Multiperspective Malware Analysis Page

Welcome to the Cyber-TA
SRI's Multiperspective Malware Infection Analysis Page

UNCENSORED PAGE

<Click here: to download BotHunter>

14 January 2009
<prev> <next>

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Daily Summary Files: [DNS Lookups & Failed Connects] [ Attacker IPs ] [C&C Servers] [Binary Digests]
Cumulative Summary Files: [DNS Lookup Log] [Attacker IP Log] [C&C Server Log] [Antivirus Detection] [Code Segment Overlap]
[Behavioral Clusters] [Binary Digest Log]

[See Country Codes ]

Time
Victim
OS
Infection
Source
C&C
Server
DNS Lookups &
Failed Connects Infection
Port
Packet
Trace
Detection
Signatures
Infection
Chatter
BotHunter
Analysis
Behavioral
Cluster
Forensic
Logs
Antivirus
Labels
Packed Malware_Binary Unpacked egg.exe
Unpacked egg.asm
Packer PEID
Data Strings
Syscall Trace

00:06:00 Win2K-f 201.173.180.109 (IFXNW.COM.MX):
NETWORK INFORMATION CENTER MEXICO,
MX. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:923 hits: 11-30 to 01-13] none[3] none:none
StarForce| none trace

T:00:07:00 Win2K-f 119.86.100.183 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:07:00 Win2K-f 219.126.64.74 (ICNTV.NE.JP):
ICHIHARA COMMUNITY NETWORK TV CO.LTD,
ICHIHARA, CHIBA, JP. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:923 hits: 11-30 to 01-13] none[3] none:none
StarForce| none trace

00:09:00 Win2K-f 125.224.80.46 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:17:00 Win2K-f 189.57.16.2 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:23:00 Win2K-f 59.105.106.205 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:35:00 Win2K-f 115.74.124.222 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:37:00 Win2K-f 212.117.162.204 (-):
EYENET,
UK. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:39:00 Win2K-f 218.163.158.135 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:42:00 Win2K-f 124.82.170.18 (TM.NET.MY):
TM ADSL SERVICE PROVIDER MALAYSIA,
KUALA LUMPUR, WILAYAH PERSEKUTUAN, MY. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:53:00 Win2K-f 78.84.188.139 (MICROLINK.LV):
TELEKOM,
RIGA, RIGA, LV. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:710 hits: 11-21 to 01-13] none[3] none:none
StarForce| none trace

01:00:00 Win2K-f 189.30.9.173 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:14:00 Win2K-f 59.104.73.233 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:24:00 Win2K-f 196.2.194.71 (MENANET.NET):
AFRINIC,
CAIRO, AL QAHIRAH, EG. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:29:00 Win2K-f 24.73.239.19 (RR.COM):
ROAD RUNNER HOLDCO LLC,
ORLANDO, FLORIDA, US. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:33:00 Win2K-f 79.118.146.22 (RDSNET.RO):
RDS,
BUCHAREST, BUCURESTI, RO. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:408 hits: 11-25 to 01-13] none[3] none:none
Armadillo| none trace

01:37:00 Win2K-f 79.118.146.22 (RDSNET.RO):
RDS,
BUCHAREST, BUCURESTI, RO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:408 hits: 11-25 to 01-13] none[3] none:none
Armadillo| none trace

T:01:48:00 Win2K-f 114.44.235.229 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:52:00 Win2K-f 190.136.100.159 (NET.AR):
APOLO -GOLD-TELECOM-PER,
AR. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:00:00 Win2K-f 59.104.73.233 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:01:00 Win2K-f 66.101.58.50 (SPROCKETDATA.COM):
SPROCKET DATA,
GEORGETOWN, TEXAS, US. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:485 hits: 11-26 to 01-13] none[3] none:none
Armadillo| none trace

T:02:07:00 Win2K-f 83.97.150.19 (CM-83-97-128-10.TELECABLE.ES):
TELECABLE,
GIJON, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 bd35d4d98f
[Firefox:57 hits: 11-27 to 01-11] none[3] none:none
Armadillo| none trace

02:12:00 Win2K-f 170.51.105.66 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:485 hits: 11-26 to 01-13] none[3] none:none
Armadillo| none trace

02:13:00 Win2K-f 83.97.150.19 (CM-83-97-128-10.TELECABLE.ES):
TELECABLE,
GIJON, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 bd35d4d98f
[Firefox:57 hits: 11-27 to 01-11] none[3] none:none
Armadillo| none trace

T:02:15:00 Win2K-f 207.91.150.40 (NSTCI.NET):
NETWORKS ON-LINE,
KEMAH, TEXAS, US. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

02:18:00 Win2K-f 114.44.235.229 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:24:00 Win2K-f 61.228.59.81 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:29:00 Win2K-f 200.62.195.94 (TELMEX.COM.PE):
MENDOZA HUAMANI JESUS GUILLERMO,
LIMA, LIMA, PE. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:33:00 Win2K-f 200.115.173.11 (OPTYNEX.COM):
OPTYNEX TELECOM,
PA. 200.115.173.11:3088 200.115.173.11:1551 200.115.173.11:3761 200.115.173.11:2151 200.115.173.11:4347 200.115.173.11:2731 200.115.173.11:1105 200.115.173.11:3316 US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 1.3
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

02:35:00 Win2K-f 200.49.16.247 (-):
PLUG AND PLAY NET S.A,
LIMA, LIMA, PE. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1561 hits: 11-24 to 01-13] none[3] none:none
UPX| none trace

T:02:38:00 Win2K-f 200.49.16.247 (-):
PLUG AND PLAY NET S.A,
LIMA, LIMA, PE. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1561 hits: 11-24 to 01-13] none[3] none:none
UPX| none trace

T:02:48:00 Win2K-f 170.51.105.66 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:485 hits: 11-26 to 01-13] none[3] none:none
Armadillo| none trace

02:50:00 Win2K-f 85.113.128.142 (-):
INTERCON JSC NETWORK,
RU. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:51:00 Win2K-f 61.228.59.81 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:55:00 Win2K-f 202.78.230.62 (QTSC.COM.VN):
QUANG TRUNG SOFTWARE CITY (QTSC),
HO CHI MINH CITY, HO CHI MINH, VN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:57:00 Win2K-f 122.2.212.251 (PLDT.NET):
IPG,
PH. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:05:00 Win2K-f 85.113.128.142 (-):
INTERCON JSC NETWORK,
RU. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:21:00 Win2K-f 59.63.83.64 (163DATA.COM.CN):
CHINANET JIANGXI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:24:00 Win2K-f 222.60.19.91 (HERBALQC.COM):
CHINA RAILWAY TELECOMMUNICATIONS CENTER,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:24:00 Win2K-f 67.90.198.78 (ALGX.NET):
XO COMMUNICATIONS,
US. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:29:00 Win2K-f 59.63.83.64 (163DATA.COM.CN):
CHINANET JIANGXI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:32:00 Win2K-f 211.76.38.94 (UBBN.NET):
UNION CABLE TV CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:48:00 Win2K-f 125.5.2.59 (INFO.COM.PH):
INFOCOM TECHNOLOGIES INC,
PH. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:710 hits: 11-21 to 01-13] none[3] none:none
StarForce| none trace

T:03:51:00 Win2K-f 59.104.71.77 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:01:00 Win2K-f 89.178.80.173 (CORBINA.RU):
BROADBAND CUSTOMERS IN MOSCOW,
MOSCOW, MOSKVA, RU. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:09:00 Win2K-f 201.88.203.34 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

T:04:12:00 Win2K-f 220.136.21.114 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:13:00 Win2K-f 59.104.73.233 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:21:00 Win2K-f 203.70.191.108 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

04:30:00 Win2K-f 94.50.13.218 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:710 hits: 11-21 to 01-13] none[3] none:none
StarForce| none trace

T:04:33:00 Win2K-f 222.246.59.141 (-):
CHINANET-HN CHANGDE NODE NETWORK,
CHANGDE, HUNAN, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:33:00 Win2K-f 203.70.191.108 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 34 of 39 94822ae8c9
NEW none[3] none:none
UPX| none trace

04:34:00 Win2K-f 74.126.12.190 (123.NET):
INTERNET 123 INC,
NEW BALTIMORE, MICHIGAN, US. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:710 hits: 11-21 to 01-13] none[3] none:none
StarForce| none trace

T:04:48:00 Win2K-f 201.76.190.236 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1561 hits: 11-24 to 01-13] none[3] none:none
UPX| none trace

T:04:55:00 Win2K-f 190.48.7.243 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1561 hits: 11-24 to 01-13] none[3] none:none
UPX| none trace

T:04:55:00 Win2K-f 186.9.159.175 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

T:05:01:00 Win2K-f 59.96.99.80 (10/24.BSNL.IN):
NIB (NATIONAL INTERNET BACKBONE),
HYDERABAD, ANDHRA PRADESH, IN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:01:00 Win2K-f 59.126.236.209 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:04:00 Win2K-f 218.5.64.70 (-):
XIAMEN INTERNATIONAL PACKING CUPBOARD QU,
XIAMEN, FUJIAN, CN. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:923 hits: 11-30 to 01-13] none[3] none:none
StarForce| none trace

05:06:00 Win2K-f 189.61.20.168 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:20:00 Win2K-f 125.5.2.59 (INFO.COM.PH):
INFOCOM TECHNOLOGIES INC,
PH. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:710 hits: 11-21 to 01-13] none[3] none:none
StarForce| none trace

05:20:00 Win2K-f 81.103.109.4 (NTL.COM):
NTL INFRASTRUCTURE - LEICESTER,
BASINGSTOKE, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:28:00 Win2K-f 87.97.228.123 (GGBIT.NET):
EKK CATV PLOVDIV,
PLOVDIV, PLOVDIV, BG. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:192 hits: 12-19 to 01-12] none[3] none:none
MEW| none trace

05:30:00 Win2K-f 92.124.174.191 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:33:00 Win2K-f 190.48.7.243 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1561 hits: 11-24 to 01-13] none[3] none:none
UPX| none trace

T:05:34:00 Win2K-f 190.18.57.9 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:36:00 Win2K-f 89.178.80.173 (CORBINA.RU):
BROADBAND CUSTOMERS IN MOSCOW,
MOSCOW, MOSKVA, RU. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:37:00 Win2K-f 92.124.174.191 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:39:00 Win2K-f 218.19.151.136 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:46:00 Win2K-f 201.221.113.250 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:710 hits: 11-21 to 01-13] none[3] none:none
StarForce| none trace

05:50:00 Win2K-f 58.16.233.46 (-):
CNC GROUP GUIZHOU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:51:00 Win2K-f 66.114.111.50 (-):
AMAZING-OUTDOORS,
PROVO, UTAH, US. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:825 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

05:54:00 Win2K-f 66.114.111.50 (-):
AMAZING-OUTDOORS,
PROVO, UTAH, US. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:825 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

T:05:55:00 Win2K-f 94.50.13.218 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:710 hits: 11-21 to 01-13] none[3] none:none
StarForce| none trace

06:04:00 Win2K-f 94.76.213.74 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:06:00 Win2K-f 59.113.157.214 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:10:00 Win2K-f 203.67.210.88 (SEED.NET.TW):
DIGITAL UNITED INC,
T'AI-CHUNG, T'AI-WAN, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:19:00 Win2K-f 59.51.188.194 (AGENT1.GZ.CN):
CHINANET GUIZHOU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:21:00 Win2K-f 202.101.6.20 (LUYIEX.COM.CN):
SHANGHAI SONGJIANG TELECOM BUREAU,
SHANGHAI, SHANGHAI, CN. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:21:00 Win2K-f 201.76.190.236 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1561 hits: 11-24 to 01-13] none[3] none:none
UPX| none trace

T:06:24:00 Win2K-f 221.126.12.11 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
KOWLOON, HONG KONG (SAR), HK. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:27:00 Win2K-f 201.221.113.250 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:710 hits: 11-21 to 01-13] none[3] none:none
StarForce| none trace

T:06:31:00 Win2K-f 94.76.213.74 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:48:00 Win2K-f 125.94.218.66 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:01:00 Win2K-f 58.16.233.46 (-):
CNC GROUP GUIZHOU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:09:00 Win2K-f 190.50.176.118 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:22:00 Win2K-f 212.62.123.163 (-):
ICCSOLUTIONS,
SA. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:27:00 Win2K-f 114.47.6.84 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:35:00 Win2K-f 59.51.241.41 (AGENT1.GZ.CN):
CHINANET GUIZHOU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

07:40:00 Win2K-f 125.83.6.203 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

07:41:00 Win2K-f 117.39.37.114 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:44:00 Win2K-f 189.61.20.168 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:48:00 Win2K-f 59.51.241.41 (AGENT1.GZ.CN):
CHINANET GUIZHOU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

T:07:49:00 Win2K-f 76.10.8.160 (DMISINETWORKS.NET):
DISTRIBUTED MANAGEMENT INFORMATION SYSTEMS INC. (DMISI),
US. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:923 hits: 11-30 to 01-13] none[3] none:none
StarForce| none trace

T:07:56:00 Win2K-f 82.65.73.43 (PROXAD.NET):
PROXAD / FREE SAS,
VERSAILLES, ILE-DE-FRANCE, FR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:00:00 Win2K-f 201.234.9.56 (COM.AR):
VER TV S.A,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:145 hits: 11-29 to 01-12] none[3] none:none
UPX| none trace

T:08:03:00 Win2K-f 93.97.20.68 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

08:05:00 Win2K-f 94.194.200.65 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:12:00 Win2K-f 125.232.75.36 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:19:00 Win2K-f 221.126.12.11 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
KOWLOON, HONG KONG (SAR), HK. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:21:00 Win2K-f 190.24.33.0 (ETB.NET.CO):
ETB - COLOMBIA,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:25:00 Win2K-f 201.234.9.56 (COM.AR):
VER TV S.A,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:145 hits: 11-29 to 01-12] none[3] none:none
UPX| none trace

08:27:00 Win2K-f 190.24.33.0 (ETB.NET.CO):
ETB - COLOMBIA,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:29:00 Win2K-f 117.39.37.114 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:30:00 Win2K-f 85.30.180.206 (SYDSKANE.NU):
DSL CUSTOMERS (OST),
SE. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:32:00 Win2K-f 94.194.200.65 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:47:00 Win2K-f 84.123.45.51 (ONO.COM):
CABLEUROPA - ONO,
ES. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:49:00 Win2K-f 190.48.20.196 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:408 hits: 11-25 to 01-13] none[3] none:none
Armadillo| none trace

08:49:00 Win2K-f 124.104.241.96 (PLDT.NET):
BATC7300I01_CONSUMER,
PH. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:52:00 Win2K-f 122.160.74.118 (122.AIRTELBROADBAND.IN):
ABTS-DSL-8972-DEL,
DELHI, DELHI, IN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:55:00 Win2K-f 24.75.15.22 (-):
SPS TEMPORARIES,
BUFFALO, NEW YORK, US. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:56:00 Win2K-f 201.218.106.38 (CABLEONDA.NET):
CABLE ONDA,
PANAMA CITY, PANAMA, PA. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:08:00 Win2K-f 114.47.234.131 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:10:00 Win2K-f 96.50.148.106 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

T:09:11:00 Win2K-f 114.47.234.131 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:14:00 Win2K-f 78.54.32.25 (ALICEDSL.DE):
HANSENET TELEKOMMUNIKATION GMBH,
HAMBURG, HAMBURG, DE. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:16:00 Win2K-f 88.53.101.5 (BUSINESS.TELECOMITALIA.IT):
GIUSEPPE BOTTIGLIERI SHIPPING COMPANY SPA,
NAPOLI, CAMPANIA, IT. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:24:00 Win2K-f 87.97.248.156 (GGBIT.NET):
EKK CATV PLOVDIV,
PLOVDIV, PLOVDIV, BG. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:485 hits: 11-26 to 01-13] none[3] none:none
Armadillo| none trace

T:09:24:00 Win2K-f 84.75.190.126 (HISPEED.CH):
CABLECOMMAIN-NET,
ZURICH, ZURICH, CH. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:408 hits: 11-25 to 01-13] none[3] none:none
Armadillo| none trace

09:29:00 Win2K-f 190.48.20.196 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:09:30:00 Win2K-f 123.195.38.181 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:40:00 Win2K-f 190.3.75.107 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1561 hits: 11-24 to 01-13] none[3] none:none
UPX| none trace

09:44:00 Win2K-f 84.75.190.126 (HISPEED.CH):
CABLECOMMAIN-NET,
ZURICH, ZURICH, CH. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:408 hits: 11-25 to 01-13] none[3] none:none
Armadillo| none trace

09:56:00 Win2K-f 123.195.38.181 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:02:00 Win2K-f 200.112.153.206 (NET.AR):
BROADBANDTECH S. A,
AR. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:923 hits: 11-30 to 01-13] none[3] none:none
StarForce| none trace

T:10:03:00 Win2K-f 38.117.88.35 (COGENTCO.COM):
PERFORMANCE SYSTEMS INTERNATIONAL INC,
US. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1561 hits: 11-24 to 01-13] none[3] none:none
UPX| none trace

10:12:00 Win2K-f 208.53.158.184 (ON-DEMAND-TECH.COM):
FDC SERVERS.NET LLC,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:208.53.158.184:5476
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:12:00 Win2K-f 93.97.20.68 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

T:10:27:00 Win2K-f 91.66.77.231 (SUPERKABEL.DE):
KABEL DEUTSCHLAND BREITBAND SERVICE GMBH,
DE. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:31:00 Win2K-f 88.53.101.5 (BUSINESS.TELECOMITALIA.IT):
GIUSEPPE BOTTIGLIERI SHIPPING COMPANY SPA,
NAPOLI, CAMPANIA, IT. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:36:00 Win2K-f 114.47.6.84 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:37:00 Win2K-f 84.17.4.114 (LANCK.NET):
ONYX LTD,
RU. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:43:00 Win2K-f 88.134.181.43 (SUPERKABEL.DE):
KABEL-DEUTSCHLAND-CUSTOMER-SERVICES,
DE. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:99 hits: 11-23 to 01-11] none[3] none:none
StarForce| none trace

10:56:00 Win2K-f 38.117.88.35 (COGENTCO.COM):
PERFORMANCE SYSTEMS INTERNATIONAL INC,
US. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1561 hits: 11-24 to 01-13] none[3] none:none
UPX| none trace

T:11:00:00 Win2K-f 190.48.220.54 (COM.AR):
TELEFONICA DE ARGENTINA,
CIPOLLETTI, NEUQUEN, AR. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:408 hits: 11-25 to 01-13] none[3] none:none
Armadillo| none trace

11:01:00 Win2K-f 84.123.45.51 (ONO.COM):
CABLEUROPA - ONO,
ES. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:09:00 Win2K-f 83.102.246.5 (-):
CORBINA-ECONLABS-BLK,
RU. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 7 of 37 bd35d4d98f
[Firefox:57 hits: 11-27 to 01-11] none[3] none:none
Armadillo| none trace

T:11:11:00 Win2K-f 212.122.90.12 (PIPELIFE.LT):
SKAINETA LTD,
VILNIUS, VILNIAUS APSKRITIS, LT. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

11:24:00 Win2K-f 190.220.113.117 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:30:00 Win2K-f 190.68.191.138 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
CO. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:31:00 Win2K-f 190.0.65.169 (ASTER.COM.DO):
ASTER,
SANTO DOMINGO, DISTRITO NACIONAL, DO. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:36:00 Win2K-f 24.39.189.27 (RR.COM):
ROAD RUNNER HOLDCO LLC,
PITTSFIELD, MASSACHUSETTS, US. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:37:00 Win2K-f 190.97.151.162 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1561 hits: 11-24 to 01-13] none[3] none:none
UPX| none trace

T:11:46:00 Win2K-f 221.126.12.164 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
KOWLOON, HONG KONG (SAR), HK. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:49:00 Win2K-f 66.90.104.180 (MM-NEWS.NET):
FDC SERVERS.NET LLC,
RALEIGH, NORTH CAROLINA, US. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:49:00 Win2K-f 94.52.69.52 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:54:00 Win2K-f 203.118.40.36 (-):
DRIUM PTE LTD,
SINGAPORE, SINGAPORE, SG. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:55:00 Win2K-f 190.54.241.56 (CHILESAT.NET):
TELMEX SERVICIOS EMPRESARIALES S.A,
CL. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:145 hits: 11-29 to 01-12] none[3] none:none
UPX| none trace

11:58:00 Win2K-f 190.54.241.56 (CHILESAT.NET):
TELMEX SERVICIOS EMPRESARIALES S.A,
CL. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:145 hits: 11-29 to 01-12] none[3] none:none
UPX| none trace

T:12:09:00 Win2K-f 64.32.69.126 (CODETEL.NET.DO):
VERIZON DOMINICANA,
DO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:15:00 Win2K-f 190.105.21.155 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

12:16:00 Win2K-f 62.90.213.10 (BARAK.NET.IL):
ABU AYOUB ROZLIN,
TEL AVIV, TEL AVIV, IL. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:145 hits: 11-29 to 01-12] none[3] none:none
UPX| none trace

T:12:16:00 Win2K-f 59.112.238.23 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:21:00 Win2K-f 59.124.164.81 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
TW:59.124.164.81:9301
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:33:00 Win2K-f 186.0.13.138 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:38:00 Win2K-f 84.121.46.214 (ONO.COM):
CABLEUROPA - ONO,
ALICANTE, VALENCIA, ES. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:923 hits: 11-30 to 01-13] none[3] none:none
StarForce| none trace

T:12:44:00 Win2K-f 190.0.78.216 (ASTER.COM.DO):
ASTER,
SANTO DOMINGO, DISTRITO NACIONAL, DO. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

T:12:49:00 Win2K-f 94.99.72.228 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:52:00 Win2K-f 210.107.69.50 (-):
BORANET-NET,
KATHMANDU, BAGMATI, NP. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:55:00 Win2K-f 190.136.108.46 (NET.AR):
APOLO -GOLD-TELECOM-PER,
CORDOBA, CORDOBA, AR. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:12:58:00 Win2K-f 96.248.142.19 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:05:00 Win2K-f 124.8.131.107 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:07:00 Win2K-f 190.49.41.111 (COM.AR):
TELEFONICA DE ARGENTINA,
CIPOLLETTI, NEUQUEN, AR. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

13:08:00 Win2K-f 71.165.166.142 (VERIZON.NET):
VERIZON INTERNET SERVICES INC,
LOS ANGELES, CALIFORNIA, US. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:14:00 WinXP 96.11.199.25 (-):
. n/a RU:citi-bank.ru
RU:parex-bank.ru
RU:89.208.35.28:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 26 of 28 7d99b0e910
[Firefox:1037 hits: 05-01 to 01-11] none[0] none:none
PolyEnE| lines=68 trace

13:15:00 Win2K-f 190.9.71.198 (UNIWEB.NET.CO):
UNITEL S.A E.S.P,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:23:00 Win2K-f 190.9.71.198 (UNIWEB.NET.CO):
UNITEL S.A E.S.P,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:25:00 Win2K-f 116.125.56.5 (-):
HANARO TELECOM,
SEOUL, KYONGGI-DO, KR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:31:00 Win2K-f 190.128.1.226 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:33:00 Win2K-f 121.232.61.211 (163DATA.COM.CN):
CHINANET JIANGSU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:36:00 Win2K-f 81.102.57.110 (NTL.COM):
NTL INFRASTRUCTURE - CARDIFF,
WELWYN GARDEN CITY, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1561 hits: 11-24 to 01-13] none[3] none:none
UPX| none trace

13:46:00 Win2K-f 151.13.28.71 (46-151.NET24.IT):
INFOSTRADA-CUSTOMERS,
IT. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:47:00 Win2K-f 71.165.166.142 (VERIZON.NET):
VERIZON INTERNET SERVICES INC,
LOS ANGELES, CALIFORNIA, US. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:48:00 Win2K-f 114.45.101.200 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:55:00 Win2K-f 78.40.55.66 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:04:00 Win2K-f 189.38.214.117 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1561 hits: 11-24 to 01-13] none[3] none:none
UPX| none trace

T:14:16:00 Win2K-f 201.255.75.99 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:16:00 Win2K-f 200.99.202.66 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:19:00 Win2K-f 190.51.36.142 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:22:00 Win2K-f 140.113.186.90 (NCTU.EDU.TW):
TAIWAN ACADEMIC NETWORK,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:22:00 Win2K-f 210.55.77.49 (QUICKER.NET.NZ):
WORLD-NET LIMITED,
AUCKLAND, AUCKLAND, NZ. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:22:00 Win2K-f 140.113.185.236 (NCTU.EDU.TW):
TAIWAN ACADEMIC NETWORK,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:32:00 Win2K-f 116.125.56.5 (-):
HANARO TELECOM,
SEOUL, KYONGGI-DO, KR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:33:00 Win2K-f 190.51.20.189 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

14:37:00 Win2K-f 213.147.34.212 (-):
SUBNETWORK FOR VM2676-RIPE,
RU. (100Mbps) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:38:00 Win2K-f 82.249.183.107 (PROXAD.NET):
PROXAD / FREE SAS,
FOURMIES, NORD-PAS-DE-CALAIS, FR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:45:00 Win2K-f 190.51.36.142 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:49:00 Win2K-f 84.3.32.182 (T-ONLINE.HU):
HUNGARIAN TELECOM,
SZEGED, CSONGRAD, HU. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:50:00 Win2K-f 211.75.215.231 (KEYWAY.COM.TW):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:53:00 Win2K-f 218.163.146.174 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:04:00 Win2K-f 200.99.202.66 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:07:00 Win2K-f 190.69.79.178 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
CO. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

15:09:00 Win2K-f 190.220.8.20 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
190.220.8.20:1299
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:16:00 Win2K-f 114.45.101.200 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:19:00 Win2K-f 190.49.199.29 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:29:00 Win2K-f 200.68.94.242 (COM.AR):
NSS S.A,
AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:34:00 Win2K-f 186.12.120.227 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:485 hits: 11-26 to 01-13] none[3] none:none
Armadillo| none trace

15:34:00 Win2K-f 218.163.146.174 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:45:00 Win2K-f 190.220.87.119 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:46:00 Win2K-f 170.51.179.9 (COM.AR):
CTI COMPANIA DE TELEFONAS DEL INTERIOR S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1561 hits: 11-24 to 01-13] none[3] none:none
UPX| none trace

T:15:50:00 Win2K-f 124.8.129.234 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:07:00 Win2K-f 186.12.120.227 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:485 hits: 11-26 to 01-13] none[3] none:none
Armadillo| none trace

T:16:07:00 Win2K-f 190.0.166.76 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:16:27:00 Win2K-f 213.147.34.212 (-):
SUBNETWORK FOR VM2676-RIPE,
RU. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:27:00 Win2K-f 94.76.213.216 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:28:00 Win2K-f 123.97.59.32 (HZ.ZJ.CN):
CHINANET ZHEJIANG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:408 hits: 11-25 to 01-13] none[3] none:none
Armadillo| none trace

16:29:00 Win2K-f 94.76.213.216 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:36:00 Win2K-f 134.175.162.10 (-):
AUTOMATION INTELLIGENCE HEADQUARTERS,
LAKE WORTH, FLORIDA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:43:00 Win2K-f 123.97.59.32 (HZ.ZJ.CN):
CHINANET ZHEJIANG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:408 hits: 11-25 to 01-13] none[3] none:none
Armadillo| none trace

16:45:00 Win2K-f 190.16.9.173 (COM.AR):
CABLEVISION S.A,
BUENOS AIRES, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

T:16:54:00 Win2K-f 189.97.19.123 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:485 hits: 11-26 to 01-13] none[3] none:none
Armadillo| none trace

16:56:00 Win2K-f 190.105.50.7 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 37 17cf6a5252
[Firefox:11 hits: 12-03 to 01-11] none[3] none:none
UPX| none trace

16:57:00 Win2K-f 151.13.28.71 (46-151.NET24.IT):
INFOSTRADA-CUSTOMERS,
IT. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:58:00 Win2K-f 96.52.240.165 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:05:00 Win2K-f 61.47.61.211 (ICSPACE.NET):
PACIFIC INTERNET THAILAND,
TH. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:07:00 Win2K-f 190.16.9.173 (COM.AR):
CABLEVISION S.A,
BUENOS AIRES, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

17:08:00 Win2K-f 190.226.97.61 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1561 hits: 11-24 to 01-13] none[3] none:none
UPX| none trace

17:11:00 Win2K-f 190.25.118.50 (ETB.NET.CO):
ETB - COLOMBIA,
CO. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1561 hits: 11-24 to 01-13] none[3] none:none
UPX| none trace

T:17:14:00 Win2K-f 190.208.71.199 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:21:00 Win2K-f 99.49.207.1 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:27:00 Win2K-f 192.116.195.56 (INTER.NET.IL):
SURF & CALL SOLUTIONS,
TEL AVIV, TEL AVIV, IL. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:30:00 Win2K-f 116.0.121.68 (IPNAMES.NET):
APPLIED INFORMATION MANAGEMENT SERVICES,
MY. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:35:00 Win2K-f 90.150.134.78 (-):
OJSC URALSVYAZINFORM EKATERINBURG DEPARTMENT,
EKATERINBURG, SVERDLOVSKAYA OBLAST', RU. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:39:00 Win2K-f 222.181.51.65 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:40:00 Win2K-f 66.109.29.254 (GALAXYVISIONS.COM):
GALAXYVISIONS INC,
ALBANY, NEW YORK, US. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:50:00 Win2K-f 94.28.206.37 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:50:00 Win2K-f 61.47.61.211 (ICSPACE.NET):
PACIFIC INTERNET THAILAND,
TH. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:01:00 Win2K-f 201.218.120.96 (CABLEONDA.NET):
CABLE ONDA,
PANAMA CITY, PANAMA, PA. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:10:00 Win2K-f 66.109.29.254 (GALAXYVISIONS.COM):
GALAXYVISIONS INC,
ALBANY, NEW YORK, US. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:12:00 Win2K-f 201.218.120.96 (CABLEONDA.NET):
CABLE ONDA,
PANAMA CITY, PANAMA, PA. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:25:00 Win2K-f 77.67.122.19 (AM6.NET):
AM6 NETWORKS INC,
LOS ANGELES, CALIFORNIA, US. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:29:00 Win2K-f 192.116.195.56 (INTER.NET.IL):
SURF & CALL SOLUTIONS,
TEL AVIV, TEL AVIV, IL. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:38:00 Win2K-f 190.3.89.176 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:43:00 Win2K-f 186.9.156.119 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:485 hits: 11-26 to 01-13] none[3] none:none
Armadillo| none trace

T:18:48:00 Win2K-f 202.43.190.72 (-):
CEPATNET,
JAKARTA, JAKARTA RAYA (DJAKARTA RAYA), ID. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:52:00 Win2K-f 201.172.107.177 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:923 hits: 11-30 to 01-13] none[3] none:none
StarForce| none trace

18:53:00 Win2K-f 190.0.166.76 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

18:56:00 Win2K-f 222.181.51.65 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:58:00 Win2K-f 87.120.49.210 (-):
SKATTV-NET-NETERRA,
BURGAS, BURGAS, BG. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:485 hits: 11-26 to 01-13] none[3] none:none
Armadillo| none trace

T:19:02:00 Win2K-f 190.50.178.149 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:485 hits: 11-26 to 01-13] none[3] none:none
Armadillo| none trace

T:19:03:00 Win2K-f 190.49.0.254 (COM.AR):
TELEFONICA DE ARGENTINA,
CIPOLLETTI, NEUQUEN, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:485 hits: 11-26 to 01-13] none[3] none:none
Armadillo| none trace

19:03:00 WinXP 24.109.67.99 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
EDMONTON, ALBERTA, CA. (DSL) n/a HK:proxim.ircgalaxy.pl
RU:citi-bank.ru
HK:58.65.232.35:65520
RU:89.208.35.28:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 35 of 38 d1aff693ba
NEW 2323040eef [0] ASM:Graph
PolyEnE| lines=129 trace

T:19:09:00 Win2K-f 190.31.123.146 (NET.AR):
APOLO -GOLD-TELECOM-PER,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:825 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

19:09:00 Win2K-f 208.78.245.52 (OUR-WEBSITES.COM):
SIMPLI HOSTING INC,
SAN JOSE, CALIFORNIA, US. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:20:00 Win2K-f 98.101.26.2 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:22:00 Win2K-f 190.31.123.146 (NET.AR):
APOLO -GOLD-TELECOM-PER,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:825 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

T:19:33:00 Win2K-f 24.67.113.114 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
CALGARY, ALBERTA, CA. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:485 hits: 11-26 to 01-13] none[3] none:none
Armadillo| none trace

T:19:34:00 Win2K-f 190.55.158.129 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1561 hits: 11-24 to 01-13] none[3] none:none
UPX| none trace

T:19:38:00 Win2K-f 211.75.194.102 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:192 hits: 12-19 to 01-12] none[3] none:none
MEW| none trace

19:38:00 Win2K-f 201.172.107.177 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:923 hits: 11-30 to 01-13] none[3] none:none
StarForce| none trace

19:44:00 Win2K-f 59.113.76.190 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. (DIAL) n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:50:00 Win2K-f 92.48.68.9 (IKBCC.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:53:00 Win2K-f 202.43.190.72 (-):
CEPATNET,
JAKARTA, JAKARTA RAYA (DJAKARTA RAYA), ID. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:05:00 Win2K-f 61.56.170.129 (UBBN.NET):
UNION CABLE TV CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
TW:61.56.170.129:9913
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:06:00 Win2K-f 59.114.11.84 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:09:00 Win2K-f 122.120.44.158 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:710 hits: 11-21 to 01-13] none[3] none:none
StarForce| none trace

T:20:20:00 Win2K-f 61.123.86.163 (ODN.AD.JP):
OPEN DATA NETWORK(JAPAN TELECOM CO. LTD.),
MISAWA, AOMORI, JP. (DIAL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:21:00 Win2K-f 211.75.194.102 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:192 hits: 12-19 to 01-12] none[3] none:none
MEW| none trace

T:20:21:00 Win2K-f 122.123.192.185 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:23:00 Win2K-f 83.103.78.204 (IP.FASTWEBNET.IT):
ULISSE TECNOLOGIE S.R.L. PUBLIC SUBNET,
MILANO, LOMBARDIA, IT. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:31:00 Win2K-f 125.114.133.172 (163DATA.COM.CN):
CHINANET-ZJ NINGBO NODE NETWORK,
NINGBO, ZHEJIANG, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:34:00 Win2K-f 92.48.68.9 (IKBCC.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:36:00 Win2K-f 122.121.1.199 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:40:00 Win2K-f 200.112.152.190 (NET.AR):
BROADBANDTECH S. A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:46:00 Win2K-f 71.111.157.33 (VERIZON.NET):
VERIZON INTERNET SERVICES INC,
BEAVERTON, OREGON, US. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:192 hits: 12-19 to 01-12] none[3] none:none
MEW| none trace

20:48:00 Win2K-f 190.0.129.146 (ANTELDATA.NET.UY):
ADMINISTRACION NACIONAL DE TELECOMUNICACIONES,
MONTEVIDEO, MONTEVIDEO, UY. (DIAL) n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:48:00 Win2K-f 114.44.141.210 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:51:00 Win2K-f 151.11.34.101 (BUSINESS.TELECOMITALIA.IT):
PROVIDER LOCAL REGISTRY,
IT. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:56:00 Win2K-f 219.91.78.93 (APOL.COM.TW):
ASIA PACIFIC ON-LINE SERVICES INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:57:00 Win2K-f 116.24.4.130 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:59:00 Win2K-f 116.24.4.130 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:59:00 Win2K-f 62.106.104.248 (NET.RU):
AIST,
RU. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:07:00 Win2K-f 190.246.190.46 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

T:21:16:00 Win2K-f 87.120.49.210 (-):
SKATTV-NET-NETERRA,
BURGAS, BURGAS, BG. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:485 hits: 11-26 to 01-13] none[3] none:none
Armadillo| none trace

21:17:00 Win2K-f 84.49.5.46 (NEXTGENTEL.COM):
NGT-58614-20060427,
NO. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

21:20:00 Win2K-f 77.67.122.19 (AM6.NET):
AM6 NETWORKS INC,
LOS ANGELES, CALIFORNIA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
NL:77.67.122.19:8284 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:21:00 Win2K-f 84.49.5.46 (NEXTGENTEL.COM):
NGT-58614-20060427,
NO. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

21:26:00 Win2K-f 117.23.89.23 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:21:27:00 Win2K-f 96.48.173.142 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:27:00 Win2K-f 219.91.78.93 (APOL.COM.TW):
ASIA PACIFIC ON-LINE SERVICES INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:34:00 Win2K-f 60.49.98.246 (TM.NET.MY):
TELEKOM MALAYSIA BERHAD,
KUALA LUMPUR, WILAYAH PERSEKUTUAN, MY. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:485 hits: 11-26 to 01-13] none[3] none:none
Armadillo| none trace

T:21:36:00 Win2K-f 64.76.79.149 (-):
IMPSAT CORP,
LIMA, LIMA, PE. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:39:00 Win2K-f 220.130.226.200 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:923 hits: 11-30 to 01-13] none[3] none:none
StarForce| none trace

T:21:44:00 Win2K-f 203.70.230.124 (COREPOWER.COM.TW):
DIGITAL UNITED INC,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:49:00 Win2K-f 62.106.104.248 (NET.RU):
AIST,
RU. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:54:00 Win2K-f 77.20.233.134 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:408 hits: 11-25 to 01-13] none[3] none:none
Armadillo| none trace

21:54:00 Win2K-f 125.85.83.38 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:825 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

T:21:54:00 Win2K-f 151.11.34.101 (BUSINESS.TELECOMITALIA.IT):
PROVIDER LOCAL REGISTRY,
IT. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:04:00 Win2K-f 77.20.233.134 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:408 hits: 11-25 to 01-13] none[3] none:none
Armadillo| none trace

T:22:07:00 Win2K-f 61.31.133.17 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:08:00 Win2K-f 220.130.226.200 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:923 hits: 11-30 to 01-13] none[3] none:none
StarForce| none trace

22:13:00 Win2K-f 124.8.4.212 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:15:00 Win2K-f 59.96.177.111 (10/24.BSNL.IN):
NIB (NATIONAL INTERNET BACKBONE),
DELHI, DELHI, IN. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

22:20:00 Win2K-f 190.10.64.69 (HOST1-RACSA.CO.CR):
ADN SOLUTIONS S.A. (ROKRU INT.),
CR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1561 hits: 11-24 to 01-13] none[3] none:none
UPX| none trace

22:21:00 Win2K-f 59.116.130.159 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:23:00 Win2K-f 74.63.224.55 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:24:00 Win2K-f 118.232.51.221 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:25:00 Win2K-f 88.2.179.84 (RIMA-TDE.NET):
TELEFONICA DE ESPANA,
VALENCIA, VALENCIA, ES. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:28:00 Win2K-f 203.76.182.222 (EXATT.NET):
INTERNET SERVICE PROVIDER,
MUMBAI, MAHARASHTRA, IN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:40:00 Win2K-f 122.121.1.199 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:42:00 Win2K-f 59.104.18.124 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:56:00 Win2K-f 59.104.58.210 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:02:00 Win2K-f 59.104.58.210 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:11:00 Win2K-f 82.99.254.34 (-):
PARSONLINE CORP,
TEHRAN, TEHRAN, IR. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1787 hits: 11-22 to 01-13] none[3] none:none
UPX| none trace

T:23:16:00 Win2K-f 71.96.140.22 (VERIZON.NET):
VERIZON INTERNET SERVICES INC,
PLANO, TEXAS, US. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:19:00 Win2K-f 59.96.177.111 (10/24.BSNL.IN):
NIB (NATIONAL INTERNET BACKBONE),
DELHI, DELHI, IN. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

23:26:00 Win2K-f 125.82.17.25 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:34:00 Win2K-f 59.125.63.108 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:39:00 Win2K-f 121.120.98.59 (MAXIS.NET.MY):
MAXIS COMMUNICATIONS BHD,
MY. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:41:00 Win2K-f 125.82.17.25 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:52:00 Win2K-f 59.41.146.20 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:192 hits: 12-19 to 01-12] none[3] none:none
MEW| none trace

T:23:57:00 Win2K-f 122.52.246.83 (PLDT.NET):
IPG,
PH. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17120 hits: 11-20 to 01-13] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace