Multiperspective Malware Analysis Page

Welcome to the Cyber-TA
SRI's Multiperspective Malware Infection Analysis Page

UNCENSORED PAGE

<Click here: to download BotHunter>

06 January 2009
<prev> <next>

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Daily Summary Files: [DNS Lookups & Failed Connects] [ Attacker IPs ] [C&C Servers] [Binary Digests]
Cumulative Summary Files: [DNS Lookup Log] [Attacker IP Log] [C&C Server Log] [Antivirus Detection] [Code Segment Overlap]
[Behavioral Clusters] [Binary Digest Log]

[See Country Codes ]

Time
Victim
OS
Infection
Source
C&C
Server
DNS Lookups &
Failed Connects Infection
Port
Packet
Trace
Detection
Signatures
Infection
Chatter
BotHunter
Analysis
Behavioral
Cluster
Forensic
Logs
Antivirus
Labels
Packed Malware_Binary Unpacked egg.exe
Unpacked egg.asm
Packer PEID
Data Strings
Syscall Trace

00:05:00 Win2K-f 77.92.142.122 (-):
HOSTING INTERNET HIZMETLERI LTD STI,
TR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

00:06:00 Win2K-f 125.73.200.139 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:09:00 Win2K-f 124.43.39.245 (-):
INTERNET SERVICE PROVIDER IN SRI LANKA,
LK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:09:00 Win2K-f 70.110.231.188 (VERIZON.NET):
VERIZON INTERNET SERVICES INC,
PHILADELPHIA, PENNSYLVANIA, US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:17:00 Win2K-f 170.51.109.96 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:126 hits: 12-19 to 01-05] none[3] none:none
MEW| none trace

T:00:24:00 Win2K-f 122.124.163.146 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

T:00:28:00 Win2K-f 210.55.78.68 (QUICKER.NET.NZ):
WORLD-NET LIMITED,
AUCKLAND, AUCKLAND, NZ. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:37:00 Win2K-f 66.80.148.234 (MEGAPATH.NET):
MEGAPATH NETWORKS INC,
CHALFONT, PENNSYLVANIA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:44:00 Win2K-f 119.98.47.158 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:48:00 Win2K-f 59.125.210.63 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:53:00 Win2K-f 117.61.111.182 (163DATA.COM.CN):
CHINANET JIANGSU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:56:00 Win2K-f 125.73.200.139 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:57:00 Win2K-f 94.249.19.3 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:03:00 Win2K-f 122.125.133.78 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:770 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

T:01:06:00 Win2K-f 122.125.133.78 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:770 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

01:15:00 Win2K-f 195.62.126.8 (-):
REXON EUROPE GMBH,
DE. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:24:00 Win2K-f 210.55.78.74 (QUICKER.NET.NZ):
WORLD-NET LIMITED,
AUCKLAND, AUCKLAND, NZ. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:24:00 Win2K-f 58.54.83.209 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
HUBEI, HUBEI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:24:00 Win2K-f 124.116.190.53 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:27:00 Win2K-f 58.54.83.209 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
HUBEI, HUBEI, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:30:00 Win2K-f 218.160.188.186 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:35:00 Win2K-f 77.92.142.122 (-):
HOSTING INTERNET HIZMETLERI LTD STI,
TR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

T:01:46:00 Win2K-f 87.58.16.124 (ADSL-DHCP.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
DK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:826 hits: 11-30 to 01-05] none[3] none:none
StarForce| none trace

01:56:00 Win2K-f 221.7.94.168 (CECCOILS.COM):
CNC GROUP CHONGQING PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:126 hits: 12-19 to 01-05] none[3] none:none
MEW| none trace

T:02:01:00 Win2K-f 64.86.123.26 (-):
BAIT ALSHAMMES FOR DATA COMMUNICATION,
LR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:366 hits: 11-26 to 01-05] none[3] none:none
Armadillo| none trace

02:02:00 Win2K-f 122.121.186.100 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:02:00 Win2K-f 116.53.218.85 (CN.NET):
CHINANET YUNNAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:03:00 Win2K-f 66.18.13.6 (SPEAKEASY.NET):
US. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:04:00 Win2K-f 125.224.185.172 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:09:00 Win2K-f 87.58.16.124 (ADSL-DHCP.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
DK. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:826 hits: 11-30 to 01-05] none[3] none:none
StarForce| none trace

02:13:00 Win2K-f 122.89.194.48 (JWS.COM):
CHINA TIETONG TELECOMMUNICATIONS CORPORATION,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:24:00 Win2K-f 87.9.176.173 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA S.P.A. TIN EASY LITE,
IT. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:31:00 Win2K-f 200.82.53.145 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:366 hits: 11-26 to 01-05] none[3] none:none
Armadillo| none trace

T:02:32:00 Win2K-f 95.104.30.114 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

T:02:32:00 Win2K-f 59.125.210.63 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:34:00 Win2K-f 119.19.8.5 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:42:00 Win2K-f 200.165.169.139 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:02:44:00 Win2K-f 125.81.42.249 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:45:00 Win2K-f 67.159.44.217 (JILLYRED.NET):
FDC SERVERS.NET LLC,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:64.246.48.99:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:48:00 Win2K-f 72.9.156.76 (LIVEHELPENGINE.COM):
TAILOR MADE SERVERS,
CARROLLTON, TEXAS, US. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

T:02:51:00 Win2K-f 60.173.75.101 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:54:00 Win2K-f 123.53.219.53 (163DATA.COM.CN):
CHINANET HENAN PROVINCE NETWORK,
HENAN, GUIZHOU, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:55:00 Win2K-f 59.114.17.187 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

03:00:00 Win2K-f 200.80.179.228 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
MAR DEL PLATA, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:366 hits: 11-26 to 01-05] none[3] none:none
Armadillo| none trace

T:03:02:00 Win2K-f 124.11.211.141 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:05:00 Win2K-f 125.81.42.249 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:16:00 Win2K-f 64.16.18.66 (MTNTEL.NET):
1ST NATIONAL LENDER,
MESA, ARIZONA, US. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:826 hits: 11-30 to 01-05] none[3] none:none
StarForce| none trace

T:03:18:00 Win2K-f 59.104.178.133 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:25:00 Win2K-f 117.36.36.77 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:826 hits: 11-30 to 01-05] none[3] none:none
StarForce| none trace

T:03:30:00 Win2K-f 219.86.217.133 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:31:00 Win2K-f 59.114.17.187 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:32:00 Win2K-f 87.101.50.63 (THEWEB.GR):
THESSALONIKI,
THESSALONIKI, THESSALONIKI, GR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:38:00 Win2K-f 59.104.178.133 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:42:00 Win2K-f 81.98.228.100 (NTL.COM):
NTL INFRASTRUCTURE - MIDDLESBROUGH,
GLASGOW, SCOTLAND, UK. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:48:00 Win2K-f 92.47.246.3 (IKBCC.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

T:03:58:00 Win2K-f 116.27.38.251 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

03:59:00 Win2K-f 78.57.84.250 (ZEBRA.LT):
LIETUVOS,
KAUNAS, KAUNO APSKRITIS, LT. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

04:11:00 Win2K-f 190.55.4.11 (190.IN-ADDR.ARPA):
TELECENTRO S.A,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:15:00 Win2K-f 200.42.219.203 (TRICOM.NET):
TRICOM,
SANTO DOMINGO, DISTRITO NACIONAL, DO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

04:18:00 Win2K-f 122.126.115.83 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:22:00 Win2K-f 92.47.246.3 (IKBCC.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

04:37:00 Win2K-f 58.54.83.209 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
HUBEI, HUBEI, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:46:00 Win2K-f 190.55.4.11 (190.IN-ADDR.ARPA):
TELECENTRO S.A,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:49:00 Win2K-f 211.75.159.19 (EMESSENGER.COM.TW):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
TW:211.75.159.19:4033
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

T:04:51:00 Win2K-f 94.76.206.148 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:51:00 Win2K-f 115.43.212.59 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:770 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

T:04:56:00 Win2K-f 190.220.126.140 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:00:00 Win2K-f 74.63.227.34 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:06:00 Win2K-f 59.105.83.146 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:08:00 Win2K-f 190.64.162.58 (ANTELDATA.NET.UY):
ADMINISTRACION NACIONAL DE TELECOMUNICACIONES,
MONTEVIDEO, MONTEVIDEO, UY. (DIAL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

T:05:09:00 Win2K-f 85.117.58.94 (DSL.ONLINE.GE):
GEORGIA ONLINE ADSL NETWORK,
GE. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

T:05:14:00 Win2K-f 114.40.135.4 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 37 78ceaae025
[Firefox:12 hits: 11-22 to 01-01] none[3] none:none
UPX| none trace

05:22:00 Win2K-f 85.152.149.145 (CM-85-152-150-10.TELECABLE.ES):
TELECABLE,
GIJON, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:24:00 Win2K-f 58.27.194.220 (-):
NATIONAL WIMAX/IMS ENVIRONMENT,
PK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:31:00 Win2K-f 119.84.138.156 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

05:36:00 Win2K-f 114.44.236.77 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:39:00 Win2K-f 59.104.188.243 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:42:00 Win2K-f 87.11.75.226 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA S.P.A. TIN EASY LITE,
IT. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:45:00 Win2K-f 190.49.127.71 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:826 hits: 11-30 to 01-05] none[3] none:none
StarForce| none trace

05:46:00 Win2K-f 86.2.233.252 (NTL.COM):
NTLI,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:59:00 Win2K-f 114.47.240.240 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:00:00 Win2K-f 87.101.50.63 (THEWEB.GR):
THESSALONIKI,
THESSALONIKI, THESSALONIKI, GR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:03:00 Win2K-f 69.13.195.30 (PROPAGATION.NET):
C I HOST,
US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:11:00 Win2K-f 81.13.238.209 (-):
IP DHCP,
SION, VALAIS, CH. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:11:00 Win2K-f 85.121.247.25 (RNC.RO):
RNC,
RO. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:15:00 Win2K-f 219.86.192.230 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:16:00 Win2K-f 195.11.241.30 (KVAZAR-MICRO.NL):
DEMON NL CO-LOCATION CUSTOMER,
MARKNESSE, OVERIJSSEL, NL. (100Mbps) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:22:00 Win2K-f 189.59.228.93 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:24:00 Win2K-f 122.125.163.127 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

06:28:00 Win2K-f 190.128.133.174 (TELESURF.COM.PY):
TELECEL S.A,
FERNANDO DE LA MORA, CENTRAL, PY. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:126 hits: 12-19 to 01-05] none[3] none:none
MEW| none trace

T:06:28:00 Win2K-f 190.128.133.174 (TELESURF.COM.PY):
TELECEL S.A,
FERNANDO DE LA MORA, CENTRAL, PY. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:126 hits: 12-19 to 01-05] none[3] none:none
MEW| none trace

06:34:00 Win2K-f 88.28.230.53 (RIMA-TDE.NET):
TELEFONICA MOVILES ESPANA (NCC#2007041930),
ES. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:770 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

T:06:39:00 Win2K-f 88.28.230.53 (RIMA-TDE.NET):
TELEFONICA MOVILES ESPANA (NCC#2007041930),
ES. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:770 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

T:06:53:00 Win2K-f 59.104.188.243 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:56:00 Win2K-f 201.234.161.49 (COM.AR):
COOPERATIVA VILLA DEL ROSARIO (COOVILROS),
ROSARIO, SANTA FE, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

07:00:00 Win2K-f 121.32.129.10 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:00:00 Win2K-f 81.13.138.39 (-):
IP DHCP SION,
SION, VALAIS, CH. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:13:00 Win2K-f 114.44.236.77 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:16:00 Win2K-f 190.50.51.162 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:17:00 Win2K-f 81.13.138.39 (-):
IP DHCP SION,
SION, VALAIS, CH. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:19:00 Win2K-f 122.121.41.218 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:19:00 Win2K-f 121.254.69.58 (TCOL.COM.TW):
MONAD DIGITNAMIC CORP,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:23:00 Win2K-f 87.101.50.63 (THEWEB.GR):
THESSALONIKI,
THESSALONIKI, THESSALONIKI, GR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:24:00 Win2K-f 83.66.11.44 (DOL.COM.TR):
DOGAN ILETISIM ELEKTRONIK SERVIS HIZMETLERI,
ISTANBUL, ISTANBUL, TR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:28:00 Win2K-f 121.254.69.58 (TCOL.COM.TW):
MONAD DIGITNAMIC CORP,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:29:00 Win2K-f 195.11.241.30 (KVAZAR-MICRO.NL):
DEMON NL CO-LOCATION CUSTOMER,
MARKNESSE, OVERIJSSEL, NL. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:37:00 Win2K-f 190.184.34.223 (-):
CABLENET S.A,
NI. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 16 of 39 9a9f93c4d2
[Firefox:17 hits: 12-23 to 01-05] none[3] none:none
UPX| none trace

T:07:38:00 Win2K-f 190.0.77.150 (ASTER.COM.DO):
ASTER,
SANTO DOMINGO, DISTRITO NACIONAL, DO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:44:00 Win2K-f 115.43.212.59 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:770 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

07:52:00 Win2K-f 190.49.111.234 (COM.AR):
TELEFONICA DE ARGENTINA,
MIRAMAR, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:52:00 Win2K-f 85.152.149.145 (CM-85-152-150-10.TELECABLE.ES):
TELECABLE,
GIJON, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:57:00 Win2K-f 116.214.24.132 (TULIPCONNECT.COM):
IPVPN/INTERNET SERVICE PROVIDER,
IN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:57:00 Win2K-f 59.104.251.180 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset lanman
http
27 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:03:00 Win2K-f 79.107.71.130 (G-M-I.NET):
EU-ZZ,
UK. n/a 445 pcap raw alerts
ruleset http
1 line Argh : 0.3
profile none summary
tarball none none none none none none none

08:03:00 Win2K-f 125.83.44.127 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 37 4f88618d4f
[Firefox:93 hits: 11-29 to 01-04] none[3] none:none
UPX| none trace

T:08:13:00 Win2K-f 123.195.73.78 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
TW:123.195.73.78:7175
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:13:00 Win2K-f 87.119.91.246 (PESHTERA.NET):
PASAT ANTENY LTD,
BG. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:67.15.94.80:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:366 hits: 11-26 to 01-05] none[3] none:none
Armadillo| none trace

T:08:21:00 Win2K-f 124.104.116.91 (PLDT.NET):
JNEC7300I01_CONSUMER,
PH. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 9 of 38 e1a2e3980d
[Firefox:19 hits: 12-05 to 01-04] none[3] none:none
UPX| none trace

T:08:23:00 Win2K-f 190.184.34.223 (-):
CABLENET S.A,
NI. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 16 of 39 9a9f93c4d2
[Firefox:17 hits: 12-23 to 01-05] none[3] none:none
UPX| none trace

08:24:00 Win2K-f 202.70.240.119 (ONINET.NE.JP):
OKAYAMA NETWORK INC,
TOKYO, TOKYO, JP. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:25:00 Win2K-f 61.217.158.81 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:770 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

08:34:00 Win2K-f 151.20.10.84 (20-151.LIBERO.IT):
FREE INTERNET DIAL-UP SERVICES,
MILANO, LOMBARDIA, IT. (DIAL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:37:00 Win2K-f 86.123.233.96 (RDSNET.RO):
RCS-RDS-CABLELINK,
BRASOV, BRASOV, RO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 14 of 38 1ace8876c3
NEW none[3] none:none
UPX| none trace

08:46:00 Win2K-f 87.11.75.226 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA S.P.A. TIN EASY LITE,
IT. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:47:00 Win2K-f 200.21.144.23 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
CO. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:47:00 Win2K-f 219.86.192.230 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
TW:219.86.192.230:5187
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:48:00 Win2K-f 24.85.203.221 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
CALGARY, ALBERTA, CA. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:49:00 Win2K-f 81.9.206.121 (CM-81-9-199-10.TELECABLE.ES):
TELECABLE,
OVIEDO, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:52:00 Win2K-f 200.68.94.242 (COM.AR):
NSS S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:01:00 Win2K-f 24.66.46.193 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
WINNIPEG, MANITOBA, CA. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:01:00 Win2K-f 123.195.73.78 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:17:00 Win2K-f 81.9.206.121 (CM-81-9-199-10.TELECABLE.ES):
TELECABLE,
OVIEDO, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:17:00 Win2K-f 189.100.192.168 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

T:09:24:00 Win2K-f 123.145.178.59 (-):
CNCGROUP CHONGQING PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:27:00 Win2K-f 116.11.159.9 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
NANNING, GUANGXI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:29:00 Win2K-f 221.125.136.91 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:133 hits: 11-29 to 01-05] none[3] none:none
UPX| none trace

T:09:33:00 Win2K-f 84.3.161.60 (T-ONLINE.HU):
HUNGARIAN TELECOM,
BUDAPEST, BUDAPEST, HU. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

09:35:00 Win2K-f 186.9.23.32 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:39:00 Win2K-f 201.234.161.49 (COM.AR):
COOPERATIVA VILLA DEL ROSARIO (COOVILROS),
ROSARIO, SANTA FE, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

T:09:41:00 Win2K-f 84.73.47.34 (HISPEED.CH):
CABLECOMMAIN-NET,
ZURICH, ZURICH, CH. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:50:00 Win2K-f 190.14.241.6 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:50:00 Win2K-f 24.66.46.193 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
WINNIPEG, MANITOBA, CA. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:51:00 Win2K-f 61.216.82.191 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

T:09:55:00 Win2K-f 116.11.159.9 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
NANNING, GUANGXI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:56:00 Win2K-f 201.221.27.216 (DEDICADO.COM.UY):
TECNOWIND S.A,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:03:00 Win2K-f 190.141.104.143 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:05:00 Win2K-f 208.90.225.22 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:13:00 Win2K-f 190.0.65.169 (ASTER.COM.DO):
ASTER,
SANTO DOMINGO, DISTRITO NACIONAL, DO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:26:00 Win2K-f 78.92.155.167 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:29:00 Win2K-f 201.221.115.124 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:636 hits: 11-21 to 01-05] none[3] none:none
StarForce| none trace

10:32:00 Win2K-f 190.102.221.182 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

10:44:00 Win2K-f 86.34.147.86 (ROMTELECOM.NET):
ROMTELECOM DATA NETWORK,
RO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:45:00 Win2K-f 87.119.91.246 (PESHTERA.NET):
PASAT ANTENY LTD,
BG. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:366 hits: 11-26 to 01-05] none[3] none:none
Armadillo| none trace

T:10:51:00 Win2K-f 190.2.0.75 (IPLANNETWORKS.NET):
NSS S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:53:00 Win2K-f 190.136.84.121 (NET.AR):
APOLO -GOLD-TELECOM-PER,
ROSARIO, SANTA FE, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:55:00 Win2K-f 190.136.84.121 (NET.AR):
APOLO -GOLD-TELECOM-PER,
ROSARIO, SANTA FE, AR. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:01:00 Win2K-f 190.3.51.90 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:03:00 Win2K-f 96.53.235.196 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:770 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

11:03:00 Win2K-f 211.23.221.74 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
TW:211.23.221.74:9923
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:10:00 Win2K-f 190.3.51.90 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:14:00 Win2K-f 95.69.128.202 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:16:00 Win2K-f 122.123.98.82 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:17:00 Win2K-f 122.123.98.82 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:28:00 Win2K-f 200.21.144.23 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
CO. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:11:36:00 Win2K-f 190.48.229.54 (COM.AR):
TELEFONICA DE ARGENTINA,
CIPOLLETTI, NEUQUEN, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:37:00 Win2K-f 95.69.128.202 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:42:00 Win2K-f 78.110.175.16 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

11:55:00 Win2K-f 194.54.56.141 (KABLONET.COM.TR):
CABLE OPERATOR NETWORK OF TURK TELEKOM,
ESKISEHIR, ESKISEHIR, TR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:15:00 Win2K-f 86.104.129.123 (CERNAVODA.RO):
SC GMB COMPUTERS SRL,
CONSTANTA, CONSTANTA, RO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:366 hits: 11-26 to 01-05] none[3] none:none
Armadillo| none trace

T:12:24:00 Win2K-f 146.83.126.124 (RNEVADOS.UCN.CL):
RED UNIVERSITARIA NACIONAL,
SANTIAGO, REGION METROPOLITANA, CL. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:26:00 Win2K-f 65.111.99.21 (GRANDENETWORKS.NET):
GRANDE COMMUNICATIONS NETWORKS INC,
US. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:32:00 Win2K-f 59.104.23.60 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

12:33:00 Win2K-f 193.56.193.5 (-):
VERLINK,
FR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:38:00 Win2K-f 193.56.193.5 (-):
VERLINK,
FR. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:39:00 Win2K-f 200.71.210.4 (-):
INCOVA,
SANTIAGO, REGION METROPOLITANA, CL. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:366 hits: 11-26 to 01-05] none[3] none:none
Armadillo| none trace

T:12:39:00 Win2K-f 201.252.0.245 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:126 hits: 12-19 to 01-05] none[3] none:none
MEW| none trace

12:42:00 Win2K-f 114.42.129.240 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset lanman
http
27 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:52:00 Win2K-f 67.127.171.41 (PACBELL.NET):
JFA INC,
SAN FRANCISCO, CALIFORNIA, US. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

T:12:54:00 Win2K-f 218.161.121.98 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:56:00 Win2K-f 93.156.192.91 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:59:00 Win2K-f 118.160.237.214 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

13:00:00 Win2K-f 190.128.82.41 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:770 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

13:09:00 Win2K-f 190.220.108.89 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:11:00 Win2K-f 190.220.108.89 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:12:00 Win2K-f 200.68.61.142 (MAIL.LYP.CL):
TEEMSR-LACNIC,
CL. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:21:00 Win2K-f 131.93.84.30 (SAINTJOE.EDU):
ST. JOSEPH'S COLLEGE,
RENSSELAER, INDIANA, US. n/a 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball none none none none none none none

13:22:00 Win2K-f 58.29.67.3 (STERLINGSTUDENTS.NET):
DACOM-PUBNETPLUS,
SEOUL, KYONGGI-DO, KR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:24:00 Win2K-f 84.74.185.81 (HISPEED.CH):
CABLECOMMAIN-NET,
ZURICH, ZURICH, CH. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:26:00 Win2K-f 58.27.226.82 (-):
NATIONAL WIMAX/IMS ENVIRONMENT,
PK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 9 of 38 e1a2e3980d
[Firefox:19 hits: 12-05 to 01-04] none[3] none:none
UPX| none trace

T:13:27:00 Win2K-f 201.234.15.94 (COM.AR):
VER TV S.A,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:133 hits: 11-29 to 01-05] none[3] none:none
UPX| none trace

T:13:41:00 Win2K-f 190.5.192.90 (EMTEL.NET.CO):
EMTEL S.A. E.S.P,
CO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

T:13:44:00 Win2K-f 190.24.78.221 (ETB.NET.CO):
ETB - COLOMBIA,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:366 hits: 11-26 to 01-05] none[3] none:none
Armadillo| none trace

13:48:00 Win2K-f 83.97.205.135 (CM-83-97-128-10.TELECABLE.ES):
TELECABLE,
GIJON, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:48:00 Win2K-f 200.111.65.82 (MAIL.DCS.CL):
ENTEL CHILE S.A,
SANTIAGO, REGION METROPOLITANA, CL. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:50:00 Win2K-f 217.115.183.110 (R86.RU):
JOINT STOCK COMPANY YUGRA-TELECOM,
RU. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:54:00 Win2K-f 81.89.193.13 (MORE7.COM):
MEG KOMMUNIKATIONSSYSTEME GMBH,
HEIDELBERG, BADEN-WURTTEMBERG, DE. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:02:00 Win2K-f 58.27.226.82 (-):
NATIONAL WIMAX/IMS ENVIRONMENT,
PK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 9 of 38 e1a2e3980d
[Firefox:19 hits: 12-05 to 01-04] none[3] none:none
UPX| none trace

T:14:02:00 Win2K-f 200.107.3.242 (ANDINANET.NET):
ANDINATEL S.A,
EC. n/a US:www.maxmind.com
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:06:00 Win2K-f 200.68.61.142 (MAIL.LYP.CL):
TEEMSR-LACNIC,
CL. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:07:00 Win2K-f 82.22.20.73 (NTL.COM):
NTLI,
UK. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:08:00 Win2K-f 190.208.98.141 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:10:00 Win2K-f 190.55.223.13 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

14:15:00 Win2K-f 212.72.182.112 (EKB-KIESERLING.DE):
ARTFILES NEW MEDIA GMBH,
HAMBURG, HAMBURG, DE. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:16:00 Win2K-f 114.42.129.240 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:24:00 Win2K-f 218.109.214.174 (-):
WASU-BB,
CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:24:00 Win2K-f 77.79.103.100 (GRID.COM.TR):
GRID BILISIM TEKNOLOJILERI A.S,
ISTANBUL, ISTANBUL, TR. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:33:00 Win2K-f 64.32.123.11 (CODETEL.NET.DO):
VERIZON DOMINICANA,
SANTIAGO, SANTIAGO, DO. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:38:00 Win2K-f 190.31.22.117 (NET.AR):
APOLO -GOLD-TELECOM-PER,
AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:826 hits: 11-30 to 01-05] none[3] none:none
StarForce| none trace

14:43:00 Win2K-f 93.156.192.91 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:50:00 Win2K-f 91.67.193.30 (SUPERKABEL.DE):
KABEL DEUTSCHLAND BREITBAND SERVICE GMBH,
DE. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:51:00 Win2K-f 91.67.193.30 (SUPERKABEL.DE):
KABEL DEUTSCHLAND BREITBAND SERVICE GMBH,
DE. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:59:00 Win2K-f 218.161.121.98 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:02:00 Win2K-f 218.109.214.174 (-):
WASU-BB,
CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:04:00 Win2K-f 151.32.73.136 (32-151.IOL.IT):
ITALIA ONLINE S.P.A,
IT. (DIAL) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:11:00 Win2K-f 115.99.3.43 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:366 hits: 11-26 to 01-05] none[3] none:none
Armadillo| none trace

T:15:12:00 Win2K-f 200.164.26.29 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:366 hits: 11-26 to 01-05] none[3] none:none
Armadillo| none trace

15:15:00 Win2K-f 190.55.161.248 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:23:00 Win2K-f 62.123.89.140 (STAT-62-123-89-10.ATLANET.IT):
ATLANET NETWORK,
PIACENZA, EMILIA-ROMAGNA, IT. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:24:00 Win2K-f 190.141.158.101 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

T:15:28:00 Win2K-f 122.121.122.238 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:36:00 Win2K-f 62.123.89.140 (STAT-62-123-89-10.ATLANET.IT):
ATLANET NETWORK,
PIACENZA, EMILIA-ROMAGNA, IT. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:37:00 Win2K-f 151.32.73.136 (32-151.IOL.IT):
ITALIA ONLINE S.P.A,
IT. (DIAL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:37:00 Win2K-f 59.104.23.60 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

T:15:42:00 Win2K-f 121.62.161.43 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
WUHAN, HUBEI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:46:00 Win2K-f 77.64.170.19 (PRIMACOM.NET):
PRIMACOM-HEADENDS,
LEIPZIG, SACHSEN, DE. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:48:00 Win2K-f 190.128.76.30 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:53:00 Win2K-f 114.44.129.208 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:54:00 Win2K-f 117.63.241.91 (163DATA.COM.CN):
CHINANET JIANGSU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:02:00 Win2K-f 190.208.70.114 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:07:00 Win2K-f 77.73.43.124 (-):
LORCA T.V. SOL S.L,
MURCIA, MURCIA, ES. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:07:00 Win2K-f 60.250.203.247 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:14:00 Win2K-f 12.70.49.45 (PRSERV.NET):
AT&T GLOBAL SERVICES,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:92 hits: 11-23 to 01-05] none[3] none:none
StarForce| none trace

T:16:19:00 Win2K-f 84.121.117.52 (ONO.COM):
CABLEUROPA - ONO,
ALICANTE, VALENCIA, ES. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:22:00 Win2K-f 122.121.214.140 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:25:00 Win2K-f 186.12.59.223 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:25:00 Win2K-f 122.121.122.238 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:30:00 Win2K-f 190.208.93.232 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:30:00 Win2K-f 60.250.203.247 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:30:00 Win2K-f 190.26.15.73 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

T:16:31:00 Win2K-f 190.141.158.101 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

T:16:33:00 Win2K-f 12.70.49.45 (PRSERV.NET):
AT&T GLOBAL SERVICES,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset lanman
http
27 lines Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:92 hits: 11-23 to 01-05] none[3] none:none
StarForce| none trace

16:37:00 Win2K-f 190.50.42.197 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:366 hits: 11-26 to 01-05] none[3] none:none
Armadillo| none trace

T:16:39:00 Win2K-f 190.50.42.197 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:366 hits: 11-26 to 01-05] none[3] none:none
Armadillo| none trace

T:16:49:00 Win2K-f 114.44.129.208 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:56:00 Win2K-f 212.95.47.31 (-):
DEUTSCHES INTERNET-ZENTRUM AG,
DE. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

T:16:59:00 Win2K-f 201.172.65.2 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:826 hits: 11-30 to 01-05] none[3] none:none
StarForce| none trace

17:00:00 Win2K-f 72.44.76.83 (MULTACOM.COM):
MULTACOM CORPORATION,
CANYON COUNTRY, CALIFORNIA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:72.44.76.83:7407
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:636 hits: 11-21 to 01-05] none[3] none:none
StarForce| none trace

17:00:00 Win2K-f 200.112.150.195 (NET.AR):
BROADBANDTECH S. A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:03:00 Win2K-f 200.114.22.208 (INTERCABLE.NET.CO):
TV CABLE PROMISION S.A,
BUCARAMANGA, SANTANDER, CO. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:04:00 Win2K-f 189.50.0.28 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:14:00 Win2K-f 201.173.157.237 (IFXNW.COM.MX):
NETWORK INFORMATION CENTER MEXICO,
MX. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:826 hits: 11-30 to 01-05] none[3] none:none
StarForce| none trace

17:15:00 Win2K-f 190.165.44.183 (-):
EMTELSA S.A. E.S.P,
CO. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:23:00 Win2K-f 59.125.120.101 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:25:00 Win2K-f 124.8.55.112 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:28:00 Win2K-f 190.208.69.45 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:33:00 Win2K-f 190.48.220.49 (COM.AR):
TELEFONICA DE ARGENTINA,
CIPOLLETTI, NEUQUEN, AR. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

T:17:34:00 Win2K-f 213.8.145.39 (INTER.NET.IL):
EURONET DIGITAL COMMUNICATIONS,
IL. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:35:00 Win2K-f 190.65.189.90 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
BARRANQUILLA, ATLANTICO, CO. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
CO:190.65.189.90:5781
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

17:42:00 Win2K-f 170.51.160.47 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:636 hits: 11-21 to 01-05] none[3] none:none
StarForce| none trace

T:17:47:00 Win2K-f 190.208.70.114 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:50:00 Win2K-f 122.121.214.140 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:56:00 Win2K-f 89.155.234.235 (-):
TVCABO PORTUGAL S.A,
PT. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

T:17:57:00 Win2K-f 218.17.144.167 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

T:17:59:00 Win2K-f 190.141.5.189 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

18:00:00 Win2K-f 61.221.45.246 (HINET.NET):
DATA COMMUNICATION BUSINESS GROUP CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:microsoft.com 135 pcap raw alerts
ruleset other
75 lines Yeah : 1.3
profile none summary
tarball 33 of 33
0 of 33 53bfe15e91
[Firefox:4117 hits: 06-17 to 01-05]
57ce4acac2
[Firefox:366 hits: 06-17 to 12-29] 1473091351 [0]
none [0] ASM:Graph
none:none
tElock|
Armadillo| lines=75
embedded dns
lines=90 trace
trace

T:18:11:00 Win2K-f 96.51.28.52 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:12:00 Win2K-f 123.97.44.145 (HZ.ZJ.CN):
CHINANET ZHEJIANG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:13:00 Win2K-f 213.8.145.39 (INTER.NET.IL):
EURONET DIGITAL COMMUNICATIONS,
IL. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:15:00 Win2K-f 81.42.136.37 (RIMA-TDE.NET):
TELEFONICA DE ESPANA SAU,
ES. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:15:00 Win2K-f 202.70.148.117 (MAX.COM.PK):
MASKCOM,
KARACHI, SINDH, PK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:126 hits: 12-19 to 01-05] none[3] none:none
MEW| none trace

18:24:00 Win2K-f 218.17.144.167 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

T:18:28:00 Win2K-f 195.5.216.12 (NERIM.NET):
INTERNEXT,
FR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:32:00 Win2K-f 190.184.49.237 (-):
CABLENET S.A,
NI. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 16 of 39 9a9f93c4d2
[Firefox:17 hits: 12-23 to 01-05] none[3] none:none
UPX| none trace

18:37:00 Win2K-f 190.184.49.237 (-):
CABLENET S.A,
NI. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 16 of 39 9a9f93c4d2
[Firefox:17 hits: 12-23 to 01-05] none[3] none:none
UPX| none trace

18:40:00 Win2K-f 200.61.41.63 (NET.AR):
VELOCOM,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:366 hits: 11-26 to 01-05] none[3] none:none
Armadillo| none trace

T:18:41:00 Win2K-f 24.89.90.13 (ACCESSCOMM.CA):
ACCESS COMMUNICATIONS CO-OPERATIVE LIMITED,
REGINA, SASKATCHEWAN, CA. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:770 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

T:18:41:00 Win2K-f 117.80.91.180 (163DATA.COM.CN):
CHINANET JIANGSU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:46:00 Win2K-f 203.73.5.220 (TSRC.COM.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:48:00 Win2K-f 190.26.44.224 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:55:00 Win2K-f 59.105.12.215 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:57:00 Win2K-f 24.89.90.13 (ACCESSCOMM.CA):
ACCESS COMMUNICATIONS CO-OPERATIVE LIMITED,
REGINA, SASKATCHEWAN, CA. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:770 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

T:18:58:00 Win2K-f 221.122.51.2 (-):
CETC-CHINACOMM COMMUNICATIONS CO. LTD,
CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:08:00 Win2K-f 218.23.213.61 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
ANHUI, ANHUI, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:08:00 Win2K-f 201.116.95.100 (UNINET-IDE.COM.MX):
UNINET S.A. DE C.V,
MX. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:10:00 Win2K-f 219.76.179.185 (NETVIGATOR.COM):
PCCW LIMITED,
SUNGAI PETANI, KEDAH, MY. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:12:00 Win2K-f 221.122.51.2 (-):
CETC-CHINACOMM COMMUNICATIONS CO. LTD,
CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:22:00 Win2K-f 190.0.95.243 (ASTER.COM.DO):
ASTER,
SANTO DOMINGO, DISTRITO NACIONAL, DO. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:26:00 Win2K-f 58.27.224.82 (-):
NATIONAL WIMAX/IMS ENVIRONMENT,
PK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:27:00 Win2K-f 201.172.96.235 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:826 hits: 11-30 to 01-05] none[3] none:none
StarForce| none trace

19:28:00 Win2K-f 190.51.189.25 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:28:00 Win2K-f 58.27.224.82 (-):
NATIONAL WIMAX/IMS ENVIRONMENT,
PK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:29:00 Win2K-f 59.113.65.151 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. (DIAL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:36:00 Win2K-f 117.80.91.180 (163DATA.COM.CN):
CHINANET JIANGSU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:19:43:00 Win2K-f 217.19.8.12 (-):
SATELLITENETWORKS,
BUCHAREST, BUCURESTI, RO. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

T:19:52:00 Win2K-f 186.9.25.28 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace

19:53:00 Win2K-f 218.168.165.86 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:54:00 Win2K-f 122.125.193.29 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:55:00 Win2K-f 59.120.33.48 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:04:00 Win2K-f 190.137.201.27 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:826 hits: 11-30 to 01-05] none[3] none:none
StarForce| none trace

20:05:00 Win2K-f 195.5.216.12 (NERIM.NET):
INTERNEXT,
FR. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:05:00 Win2K-f 216.30.241.98 (-):
BRIER NET,
LEWISBURG, WEST VIRGINIA, US. n/a 445 pcap raw alerts
ruleset http
1 line Argh : 0.3
profile none summary
tarball none none none none none none none

20:13:00 Win2K-f 190.0.95.243 (ASTER.COM.DO):
ASTER,
SANTO DOMINGO, DISTRITO NACIONAL, DO. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:15:00 Win2K-f 190.137.201.27 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:826 hits: 11-30 to 01-05] none[3] none:none
StarForce| none trace

20:15:00 Win2K-f 62.1.17.82 (-):
TV-RADIO STATION,
GR. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:16:00 Win2K-f 190.108.17.72 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:16:00 Win2K-f 216.109.145.55 (DATAPIPE.NET):
DATAPIPE,
HOBOKEN, NEW JERSEY, US. (100Mbps) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:20:00 Win2K-f 123.204.118.38 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:24:00 Win2K-f 201.172.96.235 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:826 hits: 11-30 to 01-05] none[3] none:none
StarForce| none trace

T:20:27:00 Win2K-f 219.71.114.137 (NVWTV.COM.TW):
HOSHIN GIGAMEDIA CENTER INC,
TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:30:00 Win2K-f 218.21.119.20 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
NANNING, GUANGXI, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:42:00 Win2K-f 200.49.181.74 (AMIGO.NET.GT):
COMCEL GUATEMALA S.A,
GT. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:43:00 Win2K-f 218.168.165.86 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:45:00 Win2K-f 116.9.219.250 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
NANNING, GUANGXI, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:191 hits: 11-20 to 01-05] none[3] none:none
StarForce| none trace

20:50:00 Win2K-f 190.108.17.72 (-):
. n/a US:www.maxmind.com
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:55:00 Win2K-f 190.140.0.124 (CABLEONDA.NET):
CABLE ONDA,
PANAMA CITY, PANAMA, PA. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:56:00 Win2K-f 123.204.118.38 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:08:00 Win2K-f 201.172.103.45 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:826 hits: 11-30 to 01-05] none[3] none:none
StarForce| none trace

21:08:00 Win2K-f 119.5.205.13 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:11:00 Win2K-f 201.172.103.45 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:826 hits: 11-30 to 01-05] none[3] none:none
StarForce| none trace

T:21:13:00 Win2K-f 119.5.205.13 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:13:00 Win2K-f 59.114.196.248 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:24:00 Win2K-f 58.241.27.158 (MAIL.NEDER.CN):
CNC GROUP JIANGSU PROVINCE NETWORK,
NANJING, JIANGSU, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:27:00 Win2K-f 219.71.114.137 (NVWTV.COM.TW):
HOSHIN GIGAMEDIA CENTER INC,
TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:34:00 Win2K-f 218.21.119.20 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
NANNING, GUANGXI, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:34:00 Win2K-f 194.206.24.107 (-):
ERIC SAVIN CONSEIL,
FR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
FR:194.206.24.107:7638
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:36:00 Win2K-f 190.31.244.3 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:191 hits: 11-20 to 01-05] none[3] none:none
StarForce| none trace

21:39:00 Win2K-f 59.115.192.111 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:42:00 Win2K-f 122.122.67.216 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:52:00 Win2K-f 59.115.192.111 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:54:00 Win2K-f 59.114.196.248 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:56:00 Win2K-f 58.241.27.158 (MAIL.NEDER.CN):
CNC GROUP JIANGSU PROVINCE NETWORK,
NANJING, JIANGSU, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:58:00 Win2K-f 190.31.244.3 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:191 hits: 11-20 to 01-05] none[3] none:none
StarForce| none trace

22:00:00 Win2K-f 125.232.1.80 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:01:00 Win2K-f 59.121.197.226 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:191 hits: 11-20 to 01-05] none[3] none:none
StarForce| none trace

T:22:13:00 Win2K-f 122.122.67.216 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:17:00 Win2K-f 91.65.79.85 (SUPERKABEL.DE):
KABEL-DEUTSCHLAND-CUSTOMER-SERVICES,
DE. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:357 hits: 11-25 to 01-05] none[3] none:none
Armadillo| none trace

T:22:18:00 Win2K-f 60.188.207.113 (163DATA.COM.CN):
CHINANET-ZJ TAIZHOU NODE NETWORK,
CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:636 hits: 11-21 to 01-05] none[3] none:none
StarForce| none trace

22:19:00 Win2K-f 218.108.43.165 (-):
YIGAOSHUMA,
CN. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 bd35d4d98f
[Firefox:52 hits: 11-27 to 01-04] none[3] none:none
Armadillo| none trace

T:22:30:00 Win2K-f 170.51.234.88 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
ROSARIO, SANTA FE, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:357 hits: 11-25 to 01-05] none[3] none:none
Armadillo| none trace

T:22:32:00 Win2K-f 216.23.197.2 (MERIPLEX.COM):
MERIPLEX COMMUNICATIONS LTD,
AUBURN, ALABAMA, US. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:770 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

T:22:33:00 Win2K-f 222.177.202.202 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:33:00 Win2K-f 208.88.72.101 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:37:00 Win2K-f 123.195.13.6 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:47:00 Win2K-f 218.108.43.165 (-):
YIGAOSHUMA,
CN. (100Mbps) n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 bd35d4d98f
[Firefox:52 hits: 11-27 to 01-04] none[3] none:none
Armadillo| none trace

22:56:00 Win2K-f 170.51.21.189 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:126 hits: 12-19 to 01-05] none[3] none:none
MEW| none trace

T:22:57:00 Win2K-f 170.51.21.189 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:126 hits: 12-19 to 01-05] none[3] none:none
MEW| none trace

T:22:59:00 Win2K-f 94.76.206.169 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:00:00 Win2K-f 94.76.206.169 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:02:00 Win2K-f 203.67.146.125 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:09:00 Win2K-f 200.49.167.218 (AMIGO.NET.GT):
COMCEL GUATEMALA S.A,
GUATEMALA, GUATEMALA, GT. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:12:00 Win2K-f 118.160.238.125 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

23:16:00 Win2K-f 117.65.93.179 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:19:00 Win2K-f 208.88.72.101 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:22:00 Win2K-f 74.63.196.114 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:24:00 Win2K-f 122.124.128.38 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:25:00 Win2K-f 121.63.141.254 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
WUHAN, HUBEI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:357 hits: 11-25 to 01-05] none[3] none:none
Armadillo| none trace

23:27:00 Win2K-f 65.40.130.14 (EMBARQHSD.NET):
SPRINT DSL NETWORK,
WINTER PARK, FLORIDA, US. n/a US:www.maxmind.com
GB:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:28:00 Win2K-f 122.124.128.38 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
GB:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:28:00 Win2K-f 118.160.238.125 (-):
. n/a US:www.maxmind.com
GB:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

T:23:41:00 WinXP 24.175.50.127 (RR.COM):
ROAD RUNNER HOLDCO LLC,
HOUSTON, TEXAS, US. n/a DE:siliconfireware.ru
US:searchportal.information.com
GB:new.egg.com
:wpad
US:208.73.210.121:80 445 pcap raw alerts
ruleset http
http
http
http
26 lines Yeah : 0.8
profile none summary
tarball 29 of 29 df17a625ee
[Firefox:210 hits: 05-02 to 12-30] none[0] none:none
ASPack| lines=298
embedded dns trace

T:23:42:00 Win2K-f 64.16.220.235 (SAGONET.NET):
SAGO NETWORKS,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:92 hits: 11-23 to 01-05] none[3] none:none
StarForce| none trace

T:23:51:00 Win2K-f 67.159.21.58 (BGMEDIASERVER.COM):
FDC SERVERS.NET LLC,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:51:00 Win2K-f 212.95.40.158 (-):
DEUTSCHES INTERNET-ZENTRUM AG,
DE. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:826 hits: 11-30 to 01-05] none[3] none:none
StarForce| none trace

T:23:53:00 Win2K-f 65.40.130.14 (EMBARQHSD.NET):
SPRINT DSL NETWORK,
WINTER PARK, FLORIDA, US. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
US:204.13.249.70:80
US:65.40.130.14:6167
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:15346 hits: 11-20 to 01-05] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:53:00 Win2K-f 203.69.99.6 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
GB:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1654 hits: 11-22 to 01-05] none[3] none:none
UPX| none trace

23:54:00 Win2K-f 189.123.189.2 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
GB:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.144.213.187:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1377 hits: 11-24 to 01-05] none[3] none:none
UPX| none trace