Multiperspective Malware Analysis Page

Welcome to the Cyber-TA
SRI's Multiperspective Malware Infection Analysis Page

UNCENSORED PAGE

<Click here: to download BotHunter>

20 January 2009
<prev> <next>

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Daily Summary Files: [DNS Lookups & Failed Connects] [ Attacker IPs ] [C&C Servers] [Binary Digests]
Cumulative Summary Files: [DNS Lookup Log] [Attacker IP Log] [C&C Server Log] [Antivirus Detection] [Code Segment Overlap]
[Behavioral Clusters] [Binary Digest Log]

[See Country Codes ]

Time
Victim
OS
Infection
Source
C&C
Server
DNS Lookups &
Failed Connects Infection
Port
Packet
Trace
Detection
Signatures
Infection
Chatter
BotHunter
Analysis
Behavioral
Cluster
Forensic
Logs
Antivirus
Labels
Packed Malware_Binary Unpacked egg.exe
Unpacked egg.asm
Packer PEID
Data Strings
Syscall Trace

00:05:00 Win2K-f 117.66.48.97 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:12:00 Win2K-f 117.70.5.80 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:17:00 Win2K-f 201.173.145.195 (IFXNW.COM.MX):
NETWORK INFORMATION CENTER MEXICO,
MX. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:992 hits: 11-30 to 01-19] none[3] none:none
StarForce| none trace

00:19:00 Win2K-f 95.28.29.233 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:20:00 Win2K-f 124.227.18.244 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:23:00 Win2K-f 211.75.67.187 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:25:00 Win2K-f 220.163.216.190 (CN.NET):
CHINANET YUNNAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:28:00 Win2K-f 91.66.226.237 (SUPERKABEL.DE):
KABEL DEUTSCHLAND BREITBAND SERVICE GMBH,
DE. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1878 hits: 11-22 to 01-19] none[3] none:none
UPX| none trace

00:36:00 Win2K-f 120.50.1.51 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:43:00 Win2K-f 114.40.134.14 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:44:00 Win2K-f 121.58.193.14 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:535 hits: 11-26 to 01-19] none[3] none:none
Armadillo| none trace

00:44:00 Win2K-f 65.97.184.109 (FDN.COM):
FDN.COM,
JUPITER, FLORIDA, US. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:65.97.184.109:8381
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:46:00 Win2K-f 61.38.0.58 (BORA.NET):
DACOM CORP,
SEOUL, KYONGGI-DO, KR. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:58:00 Win2K-f 201.116.83.38 (UNINET-IDE.COM.MX):
UNINET S.A. DE C.V,
MEXICO, DISTRITO FEDERAL, MX. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:992 hits: 11-30 to 01-19] none[3] none:none
StarForce| none trace

T:01:03:00 Win2K-f 70.69.142.141 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
ABBOTSFORD, BRITISH COLUMBIA, CA. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:13:00 Win2K-f 117.68.29.104 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:17:00 Win2K-f 189.38.228.229 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:17:00 Win2K-f 124.227.18.244 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:23:00 Win2K-f 189.38.228.229 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:25:00 Win2K-f 202.103.25.103 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
HUBEI, HUBEI, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:29:00 Win2K-f 124.31.83.38 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 507252387e
[Firefox:56 hits: 11-27 to 01-18] none[3] none:none
UPX| none trace

01:30:00 Win2K-f 190.67.47.42 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
CO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:34:00 Win2K-f 208.126.23.42 (SOUTHSLOPE.NET):
SOUTH SLOPE COOPERATIVE TELEPHONE,
GRINNELL, IOWA, US. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:40:00 Win2K-f 122.120.38.65 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:52:00 Win2K-f 60.250.34.28 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
TW:60.250.34.28:1593
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:56:00 Win2K-f 124.8.238.183 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:447 hits: 11-25 to 01-19] none[3] none:none
Armadillo| none trace

02:07:00 Win2K-f 118.165.88.182 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1878 hits: 11-22 to 01-19] none[3] none:none
UPX| none trace

02:09:00 Win2K-f 124.113.211.37 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:09:00 Win2K-f 122.125.131.121 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:14:00 Win2K-f 117.97.195.11 (XLRI.AC.IN):
BHARTI AIRTEL LTD,
DELHI, DELHI, IN. n/a US:www.maxmind.com
US:64.246.48.99:80
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:535 hits: 11-26 to 01-19] none[3] none:none
Armadillo| none trace

T:02:26:00 Win2K-f 117.66.48.97 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:30:00 Win2K-f 95.28.29.233 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:34:00 Win2K-f 190.56.166.234 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:38:00 Win2K-f 120.50.1.51 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:50:00 Win2K-f 74.63.225.122 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:51:00 Win2K-f 94.76.206.159 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:52:00 Win2K-f 125.233.208.228 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:01:00 Win2K-f 211.74.92.157 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:02:00 Win2K-f 84.59.10.96 (ARCOR-IP.NET):
ARCOR-DSL-NET,
DUSSELDORF, NORDRHEIN-WESTFALEN, DE. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:09:00 Win2K-f 219.71.234.123 (NVWTV.COM.TW):
HOSHIN GIGAMEDIA CENTER INC,
TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:14:00 Win2K-f 87.5.223.122 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA S.P.A. TIN EASY LITE,
TRIESTE, FRIULI-VENEZIA GIULIA, IT. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:15:00 Win2K-f 212.70.27.193 (II.MIRADATA.DK):
MIRA INTERNET APS. A LOCAL DANISH ISP,
DK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:31:00 Win2K-f 94.50.148.128 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:154 hits: 11-29 to 01-16] none[3] none:none
UPX| none trace

03:42:00 Win2K-f 219.71.234.123 (NVWTV.COM.TW):
HOSHIN GIGAMEDIA CENTER INC,
TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:45:00 Win2K-f 118.171.1.41 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:47:00 Win2K-f 72.67.79.58 (VERIZON.NET):
VERIZON INTERNET SERVICES INC,
LOS ANGELES, CALIFORNIA, US. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:48:00 Win2K-f 88.28.232.130 (RIMA-TDE.NET):
TELEFONICA MOVILES ESPANA (NCC#2007041930),
ES. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:51:00 Win2K-f 94.50.148.128 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 3862324588
[Firefox:154 hits: 11-29 to 01-16] none[3] none:none
UPX| none trace

T:03:52:00 Win2K-f 87.16.40.52 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA S.P.A. TIN EASY LITE,
BOLOGNA, EMILIA-ROMAGNA, IT. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:56:00 Win2K-f 81.13.70.254 (-):
MIROPOL'SKIY EVGENIY GRIGOR'EVICH,
MOSCOW, MOSKVA, RU. (100Mbps) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:09:00 Win2K-f 200.45.73.199 (NET.AR):
ABALDE SERGIO LUIS,
NEUQUEN, NEUQUEN, AR. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:12:00 Win2K-f 60.250.217.86 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:19:00 Win2K-f 61.8.150.106 (SYNYGY.COM):
STERLING CAPITAL PVT. LTD,
DELHI, DELHI, IN. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:24:00 Win2K-f 59.117.11.237 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:28:00 Win2K-f 189.109.26.139 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:447 hits: 11-25 to 01-19] none[3] none:none
Armadillo| none trace

04:34:00 Win2K-f 208.126.23.42 (SOUTHSLOPE.NET):
SOUTH SLOPE COOPERATIVE TELEPHONE,
GRINNELL, IOWA, US. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:35:00 Win2K-f 59.116.12.145 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:43:00 Win2K-f 59.116.12.145 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:55:00 Win2K-f 64.107.234.100 (IL.US):
ILLINOIS CENTURY NETWORK,
SHELBYVILLE, ILLINOIS, US. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:06:00 Win2K-f 61.8.150.106 (SYNYGY.COM):
STERLING CAPITAL PVT. LTD,
DELHI, DELHI, IN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:07:00 Win2K-f 200.49.7.244 (-):
CONEC-TEC S.A,
CERES, SANTA FE, AR. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 bd35d4d98f
[Firefox:62 hits: 11-27 to 01-19] none[3] none:none
Armadillo| none trace

05:09:00 Win2K-f 124.9.137.185 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:21:00 Win2K-f 194.19.230.87 (TELIA.LV):
TELIANET,
LV. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:54:00 Win2K-f 97.119.179.79 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1673 hits: 11-24 to 01-19] none[3] none:none
UPX| none trace

T:05:55:00 Win2K-f 124.9.137.185 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:59:00 Win2K-f 124.162.15.165 (-):
CNCGROUP CHONGQIGN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:05:00 Win2K-f 59.174.36.199 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
WUHAN, HUBEI, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:18:00 Win2K-f 123.54.16.146 (163DATA.COM.CN):
CHINANET HENAN PROVINCE NETWORK,
HENAN, GUIZHOU, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:758 hits: 11-21 to 01-19] none[3] none:none
StarForce| none trace

06:19:00 Win2K-f 124.162.15.165 (-):
CNCGROUP CHONGQIGN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:32:00 Win2K-f 62.112.115.196 (SPDOP.RU):
MGTS-NET,
MOSCOW, MOSKVA, RU. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:32:00 Win2K-f 124.8.102.90 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:39:00 Win2K-f 85.121.198.97 (RNC.RO):
RNC,
RO. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:40:00 Win2K-f 190.254.47.204 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:46:00 Win2K-f 119.77.205.30 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:51:00 Win2K-f 194.19.230.87 (TELIA.LV):
TELIANET,
LV. (100Mbps) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:57:00 Win2K-f 82.251.196.156 (PROXAD.NET):
PROXAD / FREE SAS,
NICE, PROVENCE-ALPES-COTE D'AZUR, FR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1673 hits: 11-24 to 01-19] none[3] none:none
UPX| none trace

T:07:00:00 Win2K-f 59.114.251.114 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:01:00 Win2K-f 200.23.87.44 (GXSUPPORT.COM.MX):
ASAE CONSULTORES SA DE CV,
MEXICO, DISTRITO FEDERAL, MX. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:992 hits: 11-30 to 01-19] none[3] none:none
StarForce| none trace

T:07:10:00 Win2K-f 89.24.71.131 (4GINTERNET.CZ):
GPRS/UMTS CUSTOMER NETWORK,
PRAGUE, HLAVNI MESTO PRAHA, CZ. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:11:00 Win2K-f 91.114.195.101 (TELEKOM.AT):
TELEKOM AUSTRIA AKTIENGESELLSCHAFT,
AT. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1878 hits: 11-22 to 01-19] none[3] none:none
UPX| none trace

07:13:00 Win2K-f 200.76.191.26 (TELEVICABLE.NET.MX):
ALESTRA,
QUERETARO, QUERETARO, MX. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:18:00 Win2K-f 24.109.87.94 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
CALGARY, ALBERTA, CA. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:19:00 Win2K-f 123.181.145.224 (163DATA.COM.CN):
CHINANET HEBEI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:21:00 Win2K-f 89.24.71.131 (4GINTERNET.CZ):
GPRS/UMTS CUSTOMER NETWORK,
PRAGUE, HLAVNI MESTO PRAHA, CZ. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:27:00 Win2K-f 117.68.58.197 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:34:00 Win2K-f 58.51.64.164 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:36:00 Win2K-f 59.104.45.110 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:44:00 Win2K-f 59.104.17.144 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:59:00 Win2K-f 190.220.100.29 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:04:00 Win2K-f 97.119.179.79 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1673 hits: 11-24 to 01-19] none[3] none:none
UPX| none trace

T:08:04:00 Win2K-f 201.65.71.170 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:08:00 Win2K-f 190.220.100.29 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:09:00 WinXP 83.200.60.207 (ABO.WANADOO.FR):
IP2000-ADSL-BAS,
PARIS, ILE-DE-FRANCE, FR. 63.173.172.98:6667 139 pcap raw alerts
ruleset ftp
irc
43 lines Yeah : 1.3
profile none summary
tarball 34 of 36 ead12a6c02
[Firefox:44 hits: 09-26 to 12-24] c016211824 [0] ASM:Graph
NsPacK| lines=3137
embedded dns trace

08:18:00 Win2K-f 211.20.190.103 (YY-YONYU.COM.TW):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:22:00 Win2K-f 211.20.190.103 (YY-YONYU.COM.TW):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:35:00 Win2K-f 92.82.122.19 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:39:00 Win2K-f 84.3.197.23 (T-ONLINE.HU):
HUNGARIAN TELECOM,
HU. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:42:00 Win2K-f 123.195.62.238 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:52:00 Win2K-f 219.153.182.252 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:15:00 Win2K-f 221.122.136.24 (-):
CETC-CHINACOMM COMMUNICATIONS CO. LTD,
CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:16:00 Win2K-f 61.229.234.26 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:38:00 Win2K-f 61.229.234.26 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:41:00 Win2K-f 203.70.189.141 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:43:00 Win2K-f 142.179.201.6 (TELUS.NET):
STENTOR NATIONAL INTEGRATED COMMUNICATIONS NETWORK,
EDMONTON, ALBERTA, CA. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:992 hits: 11-30 to 01-19] none[3] none:none
StarForce| none trace

09:50:00 Win2K-f 89.33.209.111 (BOTOSANI.RO):
SC DIGINET SA,
RO. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:53:00 Win2K-f 89.33.209.111 (BOTOSANI.RO):
SC DIGINET SA,
RO. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:54:00 Win2K-f 122.53.28.189 (PLDT.NET):
IPG,
PH. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:56:00 Win2K-f 122.127.178.183 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:59:00 Win2K-f 114.46.155.69 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:07:00 Win2K-f 89.40.63.106 (SMANET.RO):
JUMP NETWORK SERVICES S.R.L,
RO. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:09:00 Win2K-f 212.1.226.115 (TI.RU):
INTERNAL INFRASTRUCTURE,
RU. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:758 hits: 11-21 to 01-19] none[3] none:none
StarForce| none trace

10:09:00 Win2K-f 196.41.26.31 (CCSSA.COM):
AFRINIC,
ZA. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:14:00 Win2K-f 62.2.86.118 (HISPEED.CH):
CABLECOMMAIN-NET,
CH. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:17:00 Win2K-f 72.55.65.25 (SUSCOM.NET):
COMCAST TELECOMMUNICATIONS INC,
MOORESTOWN, NEW JERSEY, US. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:39:00 Win2K-f 93.113.48.160 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
93.113.48.160:8226 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:41:00 Win2K-f 122.53.28.189 (PLDT.NET):
IPG,
PH. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:10:41:00 Win2K-f 219.153.182.252 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:42:00 Win2K-f 118.232.7.93 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:43:00 Win2K-f 62.2.86.118 (HISPEED.CH):
CABLECOMMAIN-NET,
CH. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:51:00 Win2K-f 88.53.101.5 (BUSINESS.TELECOMITALIA.IT):
GIUSEPPE BOTTIGLIERI SHIPPING COMPANY SPA,
NAPOLI, CAMPANIA, IT. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:04:00 Win2K-f 200.80.239.100 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
BUENOS AIRES, BUENOS AIRES, AR. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:05:00 Win2K-f 83.97.137.178 (CM-83-97-128-10.TELECABLE.ES):
TELECABLE,
GIJON, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1878 hits: 11-22 to 01-19] none[3] none:none
UPX| none trace

T:11:10:00 Win2K-f 85.139.107.152 (CPE.NETCABO.PT):
TVCABO-PORTUGAL CABLE MODEM NETWORK,
OEIRAS, LISBOA, PT. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:18:00 Win2K-f 89.40.63.106 (SMANET.RO):
JUMP NETWORK SERVICES S.R.L,
RO. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:22:00 Win2K-f 72.55.65.25 (SUSCOM.NET):
COMCAST TELECOMMUNICATIONS INC,
MOORESTOWN, NEW JERSEY, US. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:36:00 Win2K-f 59.104.19.122 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:39:00 Win2K-f 59.104.19.122 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:39:00 Win2K-f 190.92.18.223 (-):
CABLECOLOR S.A,
TEGUCIGALPA, FRANCISCO MORAZAN, HN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:992 hits: 11-30 to 01-19] none[3] none:none
StarForce| none trace

T:12:00:00 Win2K-f 63.79.14.231 (WICHITADATACENTERS.COM):
WS/WEBNET BROADBAND LLC/WICHITA DATACENTERS,
NAPERVILLE, ILLINOIS, US. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:03:00 Win2K-f 59.116.101.7 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:11:00 Win2K-f 190.246.198.220 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1878 hits: 11-22 to 01-19] none[3] none:none
UPX| none trace

T:12:21:00 Win2K-f 60.179.162.219 (163DATA.COM.CN):
CHINANET-ZJ NINGBO NODE NETWORK,
NINGBO, ZHEJIANG, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:22:00 Win2K-f 190.136.84.240 (NET.AR):
APOLO -GOLD-TELECOM-PER,
ROSARIO, SANTA FE, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:23:00 Win2K-f 190.92.18.223 (-):
CABLECOLOR S.A,
TEGUCIGALPA, FRANCISCO MORAZAN, HN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:992 hits: 11-30 to 01-19] none[3] none:none
StarForce| none trace

12:42:00 Win2K-f 60.179.162.219 (163DATA.COM.CN):
CHINANET-ZJ NINGBO NODE NETWORK,
NINGBO, ZHEJIANG, CN. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:43:00 Win2K-f 66.77.206.81 (BAYSHOREHOSTING.COM):
BAYSHORE SOLUTIONS,
LOS ANGELES, CALIFORNIA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:55:00 Win2K-f 190.246.198.220 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1878 hits: 11-22 to 01-19] none[3] none:none
UPX| none trace

T:12:57:00 Win2K-f 196.41.26.31 (CCSSA.COM):
AFRINIC,
ZA. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:01:00 Win2K-f 91.67.159.102 (SUPERKABEL.DE):
KABEL DEUTSCHLAND BREITBAND SERVICE GMBH,
DE. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:03:00 Win2K-f 190.136.84.240 (NET.AR):
APOLO -GOLD-TELECOM-PER,
ROSARIO, SANTA FE, AR. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:05:00 Win2K-f 212.1.226.115 (TI.RU):
INTERNAL INFRASTRUCTURE,
RU. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:758 hits: 11-21 to 01-19] none[3] none:none
StarForce| none trace

T:13:21:00 Win2K-f 211.115.64.107 (-):
KIDC-INFRA-SERVERHOSTING-INEMPIRE,
SEOUL, KYONGGI-DO, KR. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:21:00 Win2K-f 211.115.64.107 (-):
KIDC-INFRA-SERVERHOSTING-INEMPIRE,
SEOUL, KYONGGI-DO, KR. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:27:00 Win2K-f 210.59.187.34 (TMA.ORG.TW):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:29:00 Win2K-f 190.48.212.213 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:535 hits: 11-26 to 01-19] none[3] none:none
Armadillo| none trace

T:13:32:00 Win2K-f 81.56.42.250 (PROXAD.NET):
PROXAD / FREE SAS,
PARIS, ILE-DE-FRANCE, FR. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:33:00 Win2K-f 83.93.121.32 (ADSL-DHCP.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
COPENHAGEN, COPENHAGEN, DK. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:36:00 Win2K-f 203.116.63.70 (MYSTARHUB.COM.SG):
STARHUBINTERNET,
SG. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:36:00 Win2K-f 58.51.89.84 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:51:00 Win2K-f 83.34.135.83 (RIMA-TDE.NET):
TELEFONICA DE ESPANA SAU,
ALICANTE, VALENCIA, ES. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:52:00 Win2K-f 210.59.187.34 (TMA.ORG.TW):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:52:00 Win2K-f 190.55.220.42 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1878 hits: 11-22 to 01-19] none[3] none:none
UPX| none trace

T:13:52:00 Win2K-f 123.204.157.247 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:06:00 Win2K-f 190.49.107.223 (COM.AR):
TELEFONICA DE ARGENTINA,
MIRAMAR, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:10:00 Win2K-f 88.30.101.43 (RIMA-TDE.NET):
TELEFONICA MOVILES ESPANA (NCC#2007041930),
ES. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:16:00 Win2K-f 189.62.47.131 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1878 hits: 11-22 to 01-19] none[3] none:none
UPX| none trace

14:17:00 Win2K-f 58.51.89.84 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:23:00 Win2K-f 123.204.157.247 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:38:00 Win2K-f 81.94.131.79 (ASTEL.RU):
ASTEL TELECOM (MOSCOW RUSSIA),
MOSCOW, MOSKVA, RU. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1673 hits: 11-24 to 01-19] none[3] none:none
UPX| none trace

T:14:42:00 Win2K-f 88.30.101.43 (RIMA-TDE.NET):
TELEFONICA MOVILES ESPANA (NCC#2007041930),
ES. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:43:00 Win2K-f 82.3.20.52 (NTL.COM):
NTL INFRASTRUCTURE - CARDIFF,
UK. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:224 hits: 11-20 to 01-19] none[3] none:none
StarForce| none trace

14:44:00 Win2K-f 85.17.217.12 (LEASEWEB.COM):
LEASEWEB,
AMSTERDAM, NOORD-HOLLAND, NL. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:224 hits: 11-20 to 01-19] none[3] none:none
StarForce| none trace

T:14:47:00 Win2K-f 201.254.60.96 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:56:00 Win2K-f 81.97.217.31 (NTL.COM):
NTL INFRASTRUCTURE - ACTON,
UK. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:01:00 Win2K-f 201.221.116.165 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:758 hits: 11-21 to 01-19] none[3] none:none
StarForce| none trace

T:15:01:00 Win2K-f 219.86.213.177 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:02:00 Win2K-f 96.51.92.70 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:06:00 Win2K-f 96.51.92.70 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:13:00 Win2K-f 219.86.213.177 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:19:00 Win2K-f 221.127.91.119 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:23:00 Win2K-f 81.97.217.31 (NTL.COM):
NTL INFRASTRUCTURE - ACTON,
UK. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:25:00 Win2K-f 118.232.62.145 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:30:00 Win2K-f 174.36.193.115 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:31:00 Win2K-f 146.82.90.29 (GBLX.NET):
GLOBAL CROSSING,
US. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:854 hits: 11-22 to 01-19] none[3] none:none
UPX| none trace

15:34:00 Win2K-f 200.71.99.13 (TELESAT.COM.CO):
COLDECON,
CALI, VALLE DEL CAUCA, CO. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:38:00 Win2K-f 114.121.91.197 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:41:00 Win2K-f 219.86.80.82 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:41:00 Win2K-f 59.127.75.39 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:44:00 Win2K-f 211.241.184.77 (KRLINE.NET):
KRNIC,
KR. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:46:00 Win2K-f 211.115.64.107 (-):
KIDC-INFRA-SERVERHOSTING-INEMPIRE,
SEOUL, KYONGGI-DO, KR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:57:00 Win2K-f 123.204.6.43 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:00:00 Win2K-f 146.82.90.29 (GBLX.NET):
GLOBAL CROSSING,
US. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:854 hits: 11-22 to 01-19] none[3] none:none
UPX| none trace

T:16:07:00 Win2K-f 81.44.15.189 (RIMA-TDE.NET):
TELEFONICA DE ESPANA SAU,
LAS PALMAS, CANARY ISLANDS, ES. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:992 hits: 11-30 to 01-19] none[3] none:none
StarForce| none trace

T:16:25:00 Win2K-f 222.216.13.39 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:25:00 Win2K-f 189.15.208.5 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:535 hits: 11-26 to 01-19] none[3] none:none
Armadillo| none trace

16:27:00 Win2K-f 122.116.28.141 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:31:00 Win2K-f 61.120.126.98 (KONPIRA.OR.JP):
SYUKYOHOJIN KOTOHIRAGU,
JP. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:38:00 Win2K-f 190.30.90.144 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. (DIAL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:41:00 Win2K-f 60.250.196.130 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:44:00 Win2K-f 190.30.90.144 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. (DIAL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:54:00 Win2K-f 122.116.28.141 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:01:00 Win2K-f 189.113.228.47 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:02:00 Win2K-f 74.63.252.86 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1673 hits: 11-24 to 01-19] none[3] none:none
UPX| none trace

17:23:00 Win2K-f 190.0.73.179 (ASTER.COM.DO):
ASTER,
SANTO DOMINGO, DISTRITO NACIONAL, DO. n/a 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball none none none none none none none

17:24:00 Win2K-f 201.255.124.254 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:992 hits: 11-30 to 01-19] none[3] none:none
StarForce| none trace

17:25:00 Win2K-f 87.97.247.189 (GGBIT.NET):
EKK CATV PLOVDIV,
PLOVDIV, PLOVDIV, BG. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:30:00 Win2K-f 218.20.140.56 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:31:00 Win2K-f 186.9.16.204 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:48:00 Win2K-f 123.195.2.193 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:48:00 Win2K-f 190.27.189.164 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:48:00 Win2K-f 66.83.42.228 (NUVOX.NET):
NUVOX COMMUNICATIONS INC,
GREENVILLE, SOUTH CAROLINA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:53:00 Win2K-f 190.3.99.188 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1673 hits: 11-24 to 01-19] none[3] none:none
UPX| none trace

T:17:53:00 Win2K-f 125.19.77.51 (125.AIRTELBROADBAND.IN):
BHARTI TELEVENTURES LTD. - ABTS,
DELHI, DELHI, IN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:53:00 Win2K-f 202.141.224.40 (MULTI.NET.PK):
MULTINETBROADBAND,
KARACHI, SINDH, PK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:04:00 Win2K-f 61.216.235.171 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:05:00 Win2K-f 59.113.115.78 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:09:00 Win2K-f 60.189.118.235 (163DATA.COM.CN):
CHINANET-ZJ TAIZHOU NODE NETWORK,
CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:854 hits: 11-22 to 01-19] none[3] none:none
UPX| none trace

T:18:14:00 Win2K-f 116.214.24.132 (TULIPCONNECT.COM):
IPVPN/INTERNET SERVICE PROVIDER,
IN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:17:00 Win2K-f 61.216.235.171 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:24:00 Win2K-f 190.128.42.131 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:29:00 Win2K-f 208.73.49.54 (THOMASJEFFERSONPLANET.COM):
TRIPLE8 NETWORK INC,
GARDENA, CALIFORNIA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:29:00 Win2K-f 190.27.189.164 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:30:00 Win2K-f 81.97.217.31 (NTL.COM):
NTL INFRASTRUCTURE - ACTON,
UK. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:40:00 Win2K-f 190.157.175.121 (CABLE.NET.CO):
TV CABLE S.A,
CO. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:41:00 Win2K-f 220.136.174.175 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:42:00 Win2K-f 200.78.229.220 (AVANTEL.NET.MX):
ACCENTURE SC,
MX. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:46:00 Win2K-f 190.128.42.131 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:54:00 Win2K-f 186.9.149.11 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1878 hits: 11-22 to 01-19] none[3] none:none
UPX| none trace

18:57:00 Win2K-f 116.214.24.132 (TULIPCONNECT.COM):
IPVPN/INTERNET SERVICE PROVIDER,
IN. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
116.214.24.132:8344
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:58:00 Win2K-f 201.74.101.88 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:02:00 Win2K-f 59.113.115.78 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:09:00 Win2K-f 84.120.71.31 (ONO.COM):
CABLEUROPA - ONO,
VALENCIA, VALENCIA, ES. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:09:00 Win2K-f 124.81.99.169 (CARSURIN.COM):
PT INDOSAT MEGA MEDIA,
ID. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:13:00 Win2K-f 200.78.229.220 (AVANTEL.NET.MX):
ACCENTURE SC,
MX. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:13:00 Win2K-f 84.120.71.31 (ONO.COM):
CABLEUROPA - ONO,
VALENCIA, VALENCIA, ES. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:18:00 Win2K-f 123.195.2.193 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:18:00 Win2K-f 66.83.42.228 (NUVOX.NET):
NUVOX COMMUNICATIONS INC,
GREENVILLE, SOUTH CAROLINA, US. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:26:00 Win2K-f 61.120.126.98 (KONPIRA.OR.JP):
SYUKYOHOJIN KOTOHIRAGU,
JP. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:42:00 Win2K-f 202.141.224.40 (MULTI.NET.PK):
MULTINETBROADBAND,
KARACHI, SINDH, PK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:47:00 Win2K-f 150.101.219.3 (ON.NET):
TPA,
MELBOURNE, VICTORIA, AU. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:54:00 Win2K-f 89.106.107.170 (-):
OPTILINK,
BG. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:758 hits: 11-21 to 01-19] none[3] none:none
StarForce| none trace

19:55:00 Win2K-f 114.121.12.135 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:01:00 Win2K-f 74.63.216.234 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:04:00 Win2K-f 190.97.134.190 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:06:00 Win2K-f 201.89.222.66 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1878 hits: 11-22 to 01-19] none[3] none:none
UPX| none trace

T:20:06:00 Win2K-f 121.228.61.6 (163DATA.COM.CN):
CHINANET JIANGSU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:08:00 Win2K-f 89.106.107.170 (-):
OPTILINK,
BG. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:758 hits: 11-21 to 01-19] none[3] none:none
StarForce| none trace

20:10:00 Win2K-f 122.52.49.142 (PLDT.NET):
IPG,
PH. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:11:00 Win2K-f 67.112.174.28 (PACBELL.NET):
WEINGART CENTER ASSOC,
SAN FRANCISCO, CALIFORNIA, US. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:17:00 Win2K-f 61.19.249.79 (THAITSUNAMI.COM):
CAT TELECOM DATA COMM. DEPT INTRENET OFFICE,
TH. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:21:00 Win2K-f 61.120.126.98 (KONPIRA.OR.JP):
SYUKYOHOJIN KOTOHIRAGU,
JP. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:22:00 Win2K-f 88.50.185.91 (BUSINESS.TELECOMITALIA.IT):
INTERBUSINESS,
ROME, LAZIO, IT. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 21 of 39 0a0ae7a053
NEW none[3] none:none
UPX| none trace

T:20:26:00 Win2K-f 190.49.19.9 (COM.AR):
TELEFONICA DE ARGENTINA,
CIPOLLETTI, NEUQUEN, AR. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:32:00 Win2K-f 190.225.113.168 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:535 hits: 11-26 to 01-19] none[3] none:none
Armadillo| none trace

20:44:00 Win2K-f 67.112.174.28 (PACBELL.NET):
WEINGART CENTER ASSOC,
SAN FRANCISCO, CALIFORNIA, US. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:64.246.48.99:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
4 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:51:00 Win2K-f 59.114.46.184 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:54:00 Win2K-f 118.160.32.143 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:55:00 Win2K-f 125.127.48.15 (163DATA.COM.CN):
CHINANET-ZJ TAIZHOU NODE NETWORK,
CN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:758 hits: 11-21 to 01-19] none[3] none:none
StarForce| none trace

21:01:00 Win2K-f 123.204.79.76 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:04:00 Win2K-f 72.21.57.34 (LAYEREDTECH.COM):
LAYERED TECHNOLOGIES INC,
ALEXANDRIA, VIRGINIA, US. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:04:00 Win2K-f 122.121.235.144 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:05:00 Win2K-f 190.51.241.201 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:17:00 Win2K-f 190.6.154.10 (TRICOM.NET):
TRICOM,
DO. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:25:00 Win2K-f 77.72.245.224 (-):
NOVAKTV,
RU. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:27:00 Win2K-f 58.62.213.83 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:27:00 Win2K-f 74.63.216.234 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:36:00 Win2K-f 61.31.170.50 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1878 hits: 11-22 to 01-19] none[3] none:none
UPX| none trace

T:21:39:00 Win2K-f 200.112.148.147 (NET.AR):
BROADBANDTECH S. A,
MENDOZA, MENDOZA, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:992 hits: 11-30 to 01-19] none[3] none:none
StarForce| none trace

21:43:00 Win2K-f 190.225.113.168 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:535 hits: 11-26 to 01-19] none[3] none:none
Armadillo| none trace

T:21:54:00 Win2K-f 125.232.90.23 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:58:00 Win2K-f 190.90.197.63 (EQUITEL.COM.CO):
INTERNEXA S.A. E.S.P,
CO. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:03:00 Win2K-f 200.112.148.147 (NET.AR):
BROADBANDTECH S. A,
MENDOZA, MENDOZA, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:992 hits: 11-30 to 01-19] none[3] none:none
StarForce| none trace

T:22:03:00 Win2K-f 61.31.170.50 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1878 hits: 11-22 to 01-19] none[3] none:none
UPX| none trace

T:22:14:00 Win2K-f 190.51.241.201 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:14:00 Win2K-f 118.232.5.157 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:19:00 Win2K-f 61.120.126.98 (KONPIRA.OR.JP):
SYUKYOHOJIN KOTOHIRAGU,
JP. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:19:00 Win2K-f 59.124.243.47 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:992 hits: 11-30 to 01-19] none[3] none:none
StarForce| none trace

22:26:00 Win2K-f 202.78.122.122 (SKYINET.NET):
SKY INTERNET,
MANILA, MANILA, PH. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:32:00 Win2K-f 114.48.16.192 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1673 hits: 11-24 to 01-19] none[3] none:none
UPX| none trace

22:36:00 Win2K-f 114.44.187.78 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1673 hits: 11-24 to 01-19] none[3] none:none
UPX| none trace

T:22:44:00 Win2K-f 61.95.178.67 (WLS.NET.IN):
WIRELINE SOLUTIONS INDIA PVT LTD,
COIMBATORE, TAMIL NADU, IN. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 71afca1665
[Firefox:100 hits: 11-23 to 01-14] none[3] none:none
StarForce| none trace

22:52:00 Win2K-f 38.103.173.2 (COGENTCO.COM):
PERFORMANCE SYSTEMS INTERNATIONAL INC,
WASHINGTON, DISTRICT OF COLUMBIA, US. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:55:00 Win2K-f 190.140.184.82 (CABLEONDA.NET):
CABLE ONDA,
PA. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:00:00 Win2K-f 77.72.245.224 (-):
NOVAKTV,
RU. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:00:00 Win2K-f 194.8.75.103 (LIX.LV):
LAST RESORT LOCAL REGISTRY,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1878 hits: 11-22 to 01-19] none[3] none:none
UPX| none trace

23:05:00 Win2K-f 190.139.155.170 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1673 hits: 11-24 to 01-19] none[3] none:none
UPX| none trace

T:23:12:00 Win2K-f 190.140.184.82 (CABLEONDA.NET):
CABLE ONDA,
PA. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:20:00 Win2K-f 86.20.105.202 (NTL.COM):
NTL INFRASTRUCTURE - BIRMINGHAM,
UK. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:212 hits: 12-19 to 01-19] none[3] none:none
MEW| none trace

23:21:00 Win2K-f 190.90.109.98 (EQUITEL.COM.CO):
INTERNEXA S.A. E.S.P,
CO. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:22:00 Win2K-f 125.232.90.23 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:29:00 Win2K-f 190.55.11.158 (COM.AR):
TELECENTRO S.A,
BUENOS AIRES, BUENOS AIRES, AR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1673 hits: 11-24 to 01-19] none[3] none:none
UPX| none trace

23:35:00 Win2K-f 91.17.79.101 (T-IPCONNECT.DE):
DEUTSCHE TELEKOM AG,
DE. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:758 hits: 11-21 to 01-19] none[3] none:none
StarForce| none trace

T:23:38:00 Win2K-f 203.73.207.235 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:39:00 Win2K-f 66.96.207.33 (HOSTNOC.NET):
BURSTNET TECHNOLOGIES INC,
BLOOMSBURG, PENNSYLVANIA, US. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:66.96.207.33:5409
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:52:00 Win2K-f 123.204.81.140 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:53:00 Win2K-f 59.105.82.37 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:58:00 Win2K-f 59.105.82.37 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18356 hits: 11-20 to 01-19] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace