4e6c4dd8b1
[Firefox:38 hits: 11-25 to 12-29] none[3] none:none
StarForce| none trace

13:41:00 Win2K-f 190.128.60.206 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:721 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:13:46:00 Win2K-f 190.30.143.141 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:47:00 Win2K-f 190.51.223.129 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:49:00 Win2K-f 82.158.223.92 (ONO.COM):
PROVIDER,
MADRID, MADRID, ES. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:56:00 Win2K-f 190.49.104.120 (COM.AR):
TELEFONICA DE ARGENTINA,
MIRAMAR, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:00:00 Win2K-f 200.249.9.132 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
BR:200.249.9.132:1143
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 fcb4920986
[Firefox:49 hits: 11-21 to 12-29] none[3] none:none
UPX| none trace

T:14:00:00 Win2K-f 114.44.133.228 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:01:00 Win2K-f 61.91.120.90 (ASIANET.CO.TH):
TRUE INTERNET CO. LTD,
BANGKOK, KRUNG THEP MAHANAKHON, TH. (DIAL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:721 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:14:01:00 Win2K-f 190.152.7.101 (ANDINANET.NET):
ANDINATEL S.A,
EC. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:04:00 Win2K-f 61.223.233.198 (HINET.NET):
DATA COMMUNICATION BUSINESS GROUP CHUNGHWA TELECOM CO. LTD,
TAOYUAN, T'AI-WAN, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:577 hits: 11-21 to 12-30] none[3] none:none
StarForce| none trace

14:13:00 Win2K-f 190.128.53.126 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:19:00 Win2K-f 84.73.228.252 (HISPEED.CH):
CABLECOMMAIN-NET,
ZURICH, ZURICH, CH. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:318 hits: 11-25 to 12-30] none[3] none:none
Armadillo| none trace

14:19:00 Win2K-f 190.48.124.230 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:21:00 Win2K-f 190.31.170.176 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:577 hits: 11-21 to 12-30] none[3] none:none
StarForce| none trace

T:14:33:00 Win2K-f 92.125.114.148 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:34:00 Win2K-f 114.44.133.228 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:35:00 Win2K-f 190.51.216.192 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:44:00 Win2K-f 186.0.15.188 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:47:00 Win2K-f 74.222.2.111 (VRTSERVERS.NET):
VRTSERVERS INC,
LOS ANGELES, CALIFORNIA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:47:00 Win2K-f 190.51.93.28 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:50:00 Win2K-f 186.12.27.235 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:51:00 Win2K-f 211.20.54.178 (WINSTOCK.COM.TW):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:54:00 Win2K-f 114.47.214.201 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:56:00 Win2K-f 123.204.80.83 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:56:00 Win2K-f 186.9.144.165 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

15:08:00 Win2K-f 59.113.136.220 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAOYUAN, T'AI-WAN, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:15:00 Win2K-f 87.110.150.147 (-):
ADDRESS POOL FOR LTC-HOME CUSTOMERS,
RIGA, RIGA, LV. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:17:00 Win2K-f 8.15.176.87 (LEVEL3.NET):
LEVEL 3 COMMUNICATIONS INC,
US. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:18:00 Win2K-f 69.77.146.232 (SKYBEST.COM):
SKYBEST COMMUNICATIONS INC,
NEW BERN, NORTH CAROLINA, US. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:577 hits: 11-21 to 12-30] none[3] none:none
StarForce| none trace

15:19:00 Win2K-f 61.223.233.198 (HINET.NET):
DATA COMMUNICATION BUSINESS GROUP CHUNGHWA TELECOM CO. LTD,
TAOYUAN, T'AI-WAN, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:577 hits: 11-21 to 12-30] none[3] none:none
StarForce| none trace

T:15:29:00 Win2K-f 190.0.67.168 (ASTER.COM.DO):
ASTER,
SANTO DOMINGO, DISTRITO NACIONAL, DO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:738 hits: 11-30 to 12-30] none[3] none:none
StarForce| none trace

T:15:32:00 Win2K-f 81.13.70.254 (-):
MIROPOL'SKIY EVGENIY GRIGOR'EVICH,
MOSCOW, MOSKVA, RU. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:33:00 Win2K-f 200.249.9.132 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 fcb4920986
[Firefox:49 hits: 11-21 to 12-29] none[3] none:none
UPX| none trace

15:38:00 Win2K-f 220.138.107.163 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:45:00 Win2K-f 81.13.70.254 (-):
MIROPOL'SKIY EVGENIY GRIGOR'EVICH,
MOSCOW, MOSKVA, RU. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:47:00 Win2K-f 94.28.205.135 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:52:00 Win2K-f 94.28.205.135 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:52:00 Win2K-f 62.106.10.37 (PHPOINT.NET):
POHJOIS-HAMEEN PUHELIN OY,
FI. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:54:00 Win2K-f 121.13.239.43 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:00:00 Win2K-f 125.116.104.53 (163DATA.COM.CN):
CHINANET-ZJ NINGBO NODE NETWORK,
NINGBO, ZHEJIANG, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:01:00 Win2K-f 65.40.130.14 (EMBARQHSD.NET):
SPRINT DSL NETWORK,
WINTER PARK, FLORIDA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:03:00 Win2K-f 62.106.10.37 (PHPOINT.NET):
POHJOIS-HAMEEN PUHELIN OY,
FI. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:04:00 Win2K-f 186.12.5.72 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:117 hits: 11-29 to 12-30] none[3] none:none
UPX| none trace

16:12:00 Win2K-f 65.40.130.14 (EMBARQHSD.NET):
SPRINT DSL NETWORK,
WINTER PARK, FLORIDA, US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:12:00 Win2K-f 212.40.84.91 (-):
DRAVANET ADSL CUSTOMERS IP POOL,
HU. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:318 hits: 11-25 to 12-30] none[3] none:none
Armadillo| none trace

16:15:00 Win2K-f 61.57.68.94 (LSC.NET.TW):
TBCOM-NET,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:16:00 Win2K-f 212.40.84.91 (-):
DRAVANET ADSL CUSTOMERS IP POOL,
HU. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:318 hits: 11-25 to 12-30] none[3] none:none
Armadillo| none trace

16:16:00 Win2K-f 186.0.15.188 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:21:00 Win2K-f 71.113.58.231 (VERIZON.NET):
VERIZON INTERNET SERVICES INC,
EVERETT, WASHINGTON, US. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:29:00 Win2K-f 123.136.72.44 (-):
VOIP SERVICE PROVIDER,
PH. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:81 hits: 11-23 to 12-30] none[3] none:none
StarForce| none trace

16:30:00 Win2K-f 220.143.26.143 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:32:00 Win2K-f 121.13.239.43 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:36:00 Win2K-f 190.84.222.31 (CABLE.NET.CO):
TV CABLE S.A,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

T:16:42:00 Win2K-f 62.2.254.54 (-):
8005 ZUERICH,
CH. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:45:00 Win2K-f 62.2.254.54 (-):
8005 ZUERICH,
CH. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:47:00 Win2K-f 86.123.130.12 (RDSNET.RO):
RCS-RDS-FIBERLINK,
PITESTI, ARGES, RO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:48:00 Win2K-f 8.15.176.87 (LEVEL3.NET):
LEVEL 3 COMMUNICATIONS INC,
US. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:49:00 Win2K-f 218.161.48.176 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:50:00 Win2K-f 222.182.173.74 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:54:00 Win2K-f 123.204.97.186 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:59:00 Win2K-f 190.139.68.195 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:56 hits: 12-19 to 12-30] none[3] none:none
MEW| none trace

17:04:00 Win2K-f 201.234.254.58 (COM.AR):
VER TV S.A,
BUENOS AIRES, BUENOS AIRES, AR. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

17:06:00 Win2K-f 190.141.17.235 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

T:17:12:00 Win2K-f 61.57.68.94 (LSC.NET.TW):
TBCOM-NET,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:14:00 Win2K-f 89.45.125.35 (SMANET.RO):
JUMP NETWORK SERVICES S.R.L,
RO. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:15:00 Win2K-f 118.170.246.183 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:17:00 Win2K-f 218.161.48.176 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:17:00 Win2K-f 196.25.219.124 (BIOMAX-AFRICA.COM):
TELKOM SA LTD,
SOWETO, GAUTENG, ZA. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:23:00 Win2K-f 219.144.62.10 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:25:00 Win2K-f 67.102.138.5 (COVAD.NET):
COVAD COMMUNICATIONS CO,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:28:00 Win2K-f 219.144.62.10 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:29:00 Win2K-f 203.70.115.70 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:38:00 Win2K-f 76.11.234.51 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:38:00 Win2K-f 125.113.120.210 (163DATA.COM.CN):
CHINANET-ZJ JINHUA NODE NETWORK,
CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:721 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

17:39:00 Win2K-f 190.11.153.100 (COM.AR):
POWER VT S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

17:40:00 Win2K-f 125.113.120.210 (163DATA.COM.CN):
CHINANET-ZJ JINHUA NODE NETWORK,
CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:721 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:17:43:00 Win2K-f 58.27.195.188 (-):
NATIONAL WIMAX/IMS ENVIRONMENT,
PK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:47:00 Win2K-f 221.125.227.25 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:51:00 Win2K-f 221.125.227.25 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HK. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:52:00 Win2K-f 190.245.34.99 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

17:56:00 Win2K-f 76.3.233.9 (EMBARQHSD.NET):
EMBARQ CORPORATION,
US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:56 hits: 12-19 to 12-30] none[3] none:none
MEW| none trace

T:18:00:00 Win2K-f 118.165.100.64 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:01:00 Win2K-f 211.20.54.178 (WINSTOCK.COM.TW):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:01:00 Win2K-f 190.0.77.98 (ASTER.COM.DO):
ASTER,
SANTO DOMINGO, DISTRITO NACIONAL, DO. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:721 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:18:09:00 Win2K-f 81.31.149.37 (VM.DNSHOSTING.IT):
COLT ENGINE S.R.L. - VM NETWORK,
IT. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:09:00 Win2K-f 119.128.81.89 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:24:00 Win2K-f 67.88.154.35 (ALGX.NET):
XO COMMUNICATIONS,
US. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:67.88.154.35:8449
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:25:00 Win2K-f 118.161.243.10 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:25:00 Win2K-f 24.232.89.109 (COM.AR):
CABLEVISION S.A,
BUENOS AIRES, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:26:00 Win2K-f 190.128.76.68 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:721 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:18:30:00 Win2K-f 76.11.234.51 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:36:00 Win2K-f 24.232.89.109 (COM.AR):
CABLEVISION S.A,
BUENOS AIRES, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:37:00 Win2K-f 87.97.216.7 (GGBIT.NET):
EKK CATV PLOVDIV,
PLOVDIV, PLOVDIV, BG. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80
BG:87.97.216.7:6065 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:281 hits: 11-26 to 12-30] none[3] none:none
Armadillo| none trace

18:39:00 Win2K-f 116.4.40.232 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:41:00 Win2K-f 87.56.172.62 (IP.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
DK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:46:00 Win2K-f 61.217.227.213 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:47:00 Win2K-f 59.104.249.190 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:53:00 Win2K-f 202.152.57.54 (-):
PLANET SELANCAR MANDIRI,
DENPASAR, BALI, ID. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:54:00 Win2K-f 122.121.10.47 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:56:00 Win2K-f 200.75.249.244 (CABLEONDA.NET):
CABLE ONDA,
PANAMA CITY, PANAMA, PA. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
GB:www.getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:01:00 WinXP 61.138.252.185 (AGENT1.GZ.CN):
CHINANET GUIZHOU PROVINCE NETWORK,
GUIZHOU, GUIZHOU, CN. 63.173.172.98:6668 139 pcap raw alerts
ruleset ftp
irc
26 lines Yeah : 1.3
profile none summary
tarball 30 of 36 6b28308388
[Firefox:10 hits: 11-05 to 11-16] 199b3a48ef [0] ASM:Graph
none|none lines=2 trace

T:19:01:00 Win2K-f 190.128.76.68 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:721 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

19:02:00 Win2K-f 200.86.51.129 (VTR.NET):
VTR BANDA ANCHA S.A,
PATERSON, NEW JERSEY, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

19:08:00 Win2K-f 190.49.194.164 (COM.AR):
TELEFONICA DE ARGENTINA,
USHUAIA, ANTARTIDA E ISLAS DEL ATLAN TIERRA DEL FUEGO, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:09:00 Win2K-f 186.9.24.68 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

T:19:11:00 Win2K-f 200.86.51.129 (VTR.NET):
VTR BANDA ANCHA S.A,
PATERSON, NEW JERSEY, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

19:14:00 Win2K-f 118.161.243.10 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:19:00 Win2K-f 190.165.44.183 (-):
EMTELSA S.A. E.S.P,
CO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:20:00 Win2K-f 122.118.234.156 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:21:00 Win2K-f 125.118.167.178 (163DATA.COM.CN):
CHINANET-ZJ HANGZHOU NODE NETWORK,
HANGZHOU, ZHEJIANG, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:24:00 Win2K-f 75.119.105.66 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:30:00 Win2K-f 201.172.126.166 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:738 hits: 11-30 to 12-30] none[3] none:none
StarForce| none trace

T:19:32:00 Win2K-f 59.115.16.40 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:36:00 Win2K-f 123.195.253.90 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:39:00 Win2K-f 122.233.76.90 (HZ.ZJ.CN):
CHINANET ZHEJIANG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:41:00 Win2K-f 59.115.16.40 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:41:00 Win2K-f 69.95.14.12 (CHOICEONE.NET):
AD-BASE SYSTEMS,
PITTSBURGH, PENNSYLVANIA, US. (100Mbps) n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:19:41:00 Win2K-f 201.172.126.166 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:738 hits: 11-30 to 12-30] none[3] none:none
StarForce| none trace

T:19:49:00 Win2K-f 203.70.254.117 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:52:00 Win2K-f 24.73.239.19 (RR.COM):
ROAD RUNNER HOLDCO LLC,
ORLANDO, FLORIDA, US. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:55:00 Win2K-f 59.105.21.26 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:01:00 Win2K-f 119.77.228.123 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:02:00 Win2K-f 114.40.165.27 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:577 hits: 11-21 to 12-30] none[3] none:none
StarForce| none trace

T:20:04:00 Win2K-f 59.105.21.26 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:07:00 Win2K-f 123.195.253.90 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:10:00 Win2K-f 201.236.222.172 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 37 4f88618d4f
[Firefox:84 hits: 11-29 to 12-30] none[3] none:none
UPX| none trace

T:20:15:00 Win2K-f 116.4.40.232 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:24:00 Win2K-f 190.165.44.183 (-):
EMTELSA S.A. E.S.P,
CO. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:27:00 Win2K-f 24.105.182.57 (RR.COM):
ROAD RUNNER HOLDCO LLC,
ALBANY, NEW YORK, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:27:00 Win2K-f 190.208.74.51 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:29:00 Win2K-f 190.55.157.31 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

20:30:00 Win2K-f 119.95.142.230 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:281 hits: 11-26 to 12-30] none[3] none:none
Armadillo| none trace

T:20:33:00 Win2K-f 24.73.239.19 (RR.COM):
ROAD RUNNER HOLDCO LLC,
ORLANDO, FLORIDA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:24.73.239.19:7806
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:37:00 Win2K-f 119.95.142.230 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:281 hits: 11-26 to 12-30] none[3] none:none
Armadillo| none trace

20:40:00 Win2K-f 119.77.164.29 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:45:00 Win2K-f 189.48.4.84 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:721 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:20:51:00 Win2K-f 190.245.36.32 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

T:20:55:00 Win2K-f 122.120.129.113 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:55:00 Win2K-f 203.67.117.129 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:57:00 Win2K-f 58.241.54.180 (-):
CZPPPOEPOOL CAR CO. CHANGZHOU JIANGSU PROVINCE,
HANGZHOU, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:738 hits: 11-30 to 12-30] none[3] none:none
StarForce| none trace

20:59:00 Win2K-f 61.217.227.213 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:00:00 Win2K-f 122.123.100.172 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:02:00 Win2K-f 118.161.139.129 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:04:00 Win2K-f 70.74.69.106 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
EDMONTON, ALBERTA, CA. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:721 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

21:05:00 Win2K-f 125.86.68.190 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:09:00 Win2K-f 190.54.151.109 (CHILESAT.NET):
TELMEX SERVICIOS EMPRESARIALES S.A,
CL. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:14:00 Win2K-f 114.44.65.10 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:14:00 Win2K-f 118.161.139.129 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:19:00 Win2K-f 190.17.81.113 (COM.AR):
CABLEVISION S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:24:00 Win2K-f 114.44.65.10 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:33:00 Win2K-f 211.115.81.29 (KIDC.NET):
KOREA INTERNET DATA CENTER INC,
SEOUL, KYONGGI-DO, KR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 507252387e
[Firefox:39 hits: 11-27 to 12-30] none[3] none:none
UPX| none trace

T:21:39:00 Win2K-f 83.54.94.71 (RIMA-TDE.NET):
TELEFONICA DE ESPANA,
SABADELL, CATALUñA, ES. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:39:00 Win2K-f 61.47.61.220 (ICSPACE.NET):
PACIFIC INTERNET THAILAND,
TH. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:42:00 Win2K-f 221.124.98.179 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:43:00 Win2K-f 61.216.234.67 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:52:00 Win2K-f 186.12.41.236 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:281 hits: 11-26 to 12-30] none[3] none:none
Armadillo| none trace

21:54:00 Win2K-f 70.74.69.106 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
EDMONTON, ALBERTA, CA. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:721 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

21:57:00 Win2K-f 59.124.243.47 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:738 hits: 11-30 to 12-30] none[3] none:none
StarForce| none trace

21:57:00 Win2K-f 221.125.119.199 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:58:00 Win2K-f 61.11.103.121 (ETH.NET):
VIDESH SANCHAR NIGAM LTD - INDIA,
BARODRA, GUJARAT, IN. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:281 hits: 11-26 to 12-30] none[3] none:none
Armadillo| none trace

T:22:09:00 Win2K-f 222.85.55.71 (163DATA.COM.CN):
CHINANET HENAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:81 hits: 11-23 to 12-30] none[3] none:none
StarForce| none trace

22:10:00 Win2K-f 190.245.36.32 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

T:22:15:00 Win2K-f 221.124.72.112 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:17:00 Win2K-f 118.168.174.171 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:17:00 Win2K-f 80.64.81.66 (CN.RU):
PROVIDER LOCAL REGISTRY,
NOVOSIBIRSK, NOVOSIBIRSKAYA OBLAST', RU. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:22:00 Win2K-f 122.127.65.108 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:22:00 Win2K-f 221.124.72.112 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:27:00 Win2K-f 212.59.11.80 (ZEBRA.LT):
LIETUVOS,
VILNIUS, VILNIAUS APSKRITIS, LT. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:35:00 Win2K-f 221.125.119.199 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HK. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:36:00 Win2K-f 195.16.34.234 (-):
SOVINTEL-MSK-MTK-GROUP-SA-NET,
MOSCOW, MOSKVA, RU. (100Mbps) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:721 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

22:37:00 Win2K-f 59.114.128.7 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:41:00 Win2K-f 81.39.148.187 (RIMA-TDE.NET):
TELEFONICA DE ESPANA,
ES. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:49:00 Win2K-f 117.39.130.70 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:50:00 Win2K-f 59.114.128.7 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:53:00 Win2K-f 124.118.36.23 (-):
CHINANET XINJIANG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1227 hits: 11-24 to 12-30] none[3] none:none
UPX| none trace

22:54:00 Win2K-f 210.64.248.192 (TAYA.COM.TW):
DIGITAL UNITED INC,
TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:55:00 Win2K-f 190.220.127.112 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:23:05:00 Win2K-f 125.115.156.243 (163DATA.COM.CN):
CHINANET-ZJ NINGBO NODE NETWORK,
NINGBO, ZHEJIANG, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:06:00 Win2K-f 123.195.61.179 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:10:00 Win2K-f 62.99.192.101 (PBOX.AT):
P.O.R. SERVICES GMBH,
AT. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
AT:62.99.192.101:5784
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:11:00 Win2K-f 62.99.192.101 (PBOX.AT):
P.O.R. SERVICES GMBH,
AT. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:15:00 Win2K-f 125.86.68.190 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:16:00 Win2K-f 212.23.50.6 (PAMACORP.COM):
PAMA SPOL. S R.O. NETWORK,
CZ. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1528 hits: 11-22 to 12-30] none[3] none:none
UPX| none trace

T:23:21:00 Win2K-f 122.120.160.43 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:26:00 Win2K-f 203.89.208.124 (AAPM.ORG.AU):
GLOBALCENTER - A DIVISION OF DATACOM SYSTEMS,
MELBOURNE, VICTORIA, AU. n/a US:www.maxmind.com
:checkip.dyndns.org
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:29:00 Win2K-f 72.54.178.46 (BANKERSX.COM):
CBEYOND COMMUNICATIONS LLC,
HOUSTON, TEXAS, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:577 hits: 11-21 to 12-30] none[3] none:none
StarForce| none trace

T:23:29:00 Win2K-f 170.51.185.96 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:577 hits: 11-21 to 12-30] none[3] none:none
StarForce| none trace

T:23:31:00 Win2K-f 124.82.40.52 (TM.NET.MY):
TM ADSL SERVICE PROVIDER MALAYSIA,
GEORGE TOWN, PULAU PINANG, MY. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:37:00 Win2K-f 83.54.94.71 (RIMA-TDE.NET):
TELEFONICA DE ESPANA,
SABADELL, CATALUñA, ES. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:41:00 Win2K-f 71.106.162.122 (VERIZON.NET):
VERIZON INTERNET SERVICES INC,
SANTA MONICA, CALIFORNIA, US. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:56 hits: 12-19 to 12-30] none[3] none:none
MEW| none trace

T:23:44:00 Win2K-f 114.45.59.146 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:48:00 Win2K-f 66.18.13.19 (SPEAKEASY.NET):
US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:50:00 Win2K-f 221.126.245.10 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:577 hits: 11-21 to 12-30] none[3] none:none
StarForce| none trace

23:51:00 Win2K-f 114.45.59.146 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:56:00 Win2K-f 72.54.178.46 (BANKERSX.COM):
CBEYOND COMMUNICATIONS LLC,
HOUSTON, TEXAS, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:577 hits: 11-21 to 12-30] none[3] none:none
StarForce| none trace

T:23:59:00 Win2K-f 125.121.48.155 (163DATA.COM.CN):
CHINANET-ZJ HANGZHOU NODE NETWORK,
HANGZHOU, ZHEJIANG, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:13840 hits: 11-20 to 12-30] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace