Multiperspective Malware Analysis Page

Welcome to the Cyber-TA
SRI's Multiperspective Malware Infection Analysis Page

UNCENSORED PAGE

<Click here: to download BotHunter>

01 January 2009
<prev> <next>

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Daily Summary Files: [DNS Lookups & Failed Connects] [ Attacker IPs ] [C&C Servers] [Binary Digests]
Cumulative Summary Files: [DNS Lookup Log] [Attacker IP Log] [C&C Server Log] [Antivirus Detection] [Code Segment Overlap]
[Behavioral Clusters] [Binary Digest Log]

[See Country Codes ]

Time
Victim
OS
Infection
Source
C&C
Server
DNS Lookups &
Failed Connects Infection
Port
Packet
Trace
Detection
Signatures
Infection
Chatter
BotHunter
Analysis
Behavioral
Cluster
Forensic
Logs
Antivirus
Labels
Packed Malware_Binary Unpacked egg.exe
Unpacked egg.asm
Packer PEID
Data Strings
Syscall Trace

00:06:00 Win2K-f 59.117.68.79 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:06:00 Win2K-f 66.18.13.19 (SPEAKEASY.NET):
US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:07:00 Win2K-f 190.141.138.30 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:14:00 Win2K-f 189.123.170.131 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

T:00:16:00 Win2K-f 219.91.98.207 (APOL.COM.TW):
ASIA PACIFIC ON-LINE SERVICES INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:21:00 Win2K-f 89.40.63.220 (SMANET.RO):
JUMP NETWORK SERVICES S.R.L,
RO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:21:00 Win2K-f 221.126.245.10 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:590 hits: 11-21 to 12-31] none[3] none:none
StarForce| none trace

T:00:26:00 Win2K-f 59.124.164.81 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:27:00 Win2K-f 124.118.36.23 (-):
CHINANET XINJIANG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

T:00:27:00 Win2K-f 220.136.16.14 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:28:00 Win2K-f 123.195.36.140 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:29:00 Win2K-f 190.137.151.75 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a
190.137.151.75:1323 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 bd35d4d98f
[Firefox:43 hits: 11-27 to 12-30] none[3] none:none
Armadillo| none trace

T:00:38:00 Win2K-f 208.98.1.125 (SHARKTECH.NET):
SHARKTECH INTERNET SERVICES,
MISSOULA, MONTANA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:39:00 Win2K-f 84.62.151.231 (ARCOR-IP.NET):
ARCOR-DSL-NET,
DUISBURG, NORDRHEIN-WESTFALEN, DE. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:44:00 Win2K-f 119.85.222.107 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:45:00 WinXP 219.105.101.245 (ADACHI.NE.JP):
CABLE TELEVISION ADACHI CORP,
JP. 194.54.90.246:80 RU:citi-bank.ru 445 pcap raw alerts
ruleset http
2 lines Yeah : 1.8
profile none summary
tarball 35 of 36 1a8dccb1b8
[Firefox: 8 hits: 10-06 to 12-11] c35321def3 [0] ASM:Graph
PolyEnE| lines=68 trace

00:53:00 Win2K-f 124.11.185.151 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:55:00 Win2K-f 124.11.185.151 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:57:00 Win2K-f 91.102.160.80 (ATOLYEWEB.NET):
DATAFON ILETISIM A.S,
TR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:58:00 Win2K-f 186.12.96.8 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:175 hits: 11-20 to 12-30] none[3] none:none
StarForce| none trace

T:01:11:00 Win2K-f 194.8.75.159 (LIX.LV):
LAST RESORT LOCAL REGISTRY,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1551 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

01:15:00 Win2K-f 124.13.84.65 (TM.NET.MY):
TELEKOM MALAYSIA BERHAD,
MY. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:16:00 Win2K-f 194.8.75.159 (LIX.LV):
LAST RESORT LOCAL REGISTRY,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1551 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

T:01:23:00 Win2K-f 84.62.151.231 (ARCOR-IP.NET):
ARCOR-DSL-NET,
DUISBURG, NORDRHEIN-WESTFALEN, DE. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:24:00 Win2K-f 201.173.163.179 (IFXNW.COM.MX):
NETWORK INFORMATION CENTER MEXICO,
MX. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:756 hits: 11-30 to 12-31] none[3] none:none
StarForce| none trace

T:01:27:00 Win2K-f 61.8.77.107 (BINTANG7.COM):
INDONESIA ONLINE ACCESS,
ID. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:31:00 Win2K-f 122.120.18.153 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:33:00 Win2K-f 190.245.40.115 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

01:34:00 Win2K-f 121.120.31.82 (MAXIS.NET.MY):
MAXIS COMMUNICATIONS BHD,
KUALA LUMPUR, WILAYAH PERSEKUTUAN, MY. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:84 hits: 11-23 to 12-31] none[3] none:none
StarForce| none trace

T:01:35:00 Win2K-f 87.119.229.49 (SARANSK.RU):
BRANCH IN MORDOVIAN REPUBLIC OJSC VOLGATELECOM,
RU. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:37:00 Win2K-f 59.112.167.220 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:43:00 Win2K-f 125.25.101.119 (TOTBB.NET):
TOT ADSL IP ADDRESS POOL,
BANGALORE, KARNATAKA, IN. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:322 hits: 11-25 to 12-31] none[3] none:none
Armadillo| none trace

01:48:00 Win2K-f 190.220.108.114 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:54:00 Win2K-f 190.108.6.78 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:322 hits: 11-25 to 12-31] none[3] none:none
Armadillo| none trace

T:01:55:00 Win2K-f 121.34.201.173 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:59:00 Win2K-f 189.123.170.131 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

T:02:00:00 Win2K-f 125.25.101.119 (TOTBB.NET):
TOT ADSL IP ADDRESS POOL,
BANGALORE, KARNATAKA, IN. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:322 hits: 11-25 to 12-31] none[3] none:none
Armadillo| none trace

T:02:06:00 Win2K-f 70.44.236.21 (PTD.NET):
PENTELEDATA INC. - CABLE,
DINGMANS FERRY, PENNSYLVANIA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:84 hits: 11-23 to 12-31] none[3] none:none
StarForce| none trace

02:07:00 Win2K-f 65.170.234.117 (NEP.NET):
THE NORTH-EASTERN PENNSYLVANIA TELEPHONE COMPANY,
FOREST CITY, PENNSYLVANIA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:756 hits: 11-30 to 12-31] none[3] none:none
StarForce| none trace

02:11:00 Win2K-f 61.45.85.226 (WAKWAK.NE.JP):
XEPHION(NTT-ME CORPORATION),
JP. (DIAL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:590 hits: 11-21 to 12-31] none[3] none:none
StarForce| none trace

T:02:11:00 Win2K-f 122.120.112.131 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:18:00 Win2K-f 84.3.228.70 (T-ONLINE.HU):
HUNGARIAN TELECOM,
HU. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:26:00 Win2K-f 59.115.240.166 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:32:00 Win2K-f 201.234.162.37 (COM.AR):
COOPERATIVA VILLA DEL ROSARIO (COOVILROS),
ROSARIO, SANTA FE, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 6 of 38 2f54d5345a
NEW none[3] none:none
UPX| none trace

02:33:00 Win2K-f 89.109.44.244 (MTS-NN.RU):
NETWORK FOR CLIENTS TERMINATIONS IN,
NOVGOROD, NOVGORODSKAYA OBLAST', RU. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:33:00 Win2K-f 219.105.114.243 (ADACHI.NE.JP):
CABLE TELEVISION ADACHI CORP,
TOKYO, TOKYO, JP. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:37:00 Win2K-f 59.62.129.168 (163DATA.COM.CN):
CHINANET JIANGXI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:39:00 Win2K-f 190.220.108.114 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:44:00 Win2K-f 81.39.140.38 (RIMA-TDE.NET):
TELEFONICA DE ESPANA,
PALMA DE MALLORCA, BALEARES, ES. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:44:00 Win2K-f 65.170.234.117 (NEP.NET):
THE NORTH-EASTERN PENNSYLVANIA TELEPHONE COMPANY,
FOREST CITY, PENNSYLVANIA, US. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:756 hits: 11-30 to 12-31] none[3] none:none
StarForce| none trace

T:02:51:00 Win2K-f 203.67.49.144 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:53:00 Win2K-f 219.80.134.229 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 13 of 38 739185e28d
NEW none[3] none:none
UPX| none trace

02:54:00 Win2K-f 122.125.138.126 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:57:00 Win2K-f 121.84.46.224 (EONET.NE.JP):
K-OPTICOM CORPORATION,
JP. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:01:00 Win2K-f 61.217.30.237 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:09:00 Win2K-f 117.39.96.251 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:10:00 Win2K-f 117.39.96.251 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:13:00 Win2K-f 121.34.201.173 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 14 of 39 1b1f4d453f
NEW none[3] none:none
UPX| none trace

03:14:00 Win2K-f 59.115.117.122 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:16:00 Win2K-f 219.105.114.243 (ADACHI.NE.JP):
CABLE TELEVISION ADACHI CORP,
TOKYO, TOKYO, JP. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:19:00 Win2K-f 124.113.212.196 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 37 17cf6a5252
[Firefox: 8 hits: 12-03 to 12-23] none[3] none:none
UPX| none trace

03:20:00 Win2K-f 122.120.12.14 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:21:00 Win2K-f 190.208.87.31 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:22:00 Win2K-f 89.109.44.244 (MTS-NN.RU):
NETWORK FOR CLIENTS TERMINATIONS IN,
NOVGOROD, NOVGORODSKAYA OBLAST', RU. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:33:00 Win2K-f 116.21.129.31 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:34:00 Win2K-f 61.217.30.237 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:36:00 Win2K-f 122.120.12.14 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:37:00 Win2K-f 119.95.43.137 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:41:00 Win2K-f 93.126.152.154 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:47:00 Win2K-f 59.116.105.104 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:50:00 Win2K-f 116.75.165.167 (JWS.COM):
HATHWAY IP OVER CABLE INTERNET ACCESS SERVICE,
IN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:739 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

T:03:53:00 Win2K-f 72.0.242.91 (SPEAKEASY.NET):
US. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 14 of 38 cdae3bc26f
NEW none[3] none:none
UPX| none trace

T:03:54:00 Win2K-f 92.48.67.19 (IKBCC.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:56:00 Win2K-f 81.100.226.216 (NTL.COM):
NTL INFRASTRUCTURE - LEEDS,
DERBY, ENGLAND, UK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:00:00 Win2K-f 121.243.34.20 (VSNL.NET.IN):
VIDESH SANCHAR NIGAM LTD - INDIA,
IN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:00:00 Win2K-f 72.0.242.91 (SPEAKEASY.NET):
US. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 14 of 38 cdae3bc26f
NEW none[3] none:none
UPX| none trace

04:04:00 Win2K-f 85.152.219.68 (CM-85-152-232-10.TELECABLE.ES):
TELECABLE,
AVILES, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:10:00 Win2K-f 88.115.132.93 (ELISA-LAAJAKAISTA.FI):
ELISA-ADSL,
TURKU, LANSI-SUOMEN LAANI, FI. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:756 hits: 11-30 to 12-31] none[3] none:none
StarForce| none trace

T:04:17:00 Win2K-f 123.204.155.174 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:21:00 Win2K-f 59.116.105.104 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:27:00 Win2K-f 122.120.65.85 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 8 of 37 78ceaae025
[Firefox:10 hits: 11-22 to 12-28] none[3] none:none
UPX| none trace

T:04:28:00 Win2K-f 200.91.213.251 (IFX.NET.CO):
SMART SECURITY,
MEDELLIN, ANTIOQUIA, CO. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:29:00 Win2K-f 61.231.70.113 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:35:00 Win2K-f 119.19.8.4 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:37:00 Win2K-f 87.119.229.49 (SARANSK.RU):
BRANCH IN MORDOVIAN REPUBLIC OJSC VOLGATELECOM,
RU. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:45:00 Win2K-f 118.160.196.188 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:756 hits: 11-30 to 12-31] none[3] none:none
StarForce| none trace

04:57:00 Win2K-f 212.72.182.109 (EKB-KIESERLING.DE):
ARTFILES NEW MEDIA GMBH,
HAMBURG, HAMBURG, DE. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:01:00 Win2K-f 221.5.62.80 (CNCNET.NET):
CNC GROUP GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:590 hits: 11-21 to 12-31] none[3] none:none
StarForce| none trace

T:05:03:00 Win2K-f 78.58.183.137 (ZEBRA.LT):
LIETUVOS,
LT. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:03:00 Win2K-f 190.208.87.31 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

05:06:00 Win2K-f 63.86.167.2 (-):
HINTON INVESTMENTS INC,
SEYMOUR, INDIANA, US. n/a 445 pcap raw alerts
ruleset http
1 line Argh : 0.3
profile none summary
tarball none none none none none none none

T:05:15:00 Win2K-f 118.160.196.188 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:756 hits: 11-30 to 12-31] none[3] none:none
StarForce| none trace

05:17:00 Win2K-f 123.54.23.120 (163DATA.COM.CN):
CHINANET HENAN PROVINCE NETWORK,
HENAN, GUIZHOU, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:21:00 Win2K-f 200.127.126.114 (NET.AR):
PRIMA S.A,
BUENOS AIRES, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

T:05:28:00 Win2K-f 59.93.5.161 (10/24.BSNL.IN):
NIB (NATIONAL INTERNET BACKBONE),
DELHI, DELHI, IN. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:30:00 Win2K-f 86.20.164.87 (NTL.COM):
NTL INFRASTRUCTURE - BIRMINGHAM,
COVENTRY, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:63 hits: 12-19 to 12-31] none[3] none:none
MEW| none trace

05:31:00 Win2K-f 87.119.225.86 (SARANSK.RU):
BRANCH IN MORDOVIAN REPUBLIC OJSC VOLGATELECOM,
RU. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:32:00 Win2K-f 59.116.45.113 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:33:00 Win2K-f 93.94.178.85 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:37:00 Win2K-f 189.62.38.240 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1551 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

T:05:41:00 Win2K-f 190.220.105.133 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:46:00 Win2K-f 78.58.183.137 (ZEBRA.LT):
LIETUVOS,
LT. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:50:00 Win2K-f 115.43.213.75 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:53:00 Win2K-f 221.127.109.19 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:756 hits: 11-30 to 12-31] none[3] none:none
StarForce| none trace

05:56:00 Win2K-f 59.112.178.128 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:59:00 Win2K-f 87.119.229.49 (SARANSK.RU):
BRANCH IN MORDOVIAN REPUBLIC OJSC VOLGATELECOM,
RU. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:03:00 Win2K-f 221.125.136.213 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:120 hits: 11-29 to 12-31] none[3] none:none
UPX| none trace

T:06:10:00 Win2K-f 87.97.228.208 (GGBIT.NET):
EKK CATV PLOVDIV,
PLOVDIV, PLOVDIV, BG. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:63 hits: 12-19 to 12-31] none[3] none:none
MEW| none trace

T:06:10:00 Win2K-f 221.125.136.213 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:120 hits: 11-29 to 12-31] none[3] none:none
UPX| none trace

06:11:00 Win2K-f 125.85.156.197 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:19:00 Win2K-f 87.119.225.86 (SARANSK.RU):
BRANCH IN MORDOVIAN REPUBLIC OJSC VOLGATELECOM,
RU. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:31:00 Win2K-f 94.76.206.150 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:32:00 Win2K-f 89.29.226.222 (TRIUNFOTEL.COM):
PRODUCMEDIA,
ALBACETE, CASTILLA-LA MANCHA, ES. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:33:00 Win2K-f 186.9.32.242 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:63 hits: 12-19 to 12-31] none[3] none:none
MEW| none trace

06:33:00 Win2K-f 114.47.121.146 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:35:00 Win2K-f 211.75.67.187 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:39:00 Win2K-f 125.127.218.254 (163DATA.COM.CN):
CHINANET-ZJ TAIZHOU NODE NETWORK,
CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:42:00 Win2K-f 64.107.234.100 (IL.US):
ILLINOIS CENTURY NETWORK,
SHELBYVILLE, ILLINOIS, US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:47:00 Win2K-f 93.124.43.123 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:51:00 Win2K-f 113.17.251.146 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 5 of 38 0d31bddced
NEW none[3] none:none
UPX| none trace

06:53:00 Win2K-f 61.217.244.190 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:59:00 Win2K-f 203.113.174.16 (ADSL.VIETTEL.VN):
VIETEL CORPORATION,
HO CHI MINH CITY, HO CHI MINH, VN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:00:00 Win2K-f 59.113.156.177 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:01:00 Win2K-f 125.127.218.254 (163DATA.COM.CN):
CHINANET-ZJ TAIZHOU NODE NETWORK,
CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:01:00 Win2K-f 218.169.59.151 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:04:00 Win2K-f 67.4.152.4 (QWEST.NET):
QWEST COMMUNICATIONS CORPORATION,
MINNEAPOLIS, MINNESOTA, US. n/a US:www.maxmind.com
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:06:00 Win2K-f 60.177.89.216 (163DATA.COM.CN):
CHINANET-ZJ HANGZHOU NODE NETWORK,
HANGZHOU, ZHEJIANG, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1551 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

T:07:12:00 Win2K-f 118.160.33.207 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:12:00 Win2K-f 201.253.2.99 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:15:00 Win2K-f 221.10.36.14 (-):
CHINA-MERCHANTS-STEAMSHIP-COMPANY,
CN. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:22:00 Win2K-f 118.160.196.125 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:30:00 Win2K-f 190.51.191.37 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:38:00 Win2K-f 60.177.89.216 (163DATA.COM.CN):
CHINANET-ZJ HANGZHOU NODE NETWORK,
HANGZHOU, ZHEJIANG, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1551 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

07:38:00 Win2K-f 200.49.17.212 (BSR1000.PAPNET.CL):
PLUG AND PLAY NET S.A,
CL. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:40:00 Win2K-f 59.116.8.115 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:07:52:00 Win2K-f 190.51.50.109 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

08:00:00 Win2K-f 80.83.62.24 (NET2000.CH):
VIDEO2000-MAIN-NET,
NEUCHATEL, NEUCHATEL, CH. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:02:00 Win2K-f 219.91.76.30 (APOL.COM.TW):
ASIA PACIFIC ON-LINE SERVICES INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:590 hits: 11-21 to 12-31] none[3] none:none
StarForce| none trace

08:04:00 Win2K-f 222.181.222.6 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:05:00 Win2K-f 190.141.7.197 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

T:08:12:00 Win2K-f 222.181.222.6 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:15:00 Win2K-f 78.38.82.7 (-):
INFORMATION TECHNOLOGY COMPANY (ITC),
IR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:16:00 Win2K-f 87.55.86.77 (BROADBAND.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
DK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:22:00 Win2K-f 58.88.81.243 (OCN.NE.JP):
OPEN COMPUTER NETWORK,
JP. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:22:00 Win2K-f 12.70.192.83 (PRSERV.NET):
AT&T GLOBAL SERVICES,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:28:00 Win2K-f 122.53.26.79 (PLDT.NET):
IPG,
PH. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:31:00 Win2K-f 118.160.33.207 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:31:00 Win2K-f 77.21.225.57 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:35:00 Win2K-f 190.225.126.206 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:43:00 Win2K-f 116.10.84.246 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
NANNING, GUANGXI, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1551 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

08:48:00 Win2K-f 58.88.81.243 (OCN.NE.JP):
OPEN COMPUTER NETWORK,
JP. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:51:00 Win2K-f 208.90.224.120 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:54:00 Win2K-f 116.10.84.246 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
NANNING, GUANGXI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1551 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

09:01:00 Win2K-f 78.49.214.123 (ALICEDSL.DE):
HANSENET TELEKOMMUNIKATION GMBH,
HAMBURG, HAMBURG, DE. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:84 hits: 11-23 to 12-31] none[3] none:none
StarForce| none trace

09:04:00 Win2K-f 86.5.177.49 (NTLI.NET):
NTLI,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:05:00 Win2K-f 217.95.83.201 (T-IPCONNECT.DE):
DEUTSCHE TELEKOM AG,
DARMSTADT, HESSEN, DE. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 15 of 38 553136081a
NEW none[3] none:none
UPX| none trace

09:09:00 WinXP 60.250.188.106 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. (DSL) n/a 135 pcap raw alerts
ruleset other
122 lines Yeah : 1.3
profile none summary
tarball 34 of 38
35 of 38 38ed850a0e
NEW
b9297745a1
NEW 46990f37cd [0]
4294884d84[0] ASM:Graph
ASM:Graph
Armadillo|
tElock| lines=91
lines=64
embedded dns trace
trace

09:21:00 Win2K-f 117.86.11.76 (163DATA.COM.CN):
CHINANET JIANGSU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:739 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

09:22:00 Win2K-f 200.117.112.91 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:295 hits: 11-26 to 12-31] none[3] none:none
Armadillo| none trace

T:09:23:00 Win2K-f 87.55.86.77 (BROADBAND.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
DK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:24:00 Win2K-f 200.117.112.91 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:295 hits: 11-26 to 12-31] none[3] none:none
Armadillo| none trace

09:25:00 Win2K-f 217.95.83.201 (T-IPCONNECT.DE):
DEUTSCHE TELEKOM AG,
DARMSTADT, HESSEN, DE. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:27:00 Win2K-f 59.104.76.199 (SEED.NET.TW):
DIGITAL UNITED I,
KAOHSIUNG, KAO-HSIUNG, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:31:00 Win2K-f 87.246.12.55 (-):
VARIANT 6 CATV OF CABLETEL AD IN SHUMEN,
BG. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 9 of 38 e1a2e3980d
[Firefox:13 hits: 12-05 to 12-30] none[3] none:none
UPX| none trace

09:39:00 Win2K-f 123.97.214.223 (HZ.ZJ.CN):
CHINANET ZHEJIANG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:739 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

T:09:44:00 Win2K-f 190.184.56.141 (-):
CABLENET S.A,
NI. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 16 of 39 9a9f93c4d2
[Firefox:11 hits: 12-23 to 12-27] none[3] none:none
UPX| none trace

09:44:00 Win2K-f 190.227.46.145 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:56:00 Win2K-f 122.121.221.207 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:58:00 Win2K-f 164.77.219.172 (ENTELCHILE.NET):
ISAPRE BANMEDICA,
CL. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:03:00 Win2K-f 59.104.66.36 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:04:00 Win2K-f 164.77.219.172 (ENTELCHILE.NET):
ISAPRE BANMEDICA,
CL. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:09:00 Win2K-f 190.227.46.145 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:16:00 Win2K-f 95.68.29.66 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:17:00 Win2K-f 80.74.225.131 (-):
VECTONE INTERNET ACCESS SERVICE,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:18:00 Win2K-f 190.51.50.109 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

T:10:18:00 Win2K-f 69.89.170.109 (PROCOMNET.US):
QCOL INC,
ADDISON, PENNSYLVANIA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:20:00 Win2K-f 95.68.29.66 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:30:00 Win2K-f 170.51.53.143 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:63 hits: 12-19 to 12-31] none[3] none:none
MEW| none trace

T:10:34:00 Win2K-f 79.3.135.30 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA NET,
ROME, LAZIO, IT. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:590 hits: 11-21 to 12-31] none[3] none:none
StarForce| none trace

T:10:35:00 Win2K-f 217.14.100.216 (-):
INTRANS,
BAKU, ABSERON, AZ. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:38:00 Win2K-f 87.55.196.7 (IP.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
DK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 9 of 38 e1a2e3980d
[Firefox:13 hits: 12-05 to 12-30] none[3] none:none
UPX| none trace

T:10:48:00 Win2K-f 60.32.184.91 (-):
ELAEX CORPORATION,
JP. (100Mbps) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:48:00 Win2K-f 82.27.88.226 (NTLI.NET):
NTLI,
HUDDERSFIELD, ENGLAND, UK. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:10:51:00 Win2K-f 71.98.174.212 (VERIZON.NET):
VERIZON INTERNET SERVICES INC,
CLEARWATER, FLORIDA, US. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:56:00 Win2K-f 79.3.135.30 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA NET,
ROME, LAZIO, IT. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:590 hits: 11-21 to 12-31] none[3] none:none
StarForce| none trace

10:56:00 Win2K-f 69.89.170.109 (PROCOMNET.US):
QCOL INC,
ADDISON, PENNSYLVANIA, US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:04:00 Win2K-f 219.80.138.18 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 37 78ceaae025
[Firefox:10 hits: 11-22 to 12-28] none[3] none:none
UPX| none trace

T:11:09:00 Win2K-f 122.120.35.127 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:11:00 Win2K-f 200.40.6.48 (ADINET.COM.UY):
ADMINISTRACION NACIONAL DE TELECOMUNICACIONES,
MONTEVIDEO, MONTEVIDEO, UY. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:11:12:00 Win2K-f 125.224.86.251 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:13:00 Win2K-f 80.74.225.131 (-):
VECTONE INTERNET ACCESS SERVICE,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:16:00 Win2K-f 190.7.146.31 (-):
EMTELSA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:18:00 Win2K-f 190.48.12.234 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:322 hits: 11-25 to 12-31] none[3] none:none
Armadillo| none trace

T:11:26:00 Win2K-f 170.51.53.143 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:63 hits: 12-19 to 12-31] none[3] none:none
MEW| none trace

11:27:00 Win2K-f 218.108.95.100 (EMALLS.COM.CN):
BEIJING OPTIEAST NETWORKS TECH CO. LTD,
TAIYUAN, BEIJING, CN. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:34:00 Win2K-f 71.98.174.212 (VERIZON.NET):
VERIZON INTERNET SERVICES INC,
CLEARWATER, FLORIDA, US. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:36:00 Win2K-f 70.77.124.17 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
CALGARY, ALBERTA, CA. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:39:00 Win2K-f 200.112.148.189 (NET.AR):
BROADBANDTECH S. A,
MENDOZA, MENDOZA, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:44:00 Win2K-f 190.48.12.234 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:322 hits: 11-25 to 12-31] none[3] none:none
Armadillo| none trace

11:51:00 Win2K-f 59.104.41.218 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:55:00 Win2K-f 95.69.132.123 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:590 hits: 11-21 to 12-31] none[3] none:none
StarForce| none trace

T:11:55:00 Win2K-f 80.71.253.43 (-):
RIALCOM,
RU. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:57:00 Win2K-f 190.225.84.33 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:00:00 Win2K-f 125.224.86.251 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:02:00 Win2K-f 190.105.21.136 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

T:12:12:00 Win2K-f 190.173.212.53 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

12:12:00 Win2K-f 87.97.227.237 (GGBIT.NET):
EKK CATV PLOVDIV,
PLOVDIV, PLOVDIV, BG. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:63 hits: 12-19 to 12-31] none[3] none:none
MEW| none trace

T:12:14:00 Win2K-f 87.97.227.237 (GGBIT.NET):
EKK CATV PLOVDIV,
PLOVDIV, PLOVDIV, BG. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:63 hits: 12-19 to 12-31] none[3] none:none
MEW| none trace

12:14:00 Win2K-f 82.103.79.246 (-):
MEGANET ROUSSE,
RUSE, RAZGRAD, BG. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:23:00 Win2K-f 83.132.88.137 (CPE.NETCABO.PT):
TVCABO-PORTUGAL CABLE MODEM NETWORK,
MASSAMA, LISBOA, PT. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

12:28:00 Win2K-f 122.120.32.51 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:29:00 Win2K-f 83.132.88.137 (CPE.NETCABO.PT):
TVCABO-PORTUGAL CABLE MODEM NETWORK,
MASSAMA, LISBOA, PT. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

T:12:37:00 Win2K-f 190.50.191.221 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:39:00 Win2K-f 116.30.18.95 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:295 hits: 11-26 to 12-31] none[3] none:none
Armadillo| none trace

T:12:42:00 Win2K-f 216.122.144.14 (FANOSA.COM):
HOSTPRO INC,
KENMORE, WASHINGTON, US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:46:00 Win2K-f 59.117.164.174 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:50:00 Win2K-f 201.172.138.132 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:756 hits: 11-30 to 12-31] none[3] none:none
StarForce| none trace

12:53:00 Win2K-f 59.117.164.174 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:55:00 Win2K-f 201.172.138.132 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:756 hits: 11-30 to 12-31] none[3] none:none
StarForce| none trace

T:12:57:00 Win2K-f 58.45.175.107 (-):
CHINANET HUNAN PROVINCE NETWORK,
CHANGSHA, HUNAN, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:739 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

13:07:00 Win2K-f 194.106.194.43 (KERN.RU):
KALININGRAD STATE UNIVERSITY,
KALININGRAD, KALININGRADSKAYA OBLAST', RU. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

13:10:00 Win2K-f 114.45.143.181 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:15:00 Win2K-f 59.112.37.47 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:756 hits: 11-30 to 12-31] none[3] none:none
StarForce| none trace

T:13:23:00 Win2K-f 200.75.151.173 (NET-UNO.NET):
NET UNO C.A,
LAGUNILLAS, ZULIA, VE. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:24:00 Win2K-f 61.20.162.165 (-):
FAR EASTONE TELECOMMUNICATION CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:29:00 Win2K-f 200.75.151.173 (NET-UNO.NET):
NET UNO C.A,
LAGUNILLAS, ZULIA, VE. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:30:00 Win2K-f 170.51.174.5 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:590 hits: 11-21 to 12-31] none[3] none:none
StarForce| none trace

T:13:34:00 Win2K-f 59.116.194.154 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:39:00 Win2K-f 114.45.143.181 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:40:00 Win2K-f 190.50.40.117 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:63 hits: 12-19 to 12-31] none[3] none:none
MEW| none trace

13:42:00 Win2K-f 81.99.61.72 (NTL.COM):
NTL INFRASTRUCTURE - BAGULEY,
LONDON, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

13:43:00 Win2K-f 190.128.48.147 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:47:00 Win2K-f 190.48.145.46 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:739 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

T:13:47:00 Win2K-f 170.51.174.5 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:590 hits: 11-21 to 12-31] none[3] none:none
StarForce| none trace

13:48:00 Win2K-f 211.21.230.2 (CATEYE.COM.TW):
CHTD CHUNGHWA TELECOM CO. LTD,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:63 hits: 12-19 to 12-31] none[3] none:none
MEW| none trace

T:13:53:00 Win2K-f 190.220.79.238 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:54:00 Win2K-f 216.122.144.14 (FANOSA.COM):
HOSTPRO INC,
KENMORE, WASHINGTON, US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:59:00 Win2K-f 202.190.233.202 (SKALI.NET):
MIMOS BHD,
KUALA LUMPUR, WILAYAH PERSEKUTUAN, MY. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 10 of 38 9aaa5d9b81
NEW none[3] none:none
UPX| none trace

T:14:06:00 Win2K-f 24.79.232.201 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
EDMONTON, ALBERTA, CA. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

14:08:00 Win2K-f 218.161.53.196 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:12:00 Win2K-f 59.116.194.154 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:19:00 Win2K-f 190.4.53.170 (GRUPONAVEGA.COM):
NAVEGA.COM S.A,
GT. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:22:00 Win2K-f 218.161.53.196 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:23:00 Win2K-f 190.25.53.209 (ETB.NET.CO):
ETB - COLOMBIA,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:63 hits: 12-19 to 12-31] none[3] none:none
MEW| none trace

T:14:29:00 Win2K-f 116.30.18.95 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:295 hits: 11-26 to 12-31] none[3] none:none
Armadillo| none trace

14:30:00 Win2K-f 201.74.123.168 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:31:00 Win2K-f 211.21.230.2 (CATEYE.COM.TW):
CHTD CHUNGHWA TELECOM CO. LTD,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:63 hits: 12-19 to 12-31] none[3] none:none
MEW| none trace

14:37:00 WinXP 68.91.195.124 (SWBELL.NET):
PPPOX POOL - RBACK7 AUSTTX,
AUSTIN, TEXAS, US. (DSL) n/a 445 pcap raw alerts
ruleset ftp
12 lines Yeah : 1.3
profile none summary
tarball 29 of 29 1a2c0e6130
[Firefox:413 hits: 05-01 to 12-22] none[0] none:none
none|none lines=60 trace

14:38:00 Win2K-f 170.51.46.170 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:756 hits: 11-30 to 12-31] none[3] none:none
StarForce| none trace

14:41:00 Win2K-f 190.50.40.117 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:63 hits: 12-19 to 12-31] none[3] none:none
MEW| none trace

T:14:41:00 Win2K-f 202.190.233.202 (SKALI.NET):
MIMOS BHD,
KUALA LUMPUR, WILAYAH PERSEKUTUAN, MY. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 10 of 38 9aaa5d9b81
NEW none[3] none:none
UPX| none trace

T:14:46:00 Win2K-f 201.173.176.102 (IFXNW.COM.MX):
NETWORK INFORMATION CENTER MEXICO,
MX. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:63 hits: 12-19 to 12-31] none[3] none:none
MEW| none trace

14:47:00 Win2K-f 190.128.37.37 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:56:00 Win2K-f 91.64.227.153 (SUPERKABEL.DE):
KABEL-DEUTSCHLAND-CUSTOMER-SERVICES,
DE. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:322 hits: 11-25 to 12-31] none[3] none:none
Armadillo| none trace

T:14:57:00 Win2K-f 72.164.133.113 (QWEST.NET):
SWEETWATER CABLE TV,
ROCK SPRINGS, WYOMING, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:00:00 Win2K-f 91.34.231.154 (T-DIALIN.NET):
DEUTSCHE TELEKOM AG,
DE. (DIAL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:09:00 Win2K-f 190.55.210.4 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

15:10:00 Win2K-f 93.105.143.171 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:13:00 Win2K-f 218.63.69.77 (CN.NET):
CHINANET YUNNAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:13:00 Win2K-f 61.223.180.164 (HINET.NET):
DATA COMMUNICATION BUSINESS GROUP CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:17:00 Win2K-f 118.168.97.230 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:22:00 Win2K-f 91.64.227.153 (SUPERKABEL.DE):
KABEL-DEUTSCHLAND-CUSTOMER-SERVICES,
DE. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:322 hits: 11-25 to 12-31] none[3] none:none
Armadillo| none trace

15:25:00 Win2K-f 212.59.11.81 (ZEBRA.LT):
LIETUVOS,
VILNIUS, VILNIAUS APSKRITIS, LT. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:25:00 Win2K-f 218.63.69.77 (CN.NET):
CHINANET YUNNAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:26:00 Win2K-f 190.3.122.69 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:32:00 Win2K-f 190.156.68.198 (CABLE.NET.CO):
TV CABLE S.A,
CO. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

T:15:35:00 Win2K-f 118.168.97.230 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:41:00 Win2K-f 200.101.13.43 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1551 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

15:42:00 Win2K-f 119.1.44.96 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:55:00 Win2K-f 190.51.246.107 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:56:00 Win2K-f 208.53.158.141 (ON-DEMAND-TECH.COM):
FDC SERVERS.NET LLC,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:56:00 Win2K-f 91.34.231.154 (T-DIALIN.NET):
DEUTSCHE TELEKOM AG,
DE. (DIAL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:59:00 Win2K-f 190.51.246.107 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:03:00 Win2K-f 203.92.33.49 (SPECTRANET.COM):
BRAODBAND ISP INDIA,
NEW DELHI, DELHI, IN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:11:00 Win2K-f 219.109.106.24 (CATVNET.NE.JP):
CATV NETWORK SERVICES(STNET INCORPORATED),
OSAKA, OSAKA, JP. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:17:00 Win2K-f 201.250.94.197 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:18:00 Win2K-f 118.160.172.59 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:21:00 Win2K-f 219.109.106.24 (CATVNET.NE.JP):
CATV NETWORK SERVICES(STNET INCORPORATED),
OSAKA, OSAKA, JP. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:27:00 Win2K-f 201.250.94.197 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:28:00 Win2K-f 65.124.153.112 (BCCONSULTING.COM):
BC CONSULTING,
LEADVILLE, COLORADO, US. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:31:00 Win2K-f 59.105.15.104 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:41:00 Win2K-f 59.105.15.104 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:43:00 Win2K-f 218.173.244.173 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:45:00 Win2K-f 87.97.214.239 (GGBIT.NET):
EKK CATV PLOVDIV,
PLOVDIV, PLOVDIV, BG. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:48:00 Win2K-f 59.113.161.18 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:50:00 Win2K-f 115.82.17.185 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:52:00 Win2K-f 190.8.222.42 (-):
UNION DE CABLEOPERADORES DEL CENTRO CABLECENTRO S.A,
CO. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:53:00 Win2K-f 190.97.139.143 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:00:00 Win2K-f 59.105.198.133 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
TW:59.105.198.133:6530
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:01:00 Win2K-f 190.246.201.32 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1551 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

17:02:00 Win2K-f 59.113.161.18 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:04:00 Win2K-f 190.90.198.115 (EQUITEL.COM.CO):
INTERNEXA S.A. E.S.P,
CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:11:00 Win2K-f 190.90.198.115 (EQUITEL.COM.CO):
INTERNEXA S.A. E.S.P,
CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:67.15.94.80:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:16:00 Win2K-f 201.236.214.62 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:18:00 Win2K-f 79.9.6.167 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA NET,
ROME, LAZIO, IT. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1551 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

T:17:19:00 Win2K-f 122.38.110.144 (-):
POWERCOMM,
KR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:23:00 Win2K-f 122.2.213.186 (PLDT.NET):
IPG,
PH. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:26:00 Win2K-f 190.137.163.167 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:26:00 Win2K-f 190.97.139.143 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:29:00 Win2K-f 118.160.175.75 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

T:17:32:00 Win2K-f 122.118.131.37 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:34:00 Win2K-f 190.128.3.191 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:43:00 Win2K-f 77.39.3.214 (STV.RU):
ELECTROSVYAZ STAVROPOL TERRITORY BRANCH OF PJSC UTK,
RU. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:47:00 Win2K-f 210.3.140.203 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:49:00 Win2K-f 59.105.198.133 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:50:00 Win2K-f 190.128.3.191 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:50:00 Win2K-f 118.160.175.75 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

T:17:57:00 Win2K-f 190.30.159.91 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:00:00 Win2K-f 92.46.27.49 (IKBCC.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:07:00 Win2K-f 190.136.220.226 (NET.AR):
APOLO -GOLD-TELECOM-PER,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:63 hits: 12-19 to 12-31] none[3] none:none
MEW| none trace

18:08:00 Win2K-f 59.114.14.194 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
TW:59.114.14.194:1085
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:13:00 Win2K-f 218.110.48.149 (SO-NET.NE.JP):
SO-NET SERVICE,
JP. n/a US:www.maxmind.com
US:www.getmyip.org
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:322 hits: 11-25 to 12-31] none[3] none:none
Armadillo| none trace

18:14:00 Win2K-f 76.76.22.37 (SPEAKEASY.NET):
US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:15:00 Win2K-f 190.51.223.109 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:64.246.48.99:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1551 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

T:18:15:00 Win2K-f 203.127.118.100 (-):
CHALLENGER TECHNOLOGIES PTE LTD,
SINGAPORE, SINGAPORE, SG. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:295 hits: 11-26 to 12-31] none[3] none:none
Armadillo| none trace

T:18:16:00 Win2K-f 92.46.27.49 (IKBCC.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:18:00 Win2K-f 200.71.230.53 (-):
TELECENTRO TELECOM EN EDCADASSA,
BUENOS AIRES, BUENOS AIRES, AR. (100Mbps) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:27:00 Win2K-f 122.89.233.62 (JWS.COM):
CHINA TIETONG TELECOMMUNICATIONS CORPORATION,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:29:00 Win2K-f 170.51.49.181 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:39:00 Win2K-f 122.89.233.62 (JWS.COM):
CHINA TIETONG TELECOMMUNICATIONS CORPORATION,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:40:00 Win2K-f 189.36.172.2 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

18:40:00 Win2K-f 212.106.42.91 (-):
TWELVENET,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:43:00 Win2K-f 203.127.118.100 (-):
CHALLENGER TECHNOLOGIES PTE LTD,
SINGAPORE, SINGAPORE, SG. (100Mbps) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
SG:203.127.118.100:6328
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:295 hits: 11-26 to 12-31] none[3] none:none
Armadillo| none trace

T:18:48:00 Win2K-f 219.71.234.205 (NVWTV.COM.TW):
HOSHIN GIGAMEDIA CENTER INC,
TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:51:00 Win2K-f 124.8.55.75 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:739 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

18:54:00 Win2K-f 122.38.110.144 (-):
POWERCOMM,
KR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:57:00 Win2K-f 114.47.46.16 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:58:00 Win2K-f 58.68.38.217 (-):
DISHNET WIRELESS LTD INDIA,
BANGALORE, KARNATAKA, IN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

19:06:00 Win2K-f 88.31.235.43 (RIMA-TDE.NET):
TELEFONICA MOVILES ESPANA (NCC#2007041930),
ES. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

T:19:06:00 Win2K-f 82.131.229.186 (INVITEL.HU):
ADSL-PPPOE-(ESZT-ADSL0),
ESZTERGOM, KOMAROM-ESZTERGOM, HU. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:11:00 Win2K-f 61.216.115.180 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:11:00 Win2K-f 83.111.92.118 (-):
MILLENIUM AIRPORT HOTEL,
DUBAI, DUBAI, AE. (100Mbps) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:16:00 Win2K-f 221.125.125.45 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:23:00 Win2K-f 122.123.1.248 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:25:00 Win2K-f 38.116.147.124 (COGENTCO.COM):
PERFORMANCE SYSTEMS INTERNATIONAL INC,
US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:590 hits: 11-21 to 12-31] none[3] none:none
StarForce| none trace

19:25:00 Win2K-f 114.47.200.23 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:28:00 Win2K-f 125.125.168.81 (HZ.ZJ.CN):
CHINANET ZHEJIANG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:30:00 Win2K-f 201.253.179.221 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:31:00 Win2K-f 83.111.92.118 (-):
MILLENIUM AIRPORT HOTEL,
DUBAI, DUBAI, AE. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:38:00 Win2K-f 125.25.118.142 (TOTBB.NET):
TOT ADSL IP ADDRESS POOL,
BANGKOK, KRUNG THEP MAHANAKHON, TH. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:322 hits: 11-25 to 12-31] none[3] none:none
Armadillo| none trace

T:19:39:00 Win2K-f 201.172.127.238 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:756 hits: 11-30 to 12-31] none[3] none:none
StarForce| none trace

T:19:44:00 Win2K-f 87.97.214.239 (GGBIT.NET):
EKK CATV PLOVDIV,
PLOVDIV, PLOVDIV, BG. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80
BG:87.97.214.239:8138 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:45:00 Win2K-f 200.40.203.243 (ADINET.COM.UY):
SERVICIO INTERNET CLASS,
MONTEVIDEO, MONTEVIDEO, UY. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:50:00 Win2K-f 210.3.140.203 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:51:00 Win2K-f 59.113.0.76 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. (DIAL) n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:19:52:00 Win2K-f 59.112.12.179 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:00:00 Win2K-f 200.40.203.243 (ADINET.COM.UY):
SERVICIO INTERNET CLASS,
MONTEVIDEO, MONTEVIDEO, UY. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:03:00 Win2K-f 219.152.102.180 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:05:00 Win2K-f 114.47.7.223 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:09:00 Win2K-f 186.9.41.162 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:175 hits: 11-20 to 12-30] none[3] none:none
StarForce| none trace

T:20:10:00 Win2K-f 58.68.38.217 (-):
DISHNET WIRELESS LTD INDIA,
BANGALORE, KARNATAKA, IN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

20:10:00 Win2K-f 218.110.48.149 (SO-NET.NE.JP):
SO-NET SERVICE,
JP. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:322 hits: 11-25 to 12-31] none[3] none:none
Armadillo| none trace

20:13:00 Win2K-f 200.117.116.160 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

20:13:00 Win2K-f 82.131.229.186 (INVITEL.HU):
ADSL-PPPOE-(ESZT-ADSL0),
ESZTERGOM, KOMAROM-ESZTERGOM, HU. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:21:00 Win2K-f 90.150.224.137 (PERMONLINE.RU):
OJSC URALSVYAZINFORM,
RU. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:23:00 Win2K-f 119.123.159.148 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset lanman
http
30 lines Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:120 hits: 11-29 to 12-31] none[3] none:none
UPX| none trace

T:20:23:00 Win2K-f 201.70.37.70 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:33:00 Win2K-f 218.64.180.131 (163DATA.COM.CN):
CHINANET JIANGXI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:34:00 Win2K-f 122.118.206.107 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:36:00 Win2K-f 123.195.64.37 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:45:00 Win2K-f 90.150.224.137 (PERMONLINE.RU):
OJSC URALSVYAZINFORM,
RU. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:49:00 Win2K-f 219.152.102.180 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
CN:219.152.102.180:4387
US:67.15.94.80:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:50:00 Win2K-f 190.51.119.75 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1551 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

T:20:57:00 Win2K-f 189.54.135.13 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:59:00 Win2K-f 222.218.29.108 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
GUANGXI, GUANGXI, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 5 of 37 741c93f3c1
[Firefox: 8 hits: 11-30 to 12-28] none[3] none:none
UPX| none trace

21:01:00 Win2K-f 186.9.138.32 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:63 hits: 12-19 to 12-31] none[3] none:none
MEW| none trace

21:05:00 Win2K-f 200.71.108.85 (TELESAT.COM.CO):
COLDECON,
CALI, VALLE DEL CAUCA, CO. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:21:09:00 Win2K-f 59.116.2.195 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:590 hits: 11-21 to 12-31] none[3] none:none
StarForce| none trace

T:21:10:00 Win2K-f 59.51.162.69 (AGENT1.GZ.CN):
CHINANET GUIZHOU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

T:21:13:00 Win2K-f 89.19.14.82 (CIZGIBILGISAYAR.COM):
CIZGI BILGISAYAR SISTEMLERI SAN. TIC. LTD. STI,
TR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:19:00 Win2K-f 59.104.21.209 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:21:00 Win2K-f 24.79.19.106 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
CALGARY, ALBERTA, CA. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:295 hits: 11-26 to 12-31] none[3] none:none
Armadillo| none trace

T:21:21:00 Win2K-f 212.68.53.20 (-):
NETWING,
AT. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

21:25:00 Win2K-f 222.234.234.234 (HANANET.NET):
HANARO TELECOM INC,
SEOUL, KYONGGI-DO, KR. 58.65.234.89:65520 :proxima.ircgalaxy.pl
US:microsoft.com
CN:horobl.cn
CN:goasi.cn
CN:www.upononjob.cn
:panda-server.ru
US:alt1.gmail-smtp-in.l.google.com
US:gsmtp147.google.com
US:gsmtp183.google.com
US:alt2.gmail-smtp-in.l.google.com
US:70.38.64.149:80 135 pcap raw alerts
ruleset irc
http
315 lines Yeah : 1.8
profile none summary
tarball 0 of 38
7 of 38
31 of 33
9 of 38
31 of 33 0e3c4b161d
NEW
83ead2dfa8
NEW
b74e792974
[Firefox:20 hits: 06-18 to 11-20]
db97fcb2d2
NEW
f0e73c39a8
[Firefox:21 hits: 06-18 to 11-20] none[4]
37da677eeb[0]
none [0]
9e826e24a7[0]
3f1d6aa0fc[0] none:none
ASM:Graph
none:none
ASM:Graph
ASM:Graph
none|none
none|none
Armadillo|
Stranik|
tElock| none
lines=0
lines=91
lines=7
lines=120
embedded dns trace
trace
trace
trace
trace

T:21:26:00 Win2K-f 190.14.252.100 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:27:00 Win2K-f 122.122.135.204 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:35:00 Win2K-f 212.68.53.20 (-):
NETWING,
AT. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

T:21:36:00 Win2K-f 173.45.67.205 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:39:00 Win2K-f 59.116.2.195 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:590 hits: 11-21 to 12-31] none[3] none:none
StarForce| none trace

21:42:00 Win2K-f 189.54.135.13 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. 58.65.234.89:65520 US:www.maxmind.com
US:alt2.gmail-smtp-in.l.google.com
US:gsmtp147.google.com
US:gsmtp183.google.com
US:microsoft.com
BE:cavinkotnet.kulnet.kuleuven.be
BE:mail.linux.student.kuleuven.be
US:mxr01.wlf01.dsl.net
US:mxr01.nyc01.dsl.net
GB:mail.spiritgroupretail.co.uk
BE:fallback.mail.uk.uu.net
US:mx2.crosslink.net
US:mx1.crosslink.net
US:mx3.crosslink.net
FR:thsmsgxav10p.thalesgroup.com
FR:mail-in.freeserve.com
GB:athena.bournemouth.ac.uk
GB:atlas.bournemouth.ac.uk
GB:mx-ironport.core.plus.net
GB:mx-ironport.last.plus.net
DE:mail.apm.net
DE:mforward.dtag.de
DE:pns.dtag.de
US:byranco.com.inbound15.mxlogic.net
US:byranco.com.inbound15.mxlogicmx.net
RU:mail.copyrus.com
RU:ns.drbit.ru
US:tema.toyota.com.s7a1.psmtp.com
US:tema.toyota.com.s7a2.psmtp.com
US:tema.toyota.com.s7b1.psmtp.com
US:tema.toyota.com.s7b2.psmtp.com
US:mail.global.frontbridge.com
IT:mx1.ptcommunication.it
US:aspmx.l.google.com
US:alt1.aspmx.l.google.com
US:alt2.aspmx.l.google.com
US:aspmx2.googlemail.com
US:aspmx3.googlemail.com
US:aspmx4.googlemail.com
:aspmx5.googlemail.com
US:mx1c8.megamailservers.com
US:mx2c8.megamailservers.com
US:smtp.bitwise.net
US:www.getmyip.org
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
irc
43334 lines Yeah : 1.3
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:47:00 Win2K-f 114.47.85.137 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:49:00 Win2K-f 118.166.235.247 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1551 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

T:21:50:00 Win2K-f 125.120.120.208 (163DATA.COM.CN):
CHINANET-ZJ HANGZHOU NODE NETWORK,
HANGZHOU, ZHEJIANG, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:57:00 Win2K-f 190.51.119.75 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:microsoft.com
US:mail.ringpower.com
US:backshop.com.inbound10.symantecmail.net
US:smtp17.msoutlookonline.net
NO:dns1.itconnect.no
US:mail.atsystemsinc.com.s8a1.psmtp.com
:vlmx01.secure.ne.jp
:vlmx00.secure.ne.jp
CA:mail.nisgroup.com
US:mail2.nisgroup.com
US:mailstore1.secureserver.net
FR:mail-in.freeserve.com
US:server66.appriver.com
US:mail.global.sprint.com
US:aspmx4.googlemail.com
US:backshop.com.inbound10.symantecmail.com
US:mxrelay.lmi.net
NO:relay.rapphydema.com
US:server67.appriver.com
US:smtp.secureserver.net
US:mail.atsystemsinc.com.s8a2.psmtp.com
:vlmx02.secure.ne.jp
NO:dns3.itconnect.no
US:ms1.pccnm.com 445 pcap raw alerts
ruleset other
36269 lines Argh : 0.3
profile none summary
tarball none none none none none none none

T:21:59:00 Win2K-f 212.117.163.73 (-):
EYENET,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:59:00 Win2K-f 173.45.67.205 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:02:00 Win2K-f 118.166.235.247 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1551 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

T:22:06:00 Win2K-f 218.109.45.209 (-):
WASU-BB,
HANGZHOU, ZHEJIANG, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:739 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

22:12:00 Win2K-f 190.55.156.246 (-):
. n/a US:smtp.secureserver.net
US:mailstore1.secureserver.net
US:mail.atsystemsinc.com.s8a1.psmtp.com
US:mail2.nisgroup.com
US:backshop.com.inbound10.symantecmail.com
US:aspmx.l.google.com
US:smtp17.msoutlookonline.net
:vlmx00.secure.ne.jp
US:mail.atsystemsinc.com.s8a2.psmtp.com
NO:relay.rapphydema.com
FR:mail-in.freeserve.com
US:server67.appriver.com
NO:dns3.itconnect.no
:checkip.dyndns.org
US:microsoft.com
US:www.getmyip.org
DE:mxin01.versatel.de
DE:mxin02.versatel.de
US:server86.appriver.com
US:server87.appriver.com
CH:mx1.adfinis.com
CH:mx2.adfinis.com
JP:souseki.pref.kumamoto.jp
JP:mail.bd.jful.jp
GB:mail.icp-ag.de
DE:mforward.dtag.de
CA:mailwn.dainty.ca
GB:mx1.emailfiltering.com
GB:mx2.emailfiltering.com
DE:mailin.rzone.de
US:kidde.com.s8a1.psmtp.com
US:kidde.com.s8a2.psmtp.com
US:kidde.com.s8b1.psmtp.com
US:kidde.com.s8b2.psmtp.com
DE:mail.lra-toelz.de
PT:smtp.dcc.online.pt
GB:mail1.sigroup-plc.com
US:rhodius.de.s8a1.psmtp.com
US:rhodius.de.s8a2.psmtp.com
US:rhodius.de.s8b1.psmtp.com
US:rhodius.de.s8b2.psmtp.com
DK:mail.gigahost.dk
JP:ns1.hbc.co.jp
US:mail.global.mas.att.com
DE:mail003.thyssenkrupp.com
DE:mail004.thyssenkrupp.com
US:mail006.thyssenkrupp.com
US:mail007.thyssenkrupp.com
:mail.de-punkt.de
NL:mx1.cambrium.nl
PT:dns.dcc.online.pt 445 pcap raw alerts
ruleset other
14574 lines Argh : 0.3
profile none summary
tarball none none none none none none none

22:17:00 Win2K-f 59.104.21.209 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:18:00 Win2K-f 58.209.156.114 (163DATA.COM.CN):
CHINANET JIANGSU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:21:00 Win2K-f 123.195.65.221 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:22:00 Win2K-f 114.44.244.153 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:22:00 Win2K-f 89.29.135.73 (NOT-ASSIGNED.TVALMANSA.ES):
TV ALMANSA ALMANSA INFRAESTRUCTURE/ACCESS,
ES. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

T:22:31:00 Win2K-f 124.8.101.194 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:35:00 Win2K-f 119.1.129.40 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:295 hits: 11-26 to 12-31] none[3] none:none
Armadillo| none trace

T:22:36:00 Win2K-f 125.230.24.136 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:38:00 Win2K-f 218.163.181.168 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:67.15.94.80:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:43:00 Win2K-f 221.127.133.233 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:48:00 Win2K-f 219.87.251.182 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:51:00 Win2K-f 114.44.244.153 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:53:00 Win2K-f 201.172.222.119 (INTERCABLE.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MONTERREY, NUEVO LEON, MX. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:756 hits: 11-30 to 12-31] none[3] none:none
StarForce| none trace

22:56:00 Win2K-f 88.2.250.50 (RIMA-TDE.NET):
TELEFONICA DE ESPANA,
ES. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1551 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

T:23:02:00 Win2K-f 125.224.66.217 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:05:00 Win2K-f 58.50.219.205 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:322 hits: 11-25 to 12-31] none[3] none:none
Armadillo| none trace

23:08:00 Win2K-f 122.100.113.205 (UBBN.NET):
UNION BROADBAND NETWORK,
TAIPEI, T'AI-PEI, TW. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:23:09:00 Win2K-f 81.13.238.209 (-):
IP DHCP,
SION, VALAIS, CH. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:09:00 Win2K-f 117.65.72.33 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:14:00 Win2K-f 58.52.77.53 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:14:00 Win2K-f 58.50.219.205 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:322 hits: 11-25 to 12-31] none[3] none:none
Armadillo| none trace

T:23:16:00 Win2K-f 201.172.222.119 (INTERCABLE.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MONTERREY, NUEVO LEON, MX. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:756 hits: 11-30 to 12-31] none[3] none:none
StarForce| none trace

23:21:00 Win2K-f 222.49.249.223 (HERBALQC.COM):
CHINA RAILWAY TELECOMMUNICATIONS CENTER,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:84 hits: 11-23 to 12-31] none[3] none:none
StarForce| none trace

T:23:24:00 Win2K-f 64.20.43.202 (ALEXSRV40.COM):
INTERSERVER INC,
PALMDALE, CALIFORNIA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:34:00 Win2K-f 200.123.120.84 (COM.AR):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
MAR DEL PLATA, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1254 hits: 11-24 to 12-31] none[3] none:none
UPX| none trace

T:23:37:00 Win2K-f 88.2.250.50 (RIMA-TDE.NET):
TELEFONICA DE ESPANA,
ES. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1551 hits: 11-22 to 12-31] none[3] none:none
UPX| none trace

23:41:00 Win2K-f 116.22.137.28 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:44:00 Win2K-f 60.249.8.244 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:45:00 Win2K-f 218.109.221.52 (-):
WASU-BB,
CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:46:00 Win2K-f 24.64.97.11 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
CALGARY, ALBERTA, CA. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:47:00 Win2K-f 212.62.123.168 (-):
ICCSOLUTIONS,
SA. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:49:00 Win2K-f 60.249.8.244 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:51:00 Win2K-f 59.95.17.229 (10/24.BSNL.IN):
NIB (NATIONAL INTERNET BACKBONE),
DELHI, DELHI, IN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:175 hits: 11-20 to 12-30] none[3] none:none
StarForce| none trace

T:23:59:00 Win2K-f 85.47.35.107 (BUSINESS.TELECOMITALIA.IT):
INTERBUSINESS,
TORINO, PIEMONTE, IT. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:59:00 Win2K-f 210.66.1.198 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:14125 hits: 11-20 to 12-31] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:59:00 Win2K-f 83.97.166.125 (CM-83-97-128-10.TELECABLE.ES):
TELECABLE,
GIJON, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:120 hits: 11-29 to 12-31] none[3] none:none
UPX| none trace