Multiperspective Malware Analysis Page

Welcome to the Cyber-TA
SRI's Multiperspective Malware Infection Analysis Page

UNCENSORED PAGE

<Click here: to download BotHunter>

17 January 2009
<prev> <next>

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Daily Summary Files: [DNS Lookups & Failed Connects] [ Attacker IPs ] [C&C Servers] [Binary Digests]
Cumulative Summary Files: [DNS Lookup Log] [Attacker IP Log] [C&C Server Log] [Antivirus Detection] [Code Segment Overlap]
[Behavioral Clusters] [Binary Digest Log]

[See Country Codes ]

Time
Victim
OS
Infection
Source
C&C
Server
DNS Lookups &
Failed Connects Infection
Port
Packet
Trace
Detection
Signatures
Infection
Chatter
BotHunter
Analysis
Behavioral
Cluster
Forensic
Logs
Antivirus
Labels
Packed Malware_Binary Unpacked egg.exe
Unpacked egg.asm
Packer PEID
Data Strings
Syscall Trace

00:10:00 Win2K-f 124.37.33.20 (UCOM.NE.JP):
G-OS0022N,
JP. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:11:00 Win2K-f 122.118.165.149 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:13:00 Win2K-f 118.108.21.58 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:22:00 Win2K-f 81.203.209.188 (ONO.COM):
CABLEUROPA - ONO,
ES. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:25:00 Win2K-f 190.141.246.251 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:34:00 Win2K-f 222.218.0.91 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
GUANGXI, GUANGXI, CN. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:44:00 Win2K-f 124.10.133.157 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:47:00 Win2K-f 200.49.16.60 (-):
PLUG AND PLAY NET S.A,
LIMA, LIMA, PE. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:48:00 Win2K-f 122.121.120.134 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:50:00 Win2K-f 74.63.216.170 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:59:00 Win2K-f 72.2.63.115 (BIGPIPEINC.COM):
BIG PIPE INC,
CONNEAUT, OHIO, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:205 hits: 12-19 to 01-16] none[3] none:none
MEW| none trace

01:03:00 Win2K-f 82.253.225.149 (PROXAD.NET):
PROXAD / FREE SAS,
NICE, PROVENCE-ALPES-COTE D'AZUR, FR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:04:00 Win2K-f 219.86.105.32 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1834 hits: 11-22 to 01-16] none[3] none:none
UPX| none trace

01:06:00 Win2K-f 59.104.252.203 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:08:00 Win2K-f 59.104.250.176 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:17:00 Win2K-f 59.105.12.118 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:26:00 Win2K-f 189.31.140.150 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:33:00 Win2K-f 71.111.87.177 (VERIZON.NET):
VERIZON INTERNET SERVICES INC,
BEAVERTON, OREGON, US. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:36:00 Win2K-f 91.98.31.147 (-):
POOL FOR DEDICATED CUSTOMERS,
TEHRAN, TEHRAN, IR. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:36:00 Win2K-f 151.32.75.54 (14-151.IOL.IT):
ITALIA ONLINE S.P.A,
IT. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:36:00 Win2K-f 114.47.118.220 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:43:00 Win2K-f 122.52.80.218 (PLDT.NET):
IPG,
PH. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:515 hits: 11-26 to 01-16] none[3] none:none
Armadillo| none trace

T:01:46:00 Win2K-f 82.253.225.149 (PROXAD.NET):
PROXAD / FREE SAS,
NICE, PROVENCE-ALPES-COTE D'AZUR, FR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:50:00 Win2K-f 125.232.92.36 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:03:00 Win2K-f 190.141.246.251 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:11:00 Win2K-f 59.104.31.175 (SEED.NET.TW):
DIGITAL UNITED I,
TAOYUAN, T'AI-WAN, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:14:00 Win2K-f 212.117.163.75 (-):
EYENET,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
GB:212.117.163.75:6186
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:737 hits: 11-21 to 01-16] none[3] none:none
StarForce| none trace

02:17:00 Win2K-f 86.16.85.13 (NTL.COM):
NTL INFRASTRUCTURE - LUTON,
FLEET, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1621 hits: 11-24 to 01-16] none[3] none:none
UPX| none trace

T:02:22:00 Win2K-f 200.49.16.60 (-):
PLUG AND PLAY NET S.A,
LIMA, LIMA, PE. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:23:00 Win2K-f 220.136.22.223 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1834 hits: 11-22 to 01-16] none[3] none:none
UPX| none trace

02:30:00 Win2K-f 123.195.80.210 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:32:00 Win2K-f 192.84.105.62 (MATH.HR):
CROATIAN ACADEMIC & RESEARCH NETWORK,
ZAGREB, GRAD ZAGREB, HR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:42:00 Win2K-f 122.126.0.161 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:46:00 Win2K-f 123.195.80.210 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:48:00 Win2K-f 122.125.129.72 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:55:00 Win2K-f 124.13.219.33 (TM.NET.MY):
TELEKOM MALAYSIA BERHAD,
MY. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:58:00 Win2K-f 82.99.254.3 (-):
PARSONLINE CORP,
TEHRAN, TEHRAN, IR. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:58:00 Win2K-f 59.124.93.135 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:09:00 Win2K-f 118.232.2.241 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:12:00 Win2K-f 190.208.108.22 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 6 of 37 13e15a653e
[Firefox:42 hits: 11-21 to 01-11] none[3] none:none
UPX| none trace

03:25:00 Win2K-f 84.75.190.126 (HISPEED.CH):
CABLECOMMAIN-NET,
ZURICH, ZURICH, CH. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:431 hits: 11-25 to 01-16] none[3] none:none
Armadillo| none trace

T:03:34:00 Win2K-f 219.95.186.238 (TM.NET.MY):
ADSL-STREAMYX-TMNET,
JOHOR BAHARU, JOHOR, MY. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:36:00 Win2K-f 218.108.43.164 (-):
YIGAOSHUMA,
CN. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 bd35d4d98f
[Firefox:60 hits: 11-27 to 01-14] none[3] none:none
Armadillo| none trace

03:37:00 Win2K-f 62.90.138.124 (BARAK.NET.IL):
BARAK,
PETAH TIQVA, HAMERKAZ (CENTRAL), IL. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 08f384b76a
[Firefox: 3 hits: 12-03 to 12-29] none[3] none:none
MEW| none trace

T:03:39:00 Win2K-f 222.218.0.91 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
GUANGXI, GUANGXI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:41:00 Win2K-f 222.62.245.218 (HERBALQC.COM):
CHINA RAILWAY TELECOMMUNICATIONS CENTER,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:44:00 Win2K-f 123.195.204.152 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:48:00 Win2K-f 59.114.147.39 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:57:00 Win2K-f 83.97.134.254 (CM-83-97-128-10.TELECABLE.ES):
TELECABLE,
GIJON, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:03:00 Win2K-f 83.97.134.254 (CM-83-97-128-10.TELECABLE.ES):
TELECABLE,
GIJON, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:07:00 Win2K-f 192.107.104.52 (UNANLEON.EDU.NI):
UNIVERSIDAD NACIONAL DE INGENIERIA,
MANAGUA, MANAGUA, NI. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:15:00 Win2K-f 121.254.70.213 (TCOL.COM.TW):
MONAD DIGITNAMIC CORP,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:20:00 Win2K-f 122.122.5.6 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:36:00 Win2K-f 189.21.3.47 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:36:00 Win2K-f 190.132.249.250 (ADINET.COM.UY):
ADMINISTRACION NACIONAL DE TELECOMUNICACIONES,
MONTEVIDEO, MONTEVIDEO, UY. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:36:00 Win2K-f 190.137.163.167 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:39:00 Win2K-f 190.132.249.250 (ADINET.COM.UY):
ADMINISTRACION NACIONAL DE TELECOMUNICACIONES,
MONTEVIDEO, MONTEVIDEO, UY. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:42:00 Win2K-f 86.20.183.50 (NTL.COM):
NTL INFRASTRUCTURE - BIRMINGHAM,
RUGBY, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:961 hits: 11-30 to 01-16] none[3] none:none
StarForce| none trace

T:04:44:00 Win2K-f 59.113.118.32 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:51:00 Win2K-f 201.21.136.122 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:01:00 Win2K-f 190.208.108.22 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:07:00 Win2K-f 118.161.220.240 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:13:00 Win2K-f 84.75.190.126 (HISPEED.CH):
CABLECOMMAIN-NET,
ZURICH, ZURICH, CH. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:431 hits: 11-25 to 01-16] none[3] none:none
Armadillo| none trace

05:14:00 Win2K-f 94.240.199.110 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:20:00 Win2K-f 190.51.242.78 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:961 hits: 11-30 to 01-16] none[3] none:none
StarForce| none trace

T:05:26:00 Win2K-f 190.30.81.229 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. (DIAL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:32:00 Win2K-f 190.55.162.69 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1621 hits: 11-24 to 01-16] none[3] none:none
UPX| none trace

T:05:34:00 Win2K-f 122.127.33.134 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:37:00 Win2K-f 122.125.103.225 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1834 hits: 11-22 to 01-16] none[3] none:none
UPX| none trace

T:05:38:00 Win2K-f 122.124.166.6 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1834 hits: 11-22 to 01-16] none[3] none:none
UPX| none trace

05:40:00 Win2K-f 190.30.81.229 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. (DIAL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:41:00 Win2K-f 219.91.95.227 (APOL.COM.TW):
ASIA PACIFIC ON-LINE SERVICES INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:57:00 Win2K-f 82.254.87.53 (PROXAD.NET):
PROXAD / FREE SAS,
NICE, PROVENCE-ALPES-COTE D'AZUR, FR. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:57:00 Win2K-f 190.137.163.167 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:58:00 Win2K-f 220.136.245.144 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:10:00 Win2K-f 200.73.35.218 (STATIC.IFXNW.CL):
IFX NETWORKS COLOMBIA,
CO. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:14:00 Win2K-f 61.94.230.180 (-):
PT TELKOM INDONESIA,
IR. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:06:16:00 Win2K-f 222.85.35.133 (163DATA.COM.CN):
CHINANET HENAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:961 hits: 11-30 to 01-16] none[3] none:none
StarForce| none trace

06:20:00 Win2K-f 218.160.234.206 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:26:00 Win2K-f 212.104.174.201 (BUSINESS.TELECOMITALIA.IT):
PROVIDER LOCAL REGISTRY,
IT. n/a US:www.maxmind.com
US:www.getmyip.org
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:515 hits: 11-26 to 01-16] none[3] none:none
Armadillo| none trace

06:27:00 Win2K-f 125.94.225.194 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:45:00 Win2K-f 118.161.220.240 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:07:00 Win2K-f 58.240.14.31 (MAIL.NEDER.CN):
CNC GROUP JIANGSU PROVINCE NETWORK,
JIANGSU, JIANGSU, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 37 4f88618d4f
[Firefox:104 hits: 11-29 to 01-16] none[3] none:none
UPX| none trace

T:07:10:00 Win2K-f 213.98.157.148 (RIMA-TDE.NET):
TELEFONICA DE ESPANA SAU (NCC#2000108569),
BILBAO, PAIS VASCO, ES. n/a 445 pcap raw alerts
ruleset http
1 line Argh : 0.3
profile none summary
tarball none none none none none none none

07:14:00 Win2K-f 78.63.234.48 (ZEBRA.LT):
LIETUVOS,
LT. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:23:00 Win2K-f 58.240.14.31 (MAIL.NEDER.CN):
CNC GROUP JIANGSU PROVINCE NETWORK,
JIANGSU, JIANGSU, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 37 4f88618d4f
[Firefox:104 hits: 11-29 to 01-16] none[3] none:none
UPX| none trace

07:23:00 Win2K-f 122.118.13.44 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:27:00 Win2K-f 202.61.52.146 (WOL.NET.PK):
CYBERSOFT TECHNOLOGIES PLC,
KARACHI, SINDH, PK. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 fcb4920986
[Firefox:64 hits: 11-21 to 01-13] none[3] none:none
UPX| none trace

T:07:28:00 Win2K-f 122.118.13.44 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:28:00 Win2K-f 220.136.245.144 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:33:00 Win2K-f 124.8.160.152 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:41:00 Win2K-f 140.113.139.28 (NTU.EDU.TW):
TAIWAN ACADEMIC NETWORK,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:02:00 Win2K-f 210.3.77.243 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:03:00 Win2K-f 77.37.194.60 (NCNET.RU):
NCN-INFRA,
RU. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:11:00 Win2K-f 81.10.42.202 (TEDATA.NET):
TE DATA ADSL POOL,
CAIRO, AL QAHIRAH, EG. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:12:00 Win2K-f 210.3.77.243 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:19:00 Win2K-f 200.108.246.233 (DEDICADO.COM.UY):
TECNOWIND S.A,
MONTEVIDEO, MONTEVIDEO, UY. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:837 hits: 11-22 to 01-16] none[3] none:none
UPX| none trace

T:08:25:00 Win2K-f 190.3.41.88 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:27:00 Win2K-f 200.71.106.215 (TELESAT.COM.CO):
COLDECON,
CALI, VALLE DEL CAUCA, CO. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:30:00 Win2K-f 201.12.36.180 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:737 hits: 11-21 to 01-16] none[3] none:none
StarForce| none trace

08:32:00 Win2K-f 190.3.41.88 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:40:00 Win2K-f 24.109.244.76 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
THUNDER BAY, ONTARIO, CA. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:55:00 Win2K-f 59.104.59.161 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:01:00 Win2K-f 201.91.249.33 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 9 of 38 e1a2e3980d
[Firefox:27 hits: 12-05 to 01-13] none[3] none:none
UPX| none trace

09:03:00 Win2K-f 114.45.214.132 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:09:00 Win2K-f 194.8.75.107 (LIX.LV):
LAST RESORT LOCAL REGISTRY,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1834 hits: 11-22 to 01-16] none[3] none:none
UPX| none trace

09:13:00 Win2K-f 194.8.75.107 (LIX.LV):
LAST RESORT LOCAL REGISTRY,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1834 hits: 11-22 to 01-16] none[3] none:none
UPX| none trace

09:27:00 Win2K-f 59.116.41.44 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:29:00 Win2K-f 24.109.244.76 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
THUNDER BAY, ONTARIO, CA. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:29:00 Win2K-f 201.47.187.225 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:32:00 Win2K-f 200.111.193.27 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:36:00 Win2K-f 200.111.193.27 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:41:00 Win2K-f 201.254.66.11 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1621 hits: 11-24 to 01-16] none[3] none:none
UPX| none trace

T:09:48:00 Win2K-f 84.72.250.18 (CABLECOM.AT):
CABLECOM,
GöTZIS, VORARLBERG, AT. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:50:00 Win2K-f 84.72.250.18 (CABLECOM.AT):
CABLECOM,
GöTZIS, VORARLBERG, AT. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:57:00 Win2K-f 88.134.65.29 (SUPERKABEL.DE):
KABEL-DEUTSCHLAND-CUSTOMER-SERVICES,
DE. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1834 hits: 11-22 to 01-16] none[3] none:none
UPX| none trace

10:03:00 Win2K-f 125.126.211.111 (163DATA.COM.CN):
CHINANET-ZJ TAIZHOU NODE NETWORK,
CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:17:00 Win2K-f 124.11.186.101 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:19:00 Win2K-f 200.71.106.215 (TELESAT.COM.CO):
COLDECON,
CALI, VALLE DEL CAUCA, CO. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:21:00 Win2K-f 189.75.89.82 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:23:00 Win2K-f 200.71.96.250 (TELESAT.COM.CO):
COLDECON,
CALI, VALLE DEL CAUCA, CO. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:961 hits: 11-30 to 01-16] none[3] none:none
StarForce| none trace

T:10:27:00 Win2K-f 70.68.126.3 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
COQUITLAM, BRITISH COLUMBIA, CA. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1621 hits: 11-24 to 01-16] none[3] none:none
UPX| none trace

10:32:00 Win2K-f 200.108.246.224 (DEDICADO.COM.UY):
TECNOWIND S.A,
MONTEVIDEO, MONTEVIDEO, UY. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:39:00 Win2K-f 91.82.33.29 (INVITEL.HU):
ADSL PPPOE (BORS-ADSL0),
BUDAPEST, BUDAPEST, HU. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:44:00 Win2K-f 193.30.110.108 (POWERED-BY.WILLUX.BE):
WILLUX BVBA,
BE. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
BE:193.30.110.108:5352
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:52:00 Win2K-f 201.254.42.56 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:57:00 Win2K-f 222.39.193.52 (HERBALQC.COM):
CHINA RAILWAY TELECOMMUNICATIONS CENTER,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:57:00 Win2K-f 186.9.62.40 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:09:00 Win2K-f 24.100.84.38 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:219 hits: 11-20 to 01-16] none[3] none:none
StarForce| none trace

T:11:11:00 Win2K-f 114.45.214.132 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:14:00 Win2K-f 222.39.193.52 (HERBALQC.COM):
CHINA RAILWAY TELECOMMUNICATIONS CENTER,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:17:00 Win2K-f 208.98.1.18 (SHARKTECH.NET):
SHARKTECH INTERNET SERVICES,
MISSOULA, MONTANA, US. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:20:00 Win2K-f 200.35.234.197 (SUPERCABLE.NET.VE):
SUPERCABLE,
CARACAS, DISTRITO FEDERAL, VE. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:20:00 Win2K-f 88.134.65.29 (SUPERKABEL.DE):
KABEL-DEUTSCHLAND-CUSTOMER-SERVICES,
DE. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1834 hits: 11-22 to 01-16] none[3] none:none
UPX| none trace

T:11:25:00 Win2K-f 213.33.183.50 (-):
SOVINTEL-PKF-ATI-NET,
MOSCOW, MOSKVA, RU. (100Mbps) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:30:00 Win2K-f 201.254.42.56 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:31:00 Win2K-f 123.195.63.202 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:35:00 Win2K-f 114.45.214.132 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:42:00 Win2K-f 59.125.198.179 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:44:00 Win2K-f 88.86.1.243 (HOST-213-178-245-10.ALOOLA.SY):
SCS-NET IS AN ISP BASED IN DAMASCUS SYRIA,
AMMAN, 'AMMAN, JO. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:205 hits: 12-19 to 01-16] none[3] none:none
MEW| none trace

11:47:00 Win2K-f 59.125.191.34 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:48:00 Win2K-f 114.47.4.192 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:53:00 Win2K-f 190.105.17.109 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:56:00 Win2K-f 59.125.198.179 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:00:00 Win2K-f 60.250.34.28 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:05:00 Win2K-f 79.47.239.178 (SRC.ORG):
TELECOM ITALIA NET,
ROME, LAZIO, IT. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:515 hits: 11-26 to 01-16] none[3] none:none
Armadillo| none trace

T:12:12:00 Win2K-f 203.73.20.231 (TSRC.COM.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:17:00 Win2K-f 189.75.89.82 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:21:00 Win2K-f 203.73.20.231 (TSRC.COM.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:36:00 Win2K-f 84.127.9.209 (ONO.COM):
PROVIDER LOCAL REGISTRY,
ES. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:45:00 Win2K-f 61.19.248.28 (THAITSUNAMI.COM):
CAT TELECOM DATA COMM. DEPT INTRENET OFFICE,
TH. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1621 hits: 11-24 to 01-16] none[3] none:none
UPX| none trace

T:12:46:00 Win2K-f 61.30.12.119 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:47:00 Win2K-f 24.100.84.38 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:219 hits: 11-20 to 01-16] none[3] none:none
StarForce| none trace

T:12:50:00 Win2K-f 123.195.63.202 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:56:00 Win2K-f 213.33.183.50 (-):
SOVINTEL-PKF-ATI-NET,
MOSCOW, MOSKVA, RU. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:04:00 Win2K-f 203.67.40.179 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:10:00 Win2K-f 60.250.34.28 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:12:00 Win2K-f 83.97.134.170 (CM-83-97-128-10.TELECABLE.ES):
TELECABLE,
GIJON, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:17:00 Win2K-f 61.19.248.28 (THAITSUNAMI.COM):
CAT TELECOM DATA COMM. DEPT INTRENET OFFICE,
TH. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1621 hits: 11-24 to 01-16] none[3] none:none
UPX| none trace

13:24:00 Win2K-f 212.0.146.135 (-):
SUDATEL,
KHARTOUM, AL KHARTUM, SD. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:26:00 Win2K-f 208.98.1.18 (SHARKTECH.NET):
SHARKTECH INTERNET SERVICES,
MISSOULA, MONTANA, US. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:30:00 Win2K-f 190.99.150.91 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:39:00 Win2K-f 123.195.212.237 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:47:00 Win2K-f 91.102.160.197 (ATOLYEWEB.NET):
DATAFON ILETISIM A.S,
TR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:48:00 Win2K-f 189.61.67.33 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1621 hits: 11-24 to 01-16] none[3] none:none
UPX| none trace

T:13:49:00 Win2K-f 59.125.198.179 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:58:00 Win2K-f 189.61.67.33 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1621 hits: 11-24 to 01-16] none[3] none:none
UPX| none trace

T:14:06:00 Win2K-f 58.27.206.242 (-):
NATIONAL WIMAX/IMS ENVIRONMENT,
PK. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:11:00 Win2K-f 122.246.115.115 (HZ.ZJ.CN):
CHINANET ZHEJIANG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:11:00 Win2K-f 89.18.168.91 (DNSKA.COM):
PCEXTREME BV,
MIDDELBURG, ZEELAND, NL. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:20:00 Win2K-f 61.30.12.119 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:24:00 Win2K-f 212.0.146.135 (-):
SUDATEL,
KHARTOUM, AL KHARTUM, SD. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:24:00 Win2K-f 190.128.44.59 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
5 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:25:00 Win2K-f 190.51.153.123 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1621 hits: 11-24 to 01-16] none[3] none:none
UPX| none trace

T:14:25:00 Win2K-f 123.195.199.242 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:27:00 Win2K-f 123.195.212.237 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:37:00 Win2K-f 122.120.1.202 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:41:00 Win2K-f 122.120.1.202 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:44:00 Win2K-f 24.80.171.142 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
VANCOUVER, BRITISH COLUMBIA, CA. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:00:00 Win2K-f 190.139.32.181 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1621 hits: 11-24 to 01-16] none[3] none:none
UPX| none trace

15:00:00 Win2K-f 190.139.32.181 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1621 hits: 11-24 to 01-16] none[3] none:none
UPX| none trace

T:15:05:00 Win2K-f 201.70.152.99 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:11:00 Win2K-f 190.51.160.97 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:15:00 Win2K-f 190.51.160.97 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:18:00 Win2K-f 85.122.90.105 (RNC.RO):
RNC,
RO. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
RO:85.122.90.105:5723 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1834 hits: 11-22 to 01-16] none[3] none:none
UPX| none trace

15:23:00 Win2K-f 201.70.152.99 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:29:00 Win2K-f 200.82.76.113 (-):
TELECOM-CEB,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:34:00 Win2K-f 58.27.206.242 (-):
NATIONAL WIMAX/IMS ENVIRONMENT,
PK. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:43:00 Win2K-f 201.255.96.185 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:45:00 Win2K-f 190.128.44.59 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:59:00 Win2K-f 92.125.68.229 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:00:00 Win2K-f 92.125.68.229 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:01:00 Win2K-f 122.121.18.176 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:06:00 Win2K-f 72.27.4.24 (CWJAMAICA.COM):
CABLE AND WIRELESS JAMAICA,
JM. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:09:00 Win2K-f 62.123.98.83 (DIAL.ATLANET.IT):
ATLANET NETWORK,
IT. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:961 hits: 11-30 to 01-16] none[3] none:none
StarForce| none trace

16:14:00 Win2K-f 190.137.163.168 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:14:00 Win2K-f 221.11.38.122 (-):
CNC GROUP SHANNXI PROVINCE NETWORK,
CN. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:18:00 Win2K-f 94.76.213.233 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:25:00 Win2K-f 117.26.160.224 (163DATA.COM.CN):
CHINANET FUJIAN PROVINCE NETWORK,
FUZHOU, FUJIAN, CN. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:28:00 Win2K-f 190.208.71.104 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1834 hits: 11-22 to 01-16] none[3] none:none
UPX| none trace

T:16:29:00 Win2K-f 211.75.78.124 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:33:00 Win2K-f 80.104.113.46 (BUSINESS.TELECOMITALIA.IT):
TELECOM ITALIA S.P.A,
PISTOIA, TOSCANA, IT. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:515 hits: 11-26 to 01-16] none[3] none:none
Armadillo| none trace

16:46:00 Win2K-f 70.71.158.210 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
CALGARY, ALBERTA, CA. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:48:00 Win2K-f 83.97.224.140 (CM-83-97-128-10.TELECABLE.ES):
TELECABLE,
GIJON, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:48:00 Win2K-f 85.122.90.105 (RNC.RO):
RNC,
RO. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1834 hits: 11-22 to 01-16] none[3] none:none
UPX| none trace

T:16:51:00 Win2K-f 190.138.172.254 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:56:00 Win2K-f 87.120.49.210 (-):
SKATTV-NET-NETERRA,
BURGAS, BURGAS, BG. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80
BG:87.120.49.210:6008 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:515 hits: 11-26 to 01-16] none[3] none:none
Armadillo| none trace

16:58:00 Win2K-f 83.97.224.140 (CM-83-97-128-10.TELECABLE.ES):
TELECABLE,
GIJON, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:07:00 Win2K-f 94.102.7.34 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:07:00 Win2K-f 72.44.76.85 (MULTACOM.COM):
MULTACOM CORPORATION,
CANYON COUNTRY, CALIFORNIA, US. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:737 hits: 11-21 to 01-16] none[3] none:none
StarForce| none trace

17:11:00 Win2K-f 117.26.160.224 (163DATA.COM.CN):
CHINANET FUJIAN PROVINCE NETWORK,
FUZHOU, FUJIAN, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:13:00 Win2K-f 59.112.239.180 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:22:00 Win2K-f 89.29.195.79 (TRIUNFOTEL.COM):
TRIUNFOTEL ARNEDO INFRAESTRUCTURE/ACCESS NETWORK,
ES. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1621 hits: 11-24 to 01-16] none[3] none:none
UPX| none trace

T:17:23:00 Win2K-f 221.11.38.122 (-):
CNC GROUP SHANNXI PROVINCE NETWORK,
CN. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:24:00 Win2K-f 89.29.195.79 (TRIUNFOTEL.COM):
TRIUNFOTEL ARNEDO INFRAESTRUCTURE/ACCESS NETWORK,
ES. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1621 hits: 11-24 to 01-16] none[3] none:none
UPX| none trace

T:17:27:00 Win2K-f 189.51.146.4 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:961 hits: 11-30 to 01-16] none[3] none:none
StarForce| none trace

T:17:33:00 Win2K-f 77.88.130.22 (-):
ELPRO - ELEKTRONIKA PROFESJONALNA WALDEMAR NITKA,
SZCZECIN, ZACHODNIOPOMORSKIE, PL. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:36:00 Win2K-f 94.76.213.233 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:38:00 Win2K-f 72.27.4.24 (CWJAMAICA.COM):
CABLE AND WIRELESS JAMAICA,
JM. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:48:00 Win2K-f 190.245.32.132 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1621 hits: 11-24 to 01-16] none[3] none:none
UPX| none trace

17:51:00 Win2K-f 190.138.172.254 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:53:00 Win2K-f 89.35.200.2 (RAKNETSOFT.RO):
SC RAKNET SOFT SRL,
PLOIESTI, PRAHOVA, RO. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80
RO:89.35.200.2:9187 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:58:00 Win2K-f 59.105.139.103 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:00:00 Win2K-f 190.49.15.237 (COM.AR):
TELEFONICA DE ARGENTINA,
CIPOLLETTI, NEUQUEN, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1834 hits: 11-22 to 01-16] none[3] none:none
UPX| none trace

T:18:08:00 Win2K-f 59.117.122.146 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:08:00 Win2K-f 114.45.25.212 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:837 hits: 11-22 to 01-16] none[3] none:none
UPX| none trace

18:10:00 Win2K-f 72.44.76.85 (MULTACOM.COM):
MULTACOM CORPORATION,
CANYON COUNTRY, CALIFORNIA, US. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:737 hits: 11-21 to 01-16] none[3] none:none
StarForce| none trace

T:18:10:00 Win2K-f 118.231.75.89 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:11:00 Win2K-f 190.49.15.237 (COM.AR):
TELEFONICA DE ARGENTINA,
CIPOLLETTI, NEUQUEN, AR. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1834 hits: 11-22 to 01-16] none[3] none:none
UPX| none trace

T:18:24:00 Win2K-f 203.73.47.10 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:32:00 Win2K-f 64.122.15.143 (COLUMBIACROSSINGS.COM):
INTEGRA TELECOM INC,
PORTLAND, OREGON, US. n/a 445 pcap raw alerts
ruleset http
1 line Argh : 0.3
profile none summary
tarball none none none none none none none

T:18:34:00 Win2K-f 61.56.170.129 (UBBN.NET):
UNION CABLE TV CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:37:00 Win2K-f 61.56.170.129 (UBBN.NET):
UNION CABLE TV CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:41:00 Win2K-f 89.35.200.2 (RAKNETSOFT.RO):
SC RAKNET SOFT SRL,
PLOIESTI, PRAHOVA, RO. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:46:00 Win2K-f 220.175.195.46 (163DATA.COM.CN):
CHINANET JIANGXI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:837 hits: 11-22 to 01-16] none[3] none:none
UPX| none trace

T:18:46:00 Win2K-f 59.117.119.115 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:52:00 Win2K-f 212.96.107.228 (NARZAN.COM):
KISLOVODSK POST TELEGRAPH AND TELEPHONE COMPANY (KISLOVODSK PTT),
KISLOVODSK, STAVROPOL'SKIY KRAY, RU. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:54:00 Win2K-f 61.30.34.40 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:55:00 Win2K-f 87.120.49.210 (-):
SKATTV-NET-NETERRA,
BURGAS, BURGAS, BG. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:515 hits: 11-26 to 01-16] none[3] none:none
Armadillo| none trace

18:57:00 Win2K-f 222.127.109.121 (SUMIFRU.COM):
GLOBE TELECOM/INNOVE COMMUNICATION,
PH. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:205 hits: 12-19 to 01-16] none[3] none:none
MEW| none trace

T:18:58:00 Win2K-f 61.227.190.231 (HINET.NET):
DATA COMMUNICATION BUSINESS GROUP CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:00:00 Win2K-f 190.90.205.251 (EQUITEL.COM.CO):
INTERNEXA S.A. E.S.P,
CO. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:05:00 Win2K-f 117.39.136.90 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:64.246.48.99:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:08:00 Win2K-f 59.114.12.132 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:11:00 Win2K-f 193.90.59.69 (BLUECOM.NO):
FOLLO ENERGIVERK AS SKI,
SON, AKERSHUS, NO. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:14:00 Win2K-f 190.208.108.30 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:64.246.48.99:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
4 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:22:00 Win2K-f 74.126.12.190 (123.NET):
INTERNET 123 INC,
NEW BALTIMORE, MICHIGAN, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:737 hits: 11-21 to 01-16] none[3] none:none
StarForce| none trace

19:23:00 Win2K-f 74.126.12.190 (123.NET):
INTERNET 123 INC,
NEW BALTIMORE, MICHIGAN, US. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:64.246.48.99:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
4 lines Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:737 hits: 11-21 to 01-16] none[3] none:none
StarForce| none trace

T:19:25:00 Win2K-f 222.127.109.121 (SUMIFRU.COM):
GLOBE TELECOM/INNOVE COMMUNICATION,
PH. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:205 hits: 12-19 to 01-16] none[3] none:none
MEW| none trace

T:19:35:00 Win2K-f 122.125.93.149 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:36:00 Win2K-f 116.11.151.143 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
NANNING, GUANGXI, CN. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

19:37:00 Win2K-f 58.68.38.122 (-):
DISHNET WIRELESS LTD INDIA,
BANGALORE, KARNATAKA, IN. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:38:00 Win2K-f 193.90.59.69 (BLUECOM.NO):
FOLLO ENERGIVERK AS SKI,
SON, AKERSHUS, NO. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:41:00 Win2K-f 122.121.206.134 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:431 hits: 11-25 to 01-16] none[3] none:none
Armadillo| none trace

19:46:00 Win2K-f 122.121.206.134 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:431 hits: 11-25 to 01-16] none[3] none:none
Armadillo| none trace

19:52:00 Win2K-f 59.114.12.132 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:00:00 Win2K-f 119.95.46.189 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:01:00 Win2K-f 200.24.49.76 (-):
EMTELSA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:07:00 Win2K-f 190.31.9.169 (NET.AR):
APOLO -GOLD-TELECOM-PER,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:515 hits: 11-26 to 01-16] none[3] none:none
Armadillo| none trace

20:08:00 Win2K-f 122.125.93.149 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:12:00 Win2K-f 70.75.95.162 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
CALGARY, ALBERTA, CA. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:13:00 Win2K-f 62.48.251.13 (MAIL.MEPHISTO.PT):
PT PRIME - SOLUCOES EMPRESARIAIS,
PORTO, PORTO, PT. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:21:00 Win2K-f 203.70.216.130 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:24:00 Win2K-f 61.227.190.231 (HINET.NET):
DATA COMMUNICATION BUSINESS GROUP CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:27:00 Win2K-f 212.96.107.228 (NARZAN.COM):
KISLOVODSK POST TELEGRAPH AND TELEPHONE COMPANY (KISLOVODSK PTT),
KISLOVODSK, STAVROPOL'SKIY KRAY, RU. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:35:00 Win2K-f 116.252.56.169 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
NANNING, GUANGXI, CN. n/a 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball none none none none none none none

T:20:43:00 Win2K-f 114.45.25.212 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:837 hits: 11-22 to 01-16] none[3] none:none
UPX| none trace

20:48:00 Win2K-f 113.61.160.99 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:52:00 Win2K-f 220.130.236.211 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:961 hits: 11-30 to 01-16] none[3] none:none
StarForce| none trace

T:20:59:00 Win2K-f 60.167.129.43 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:16:00 Win2K-f 201.254.186.84 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1621 hits: 11-24 to 01-16] none[3] none:none
UPX| none trace

T:21:19:00 Win2K-f 202.75.222.204 (CHINAGREENTOWN.COM):
HANGZHOU SILK ROAD INFORMATION TECHNOLOGIES CO. LTD,
HANGZHOU, ZHEJIANG, CN. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1834 hits: 11-22 to 01-16] none[3] none:none
UPX| none trace

21:21:00 Win2K-f 124.112.101.200 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:22:00 Win2K-f 220.131.155.37 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:22:00 Win2K-f 124.21.201.40 (-):
BEIJING CJWX COMMUNICATION TECHNOLOGY LTD,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:33:00 Win2K-f 123.145.184.20 (-):
CNCGROUP CHONGQING PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:39:00 Win2K-f 202.123.21.124 (ROD10.INTNET.MU):
NATIONAL ISP,
MU. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:49:00 Win2K-f 220.131.155.37 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:50:00 Win2K-f 210.11.197.29 (-):
TC & DM GIUFRE-SWEETSER PTY LTD,
AU. n/a 445 pcap raw alerts
ruleset http
1 line Argh : 0.3
profile none summary
tarball none none none none none none none

21:56:00 Win2K-f 190.84.21.42 (CABLE.NET.CO):
TV CABLE S.A,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:57:00 Win2K-f 62.2.254.54 (-):
8005 ZUERICH,
CH. (100Mbps) n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:57:00 Win2K-f 59.112.218.156 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:01:00 Win2K-f 66.90.104.110 (MM-NEWS.NET):
FDC SERVERS.NET LLC,
RALEIGH, NORTH CAROLINA, US. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:02:00 Win2K-f 189.108.59.105 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:07:00 Win2K-f 62.48.251.13 (MAIL.MEPHISTO.PT):
PT PRIME - SOLUCOES EMPRESARIAIS,
PORTO, PORTO, PT. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:15:00 Win2K-f 201.254.165.135 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1621 hits: 11-24 to 01-16] none[3] none:none
UPX| none trace

T:22:17:00 Win2K-f 190.49.19.194 (COM.AR):
TELEFONICA DE ARGENTINA,
CIPOLLETTI, NEUQUEN, AR. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:17:00 WinXP 65.34.30.26 (RR.COM):
ROAD RUNNER HOLDCO LLC,
ORLANDO, FLORIDA, US. n/a US:microsoft.com 135 pcap raw alerts
ruleset other
76 lines Yeah : 1.3
profile none summary
tarball 33 of 33
0 of 33 53bfe15e91
[Firefox:4122 hits: 06-17 to 01-13]
a08f3b74a4
[Firefox:1476 hits: 06-18 to 01-08] 1473091351 [0]
none [0] ASM:Graph
none:none
tElock|
Armadillo| lines=75
embedded dns
lines=90 trace
trace

22:18:00 Win2K-f 186.9.17.216 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:28:00 Win2K-f 123.195.80.32 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:33:00 Win2K-f 62.2.254.54 (-):
8005 ZUERICH,
CH. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:37:00 Win2K-f 70.44.156.93 (PTD.NET):
PENTELEDATA INC. - CABLE,
PALMERTON, PENNSYLVANIA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:41:00 Win2K-f 118.232.51.149 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:41:00 Win2K-f 211.74.135.183 (SEED.NET.TW):
DIGITAL UNITED INC,
KAOHSIUNG, KAO-HSIUNG, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:44:00 Win2K-f 86.2.86.246 (NTL.COM):
NTLI,
UK. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:44:00 Win2K-f 66.90.104.110 (MM-NEWS.NET):
FDC SERVERS.NET LLC,
RALEIGH, NORTH CAROLINA, US. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:44:00 Win2K-f 186.9.17.216 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:50:00 Win2K-f 94.86.12.18 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:50:00 Win2K-f 94.50.11.86 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:431 hits: 11-25 to 01-16] none[3] none:none
Armadillo| none trace

T:22:56:00 Win2K-f 222.85.42.204 (163DATA.COM.CN):
CHINANET HENAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:02:00 Win2K-f 91.82.149.29 (INVITEL.HU):
INVITEL TAVKOZLESI SZOLGALTATO RT,
HU. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:515 hits: 11-26 to 01-16] none[3] none:none
Armadillo| none trace

T:23:08:00 Win2K-f 118.165.77.238 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:11:00 Win2K-f 202.53.85.142 (NETTLINX.COM):
NETTLINX LIMITED,
HYDERABAD, ANDHRA PRADESH, IN. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:17:00 Win2K-f 82.99.25.227 (DIGITALTOUCH.SE):
DIGITALTOUCH,
SE. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:23:00 Win2K-f 118.165.77.238 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:27:00 Win2K-f 124.8.234.131 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:28:00 Win2K-f 202.53.85.142 (NETTLINX.COM):
NETTLINX LIMITED,
HYDERABAD, ANDHRA PRADESH, IN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:30:00 Win2K-f 219.87.248.87 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:31:00 Win2K-f 118.232.46.230 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
118.232.46.230:8903
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:17736 hits: 11-20 to 01-16] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:58:00 Win2K-f 60.249.151.199 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:961 hits: 11-30 to 01-16] none[3] none:none
StarForce| none trace