Multiperspective Malware Analysis Page

Welcome to the Cyber-TA
SRI's Multiperspective Malware Infection Analysis Page

UNCENSORED PAGE

<Click here: to download BotHunter>

22 January 2009
<prev> <next>

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Daily Summary Files: [DNS Lookups & Failed Connects] [ Attacker IPs ] [C&C Servers] [Binary Digests]
Cumulative Summary Files: [DNS Lookup Log] [Attacker IP Log] [C&C Server Log] [Antivirus Detection] [Code Segment Overlap]
[Behavioral Clusters] [Binary Digest Log]

[See Country Codes ]

Time
Victim
OS
Infection
Source
C&C
Server
DNS Lookups &
Failed Connects Infection
Port
Packet
Trace
Detection
Signatures
Infection
Chatter
BotHunter
Analysis
Behavioral
Cluster
Forensic
Logs
Antivirus
Labels
Packed Malware_Binary Unpacked egg.exe
Unpacked egg.asm
Packer PEID
Data Strings
Syscall Trace

T:00:06:00 Win2K-f 79.16.207.101 (SRC.ORG):
TELECOM ITALIA NET,
ROME, LAZIO, IT. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 fcb4920986
[Firefox:68 hits: 11-21 to 01-19] none[3] none:none
UPX| none trace

00:12:00 Win2K-f 122.116.243.42 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:14:00 Win2K-f 59.120.196.83 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 fcb4920986
[Firefox:68 hits: 11-21 to 01-19] none[3] none:none
UPX| none trace

00:16:00 Win2K-f 114.58.0.146 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 22 of 38 daa61be9ff
NEW none[3] none:none
UPX| none trace

T:00:20:00 Win2K-f 84.74.122.207 (HISPEED.CH):
CABLECOMMAIN-NET,
ZURICH, ZURICH, CH. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:452 hits: 11-25 to 01-21] none[3] none:none
Armadillo| none trace

00:32:00 Win2K-f 114.44.74.101 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:34:00 Win2K-f 64.126.111.82 (AESHOST.NET):
ACCELERATED ENTERPRISES SOLUTIONS,
OVERLAND PARK, KANSAS, US. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:43:00 Win2K-f 200.71.105.128 (TELESAT.COM.CO):
COLDECON,
CALI, VALLE DEL CAUCA, CO. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:54:00 Win2K-f 124.115.51.201 (163DATA.COM.CN):
CHINANET SHANXI(SN) PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:04:00 Win2K-f 190.3.79.59 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
AR. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

01:07:00 Win2K-f 118.1.221.154 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:13:00 Win2K-f 122.122.159.126 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:13:00 Win2K-f 220.249.185.40 (-):
FUZHOU CITY FUJIAN PROVINCIAL NETWORK OF CHINA NETCOM,
FUZHOU, FUJIAN, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:19:00 Win2K-f 85.95.107.100 (IZRSOLUTIONS.COM):
4TH WAVE TECHNOLOGIES LTD,
SOUTHAMPTON, ENGLAND, UK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:27:00 Win2K-f 60.179.160.223 (163DATA.COM.CN):
CHINANET-ZJ NINGBO NODE NETWORK,
NINGBO, ZHEJIANG, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:31:00 Win2K-f 62.87.35.20 (AIRTEL.NET):
GLOBAL MOBILE OPERATOR,
BARCELONA, CATALUñA, ES. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:48:00 Win2K-f 187.35.227.185 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:547 hits: 11-26 to 01-21] none[3] none:none
Armadillo| none trace

T:01:50:00 Win2K-f 117.42.117.139 (163DATA.COM.CN):
CHINANET JIANGXI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

01:51:00 Win2K-f 190.224.196.65 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:01:00 Win2K-f 210.244.14.223 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:08:00 Win2K-f 91.66.146.150 (SUPERKABEL.DE):
KABEL DEUTSCHLAND BREITBAND SERVICE GMBH,
DE. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:17:00 Win2K-f 115.113.100.35 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:17:00 Win2K-f 122.117.165.201 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:772 hits: 11-21 to 01-21] none[3] none:none
StarForce| none trace

02:20:00 Win2K-f 122.117.165.201 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:772 hits: 11-21 to 01-21] none[3] none:none
StarForce| none trace

T:02:31:00 Win2K-f 61.231.251.231 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:772 hits: 11-21 to 01-21] none[3] none:none
StarForce| none trace

T:02:35:00 Win2K-f 74.55.12.98 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:50:00 Win2K-f 59.120.196.83 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 fcb4920986
[Firefox:68 hits: 11-21 to 01-19] none[3] none:none
UPX| none trace

02:50:00 Win2K-f 61.57.92.93 (LSC.NET.TW):
TBCOM-NET,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:52:00 Win2K-f 94.102.7.23 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:54:00 Win2K-f 64.126.111.82 (AESHOST.NET):
ACCELERATED ENTERPRISES SOLUTIONS,
OVERLAND PARK, KANSAS, US. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:58:00 Win2K-f 59.120.239.144 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:02:00 Win2K-f 220.249.185.40 (-):
FUZHOU CITY FUJIAN PROVINCIAL NETWORK OF CHINA NETCOM,
FUZHOU, FUJIAN, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:05:00 Win2K-f 60.179.160.223 (163DATA.COM.CN):
CHINANET-ZJ NINGBO NODE NETWORK,
NINGBO, ZHEJIANG, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:17:00 Win2K-f 59.120.239.144 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:18:00 Win2K-f 84.120.194.210 (ONO.COM):
CABLEUROPA - ONO,
VALENCIA, VALENCIA, ES. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:20:00 Win2K-f 187.35.227.185 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:547 hits: 11-26 to 01-21] none[3] none:none
Armadillo| none trace

03:28:00 Win2K-f 66.96.251.181 (-):
CYCLOP NETWORKS LTD,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:772 hits: 11-21 to 01-21] none[3] none:none
StarForce| none trace

03:33:00 Win2K-f 204.14.69.102 (-):
AMSPLUS INC,
SALEM, NEW HAMPSHIRE, US. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

T:03:42:00 Win2K-f 196.25.223.116 (SOFT.CO.ZA):
TELKOM SA LTD,
DURBAN, KWAZULU-NATAL, ZA. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:772 hits: 11-21 to 01-21] none[3] none:none
StarForce| none trace

03:49:00 Win2K-f 74.55.12.98 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:02:00 Win2K-f 190.220.43.225 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

T:04:06:00 Win2K-f 118.1.221.154 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:06:00 Win2K-f 66.96.251.181 (-):
CYCLOP NETWORKS LTD,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:772 hits: 11-21 to 01-21] none[3] none:none
StarForce| none trace

04:12:00 Win2K-f 81.97.217.31 (NTL.COM):
NTL INFRASTRUCTURE - ACTON,
UK. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80
GB:81.97.217.31:8875 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:20:00 Win2K-f 59.114.146.156 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:27:00 Win2K-f 117.86.92.155 (163DATA.COM.CN):
CHINANET JIANGSU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:36:00 Win2K-f 59.114.146.156 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:38:00 Win2K-f 61.57.92.93 (LSC.NET.TW):
TBCOM-NET,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:51:00 Win2K-f 94.102.7.23 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:52:00 Win2K-f 84.120.194.210 (ONO.COM):
CABLEUROPA - ONO,
VALENCIA, VALENCIA, ES. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:54:00 Win2K-f 200.112.150.34 (NET.AR):
BROADBANDTECH S. A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1017 hits: 11-30 to 01-21] none[3] none:none
StarForce| none trace

04:58:00 Win2K-f 194.54.56.110 (KABLONET.COM.TR):
CABLE OPERATOR NETWORK OF TURK TELEKOM,
ESKISEHIR, ESKISEHIR, TR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:06:00 Win2K-f 60.54.3.68 (TM.NET.MY):
TELEKOM MALAYSIA BERHAD,
KUALA LUMPUR, WILAYAH PERSEKUTUAN, MY. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:29:00 Win2K-f 210.55.78.120 (QUICKER.NET.NZ):
WORLD-NET LIMITED,
AUCKLAND, AUCKLAND, NZ. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
NZ:210.55.78.120:9226
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:32:00 Win2K-f 190.128.41.234 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1908 hits: 11-22 to 01-21] none[3] none:none
UPX| none trace

T:05:33:00 Win2K-f 67.91.7.3 (ALGX.NET):
XO COMMUNICATIONS,
US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:35:00 Win2K-f 114.44.146.130 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:35:00 Win2K-f 210.55.78.120 (QUICKER.NET.NZ):
WORLD-NET LIMITED,
AUCKLAND, AUCKLAND, NZ. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:41:00 Win2K-f 114.44.146.130 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:48:00 Win2K-f 123.97.215.3 (HZ.ZJ.CN):
CHINANET ZHEJIANG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:53:00 Win2K-f 123.195.61.85 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:59:00 Win2K-f 81.19.221.18 (ALPHA-NETWORKS.CO.UK):
FOURU,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:00:00 Win2K-f 203.70.148.230 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:13:00 Win2K-f 116.193.68.172 (-):
QUANG TRUNG SOFTWARE CITY DEVELOPMENT COMPANY,
VN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 26 of 38 c645a73bd2
[Firefox: 5 hits: 12-22 to 01-15] none[3] none:none
tElock| none trace

T:06:18:00 Win2K-f 123.195.61.85 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:18:00 Win2K-f 81.19.221.18 (ALPHA-NETWORKS.CO.UK):
FOURU,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:24:00 Win2K-f 86.112.255.56 (-):
SUPANET LONDON ADSL,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:25:00 Win2K-f 116.193.68.172 (-):
QUANG TRUNG SOFTWARE CITY DEVELOPMENT COMPANY,
VN. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 26 of 38 c645a73bd2
[Firefox: 5 hits: 12-22 to 01-15] none[3] none:none
tElock| none trace

T:06:34:00 Win2K-f 117.86.92.155 (163DATA.COM.CN):
CHINANET JIANGSU PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:37:00 Win2K-f 212.32.212.88 (SAMTEL.RU):
NETWORK OF THE SF OAO VOLGATELECOM,
RU. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:42:00 Win2K-f 80.234.18.246 (-):
POLICOM SPA IS AN INTERNET SERVICE PROVIDER,
VENICE, VENETO, IT. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

06:51:00 Win2K-f 190.68.70.147 (TELECOM.COM.CO):
COLOMBIA TELECOMUNICACIONES S.A. ESP,
CO. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:03:00 Win2K-f 124.10.82.215 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:18:00 Win2K-f 123.97.215.3 (HZ.ZJ.CN):
CHINANET ZHEJIANG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:22:00 Win2K-f 186.9.187.16 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1908 hits: 11-22 to 01-21] none[3] none:none
UPX| none trace

07:22:00 Win2K-f 222.85.239.190 (AGENT1.GZ.CN):
CHINANET GUIZHOU PROVINCE NETWORK,
GUIZHOU, GUIZHOU, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:41:00 Win2K-f 122.121.213.165 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:45:00 Win2K-f 95.37.87.253 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:47:00 Win2K-f 87.6.173.173 (RETAIL.TELECOMITALIA.IT):
TELECOM ITALIA S.P.A. TIN EASY LITE,
VIAREGGIO, TOSCANA, IT. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:20:00 Win2K-f 122.123.193.118 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:20:00 Win2K-f 119.86.236.66 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1908 hits: 11-22 to 01-21] none[3] none:none
UPX| none trace

T:08:25:00 Win2K-f 200.112.151.156 (NET.AR):
BROADBANDTECH S. A,
AR. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1017 hits: 11-30 to 01-21] none[3] none:none
StarForce| none trace

08:39:00 Win2K-f 66.98.150.14 (WEBHELP.PL):
EVERYONES INTERNET,
HOUSTON, TEXAS, US. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:66.98.150.14:6576
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:46:00 Win2K-f 66.98.150.14 (WEBHELP.PL):
EVERYONES INTERNET,
HOUSTON, TEXAS, US. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:47:00 Win2K-f 94.28.148.33 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:53:00 Win2K-f 119.86.236.66 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1908 hits: 11-22 to 01-21] none[3] none:none
UPX| none trace

T:09:07:00 Win2K-f 78.58.173.28 (ZEBRA.LT):
LIETUVOS,
LT. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

09:11:00 Win2K-f 87.97.203.238 (GGBIT.NET):
EKK CATV PLOVDIV,
PLOVDIV, PLOVDIV, BG. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:547 hits: 11-26 to 01-21] none[3] none:none
Armadillo| none trace

09:20:00 Win2K-f 78.58.173.28 (ZEBRA.LT):
LIETUVOS,
LT. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

T:09:22:00 Win2K-f 88.62.139.26 (BUSINESS.TELECOMITALIA.IT):
INTERBUSINESS,
IT. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:39:00 Win2K-f 59.116.46.164 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:45:00 Win2K-f 84.3.202.53 (T-ONLINE.HU):
HUNGARIAN TELECOM,
HU. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:52:00 Win2K-f 118.160.203.223 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:53:00 Win2K-f 122.121.213.165 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:54:00 Win2K-f 190.136.37.30 (-):
TELECOM-CEB,
AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:08:00 Win2K-f 200.217.213.202 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:09:00 Win2K-f 203.67.114.230 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:26:00 Win2K-f 189.30.145.208 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

10:27:00 Win2K-f 203.67.114.230 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:36:00 Win2K-f 140.109.227.145 (TTCT.EDU.TW):
MINISTRY OF EDUCATION COMPUTER CENTER,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:51:00 Win2K-f 94.28.148.33 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:02:00 Win2K-f 190.0.79.144 (ASTER.COM.DO):
ASTER,
SANTO DOMINGO, DISTRITO NACIONAL, DO. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

11:07:00 Win2K-f 58.26.238.3 (TM.NET.MY):
TMNET TELEKOM MALAYSIA,
KUALA LUMPUR, WILAYAH PERSEKUTUAN, MY. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

11:10:00 Win2K-f 189.30.145.208 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

T:11:15:00 Win2K-f 87.97.203.238 (GGBIT.NET):
EKK CATV PLOVDIV,
PLOVDIV, PLOVDIV, BG. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:547 hits: 11-26 to 01-21] none[3] none:none
Armadillo| none trace

T:11:21:00 Win2K-f 61.58.102.62 (UBBN.NET):
UNION CABLE TV CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1017 hits: 11-30 to 01-21] none[3] none:none
StarForce| none trace

11:28:00 Win2K-f 116.75.166.242 (JWS.COM):
HATHWAY IP OVER CABLE INTERNET ACCESS SERVICE,
IN. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:33:00 Win2K-f 219.71.235.6 (NVWTV.COM.TW):
HOSHIN GIGAMEDIA CENTER INC,
TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:33:00 Win2K-f 118.171.125.10 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:38:00 Win2K-f 60.198.0.169 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1908 hits: 11-22 to 01-21] none[3] none:none
UPX| none trace

T:11:43:00 Win2K-f 78.88.248.188 (-):
VECTRA TECHNOLOGIE S.A,
PL. n/a US:www.maxmind.com
US:67.15.94.80:80
EU:78.88.248.188:6759 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:45:00 Win2K-f 94.76.213.230 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:02:00 Win2K-f 213.42.197.220 (-):
MAJAN PRINTING AND PACKAGING,
DUBAI, DUBAI, AE. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:547 hits: 11-26 to 01-21] none[3] none:none
Armadillo| none trace

T:12:02:00 Win2K-f 60.198.0.169 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1908 hits: 11-22 to 01-21] none[3] none:none
UPX| none trace

12:14:00 Win2K-f 190.51.76.56 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

12:17:00 Win2K-f 200.123.69.85 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
LA PLATA, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1908 hits: 11-22 to 01-21] none[3] none:none
UPX| none trace

T:12:20:00 Win2K-f 118.160.203.223 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:33:00 Win2K-f 200.58.85.9 (SUPERNET.COM.BO):
COMTECO LTDA,
LA PAZ, LA PAZ, BO. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

T:12:34:00 Win2K-f 64.212.184.139 (GBLX.NET):
GLOBAL CROSSING,
NAPLES, NEW YORK, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

T:12:36:00 Win2K-f 123.204.146.8 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:43:00 Win2K-f 66.90.104.50 (MM-NEWS.NET):
FDC SERVERS.NET LLC,
RALEIGH, NORTH CAROLINA, US. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:45:00 Win2K-f 81.106.250.40 (NTL.COM):
NTL INFRASTRUCTURE - RENFREW,
NEWPORT, WALES, UK. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:02:00 Win2K-f 77.23.240.203 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:04:00 Win2K-f 190.25.89.239 (ETB.NET.CO):
ETB - COLOMBIA,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:05:00 Win2K-f 92.124.3.114 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:13:00 Win2K-f 190.64.9.133 (ANTELDATA.NET.UY):
ADMINISTRACION NACIONAL DE TELECOMUNICACIONES,
MONTEVIDEO, MONTEVIDEO, UY. (DIAL) n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:19:00 Win2K-f 59.104.121.143 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:21:00 Win2K-f 77.53.34.74 (-):
PERFECT COMMUNICATION SWEDEN AB,
SE. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:27:00 Win2K-f 86.121.36.37 (RDSNET.RO):
RCS-RDS-FIBERLINK,
BUCHAREST, BUCURESTI, RO. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:36:00 Win2K-f 190.51.76.56 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

13:37:00 Win2K-f 219.71.235.6 (NVWTV.COM.TW):
HOSHIN GIGAMEDIA CENTER INC,
TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:39:00 Win2K-f 190.64.9.133 (ANTELDATA.NET.UY):
ADMINISTRACION NACIONAL DE TELECOMUNICACIONES,
MONTEVIDEO, MONTEVIDEO, UY. (DIAL) n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:39:00 Win2K-f 122.89.193.164 (JWS.COM):
CHINA TIETONG TELECOMMUNICATIONS CORPORATION,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:42:00 Win2K-f 212.62.123.168 (-):
ICCSOLUTIONS,
SA. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:48:00 Win2K-f 94.85.201.51 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:48:00 Win2K-f 200.106.188.85 (SUPERCABLETV.NET.CO):
SUPERCABLE TELECOMUNICACIONES,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1017 hits: 11-30 to 01-21] none[3] none:none
StarForce| none trace

T:13:49:00 Win2K-f 124.8.185.51 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:01:00 Win2K-f 200.71.106.52 (TELESAT.COM.CO):
COLDECON,
CALI, VALLE DEL CAUCA, CO. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:07:00 Win2K-f 66.90.103.169 (ON-DEMAND-TECH.COM):
FDC SERVERS.NET LLC,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:08:00 Win2K-f 190.220.109.252 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

T:14:19:00 Win2K-f 190.208.80.78 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:19:00 Win2K-f 190.136.144.85 (NET.AR):
APOLO -GOLD-TELECOM-PER,
AR. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:20:00 Win2K-f 116.214.24.132 (TULIPCONNECT.COM):
IPVPN/INTERNET SERVICE PROVIDER,
IN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:22:00 Win2K-f 200.44.156.147 (CANTV.NET):
CANTV SERVICIOS VENEZUELA,
VE. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:23:00 Win2K-f 190.24.119.164 (ETB.NET.CO):
ETB - COLOMBIA,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1017 hits: 11-30 to 01-21] none[3] none:none
StarForce| none trace

T:14:35:00 Win2K-f 77.23.240.203 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:36:00 Win2K-f 114.47.210.10 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:38:00 Win2K-f 220.128.128.35 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:38:00 Win2K-f 190.128.9.88 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:48:00 Win2K-f 190.132.252.66 (ADINET.COM.UY):
ADMINISTRACION NACIONAL DE TELECOMUNICACIONES,
MONTEVIDEO, MONTEVIDEO, UY. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

14:52:00 Win2K-f 190.90.197.217 (EQUITEL.COM.CO):
INTERNEXA S.A. E.S.P,
CO. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1017 hits: 11-30 to 01-21] none[3] none:none
StarForce| none trace

T:14:53:00 Win2K-f 86.14.228.146 (NTL.COM):
NTL INFRASTRUCTURE - CAMBRIDGE,
IPSWICH, ENGLAND, UK. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:04:00 Win2K-f 122.89.193.164 (JWS.COM):
CHINA TIETONG TELECOMMUNICATIONS CORPORATION,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:07:00 Win2K-f 190.229.103.196 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1908 hits: 11-22 to 01-21] none[3] none:none
UPX| none trace

T:15:21:00 Win2K-f 190.24.119.164 (ETB.NET.CO):
ETB - COLOMBIA,
SANTAFé DE BOGOTá, DISTRITO CAPITAL, CO. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1017 hits: 11-30 to 01-21] none[3] none:none
StarForce| none trace

15:22:00 Win2K-f 92.53.42.51 (IKBCC.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:24:00 Win2K-f 200.71.99.158 (TELESAT.COM.CO):
COLDECON,
CALI, VALLE DEL CAUCA, CO. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:26:00 Win2K-f 151.21.175.126 (21-151.LIBERO.IT):
FREE INTERNET DIAL-UP SERVICES,
FLORENCE, TOSCANA, IT. (DIAL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:859 hits: 11-22 to 01-21] none[3] none:none
UPX| none trace

15:35:00 Win2K-f 190.225.113.199 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:226 hits: 11-20 to 01-20] none[3] none:none
StarForce| none trace

T:15:39:00 Win2K-f 190.136.144.85 (NET.AR):
APOLO -GOLD-TELECOM-PER,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:51:00 Win2K-f 186.0.9.254 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:221 hits: 12-19 to 01-21] none[3] none:none
MEW| none trace

T:15:58:00 Win2K-f 190.51.76.56 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

16:04:00 Win2K-f 190.184.48.82 (-):
CABLENET S.A,
NI. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 16 of 39 9a9f93c4d2
[Firefox:32 hits: 12-23 to 01-19] none[3] none:none
UPX| none trace

T:16:06:00 Win2K-f 190.49.127.37 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:09:00 Win2K-f 94.102.7.120 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:19:00 Win2K-f 96.48.173.142 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:26:00 Win2K-f 96.48.173.142 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:32:00 Win2K-f 85.117.58.94 (DSL.ONLINE.GE):
GEORGIA ONLINE ADSL NETWORK,
GE. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1908 hits: 11-22 to 01-21] none[3] none:none
UPX| none trace

T:16:35:00 Win2K-f 212.62.123.168 (-):
ICCSOLUTIONS,
SA. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:38:00 Win2K-f 190.2.0.74 (IPLANNETWORKS.NET):
NSS S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:40:00 Win2K-f 74.127.36.28 (SPEAKEASY.NET):
US. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1017 hits: 11-30 to 01-21] none[3] none:none
StarForce| none trace

T:16:47:00 Win2K-f 186.9.28.197 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:53:00 Win2K-f 210.55.78.69 (QUICKER.NET.NZ):
WORLD-NET LIMITED,
AUCKLAND, AUCKLAND, NZ. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:57:00 Win2K-f 117.67.204.171 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:12:00 Win2K-f 190.153.120.116 (-):
. n/a US:www.maxmind.com
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
3 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:17:00 Win2K-f 96.49.29.18 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:23:00 Win2K-f 116.30.3.92 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:26:00 Win2K-f 190.227.31.46 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:30:00 Win2K-f 190.55.227.104 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

T:17:31:00 Win2K-f 217.31.55.10 (IOL.CZ):
PROVIDER LOCAL REGISTRY,
CZ. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

17:32:00 Win2K-f 217.31.55.10 (IOL.CZ):
PROVIDER LOCAL REGISTRY,
CZ. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

T:17:33:00 Win2K-f 210.55.78.69 (QUICKER.NET.NZ):
WORLD-NET LIMITED,
AUCKLAND, AUCKLAND, NZ. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:37:00 Win2K-f 61.224.101.36 (HINET.NET):
DATA COMMUNICATION BUSINESS GROUP CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:46:00 Win2K-f 89.20.107.38 (PERMONLINE.RU):
DYNAMIC POOL FOR ADSL CLIENTS,
RU. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:50:00 Win2K-f 81.9.129.227 (CM-81-9-134-10.TELECABLE.ES):
TELECABLE,
GIJON, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:53:00 Win2K-f 190.153.120.116 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:55:00 Win2K-f 59.124.11.19 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:00:00 Win2K-f 118.170.227.191 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 fcb4920986
[Firefox:68 hits: 11-21 to 01-19] none[3] none:none
UPX| none trace

T:18:02:00 Win2K-f 94.74.134.3 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:12:00 Win2K-f 222.63.109.185 (HERBALQC.COM):
CHINA RAILWAY TELECOMMUNICATIONS CENTER,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:16:00 Win2K-f 222.63.109.185 (HERBALQC.COM):
CHINA RAILWAY TELECOMMUNICATIONS CENTER,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:17:00 Win2K-f 201.172.122.69 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1017 hits: 11-30 to 01-21] none[3] none:none
StarForce| none trace

18:21:00 Win2K-f 84.235.6.129 (SAUDI.NET.SA):
SAUDINET-INFRASTRUCTURE,
DAMMAM, ASH SHARQIYAH, SA. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:21:00 Win2K-f 63.79.14.231 (WICHITADATACENTERS.COM):
WS/WEBNET BROADBAND LLC/WICHITA DATACENTERS,
NAPERVILLE, ILLINOIS, US. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:31:00 Win2K-f 113.17.239.236 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 5 of 37 741c93f3c1
[Firefox:10 hits: 11-30 to 01-11] none[3] none:none
UPX| none trace

18:32:00 Win2K-f 118.232.47.15 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:32:00 Win2K-f 196.2.194.33 (MENANET.NET):
AFRINIC,
CAIRO, AL QAHIRAH, EG. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:39:00 Win2K-f 122.125.169.82 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:40:00 Win2K-f 59.117.64.145 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

T:18:47:00 Win2K-f 122.125.169.82 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:48:00 Win2K-f 122.123.196.123 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:49:00 Win2K-f 190.140.3.241 (CABLEONDA.NET):
CABLE ONDA,
PANAMA CITY, PANAMA, PA. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:49:00 Win2K-f 66.80.148.234 (MEGAPATH.NET):
MEGAPATH NETWORKS INC,
CHALFONT, PENNSYLVANIA, US. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:50:00 Win2K-f 190.138.136.148 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1908 hits: 11-22 to 01-21] none[3] none:none
UPX| none trace

18:53:00 Win2K-f 190.0.65.253 (ASTER.COM.DO):
ASTER,
SANTO DOMINGO, DISTRITO NACIONAL, DO. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1017 hits: 11-30 to 01-21] none[3] none:none
StarForce| none trace

19:01:00 Win2K-f 190.138.136.148 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1908 hits: 11-22 to 01-21] none[3] none:none
UPX| none trace

T:19:05:00 Win2K-f 89.20.107.38 (PERMONLINE.RU):
DYNAMIC POOL FOR ADSL CLIENTS,
RU. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:18:00 Win2K-f 88.82.168.138 (HELIOS-NW.RU):
OPTILINK LTD,
YAKUTSK, SAKHA (YAKUTIYA), RU. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:23:00 Win2K-f 201.172.122.69 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1017 hits: 11-30 to 01-21] none[3] none:none
StarForce| none trace

T:19:36:00 Win2K-f 200.71.99.208 (TELESAT.COM.CO):
COLDECON,
CALI, VALLE DEL CAUCA, CO. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

T:19:38:00 Win2K-f 118.232.61.35 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:39:00 Win2K-f 117.67.204.171 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:43:00 Win2K-f 61.224.101.36 (HINET.NET):
DATA COMMUNICATION BUSINESS GROUP CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:46:00 Win2K-f 200.71.99.208 (TELESAT.COM.CO):
COLDECON,
CALI, VALLE DEL CAUCA, CO. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1698 hits: 11-24 to 01-21] none[3] none:none
UPX| none trace

T:19:50:00 Win2K-f 200.100.90.55 (TELESP.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DIAL) n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:52:00 Win2K-f 115.83.89.176 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:56:00 Win2K-f 203.62.155.2 (-):
ASSUMPTION COLLEGE THONBURI THAILAND EDUCATION COLLEGE,
TH. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:00:00 Win2K-f 118.232.61.35 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:06:00 Win2K-f 200.71.107.240 (TELESAT.COM.CO):
COLDECON,
CALI, VALLE DEL CAUCA, CO. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:08:00 Win2K-f 202.70.242.176 (ONINET.NE.JP):
OKAYAMA NETWORK INC,
TOKYO, TOKYO, JP. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1908 hits: 11-22 to 01-21] none[3] none:none
UPX| none trace

T:20:09:00 Win2K-f 202.70.242.176 (ONINET.NE.JP):
OKAYAMA NETWORK INC,
TOKYO, TOKYO, JP. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1908 hits: 11-22 to 01-21] none[3] none:none
UPX| none trace

T:20:19:00 Win2K-f 79.27.21.209 (SRC.ORG):
TELECOM ITALIA NET,
ROME, LAZIO, IT. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:20:00 Win2K-f 201.52.178.3 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

20:28:00 Win2K-f 196.2.194.33 (MENANET.NET):
AFRINIC,
CAIRO, AL QAHIRAH, EG. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:29:00 Win2K-f 61.19.71.94 (CDPM1.COM):
CAT TELECOM PUBLIC COMPANY LTD,
TH. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:38:00 Win2K-f 124.8.143.176 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:42:00 Win2K-f 122.121.14.24 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1908 hits: 11-22 to 01-21] none[3] none:none
UPX| none trace

20:44:00 Win2K-f 196.2.194.71 (MENANET.NET):
AFRINIC,
CAIRO, AL QAHIRAH, EG. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:46:00 Win2K-f 61.217.196.119 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:51:00 Win2K-f 203.73.158.232 (HI-SQUARE.COM.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:00:00 Win2K-f 114.44.144.18 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:01:00 Win2K-f 75.125.14.194 (EV1SERVERS.NET):
EVERYONES INTERNET,
HOUSTON, TEXAS, US. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:226 hits: 11-20 to 01-20] none[3] none:none
StarForce| none trace

T:21:05:00 Win2K-f 203.73.158.232 (HI-SQUARE.COM.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:12:00 Win2K-f 114.47.217.77 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:20:00 Win2K-f 63.76.15.73 (-):
SONGWAYS SERVICES INC,
NEW YORK, NEW YORK, US. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:772 hits: 11-21 to 01-21] none[3] none:none
StarForce| none trace

T:21:26:00 Win2K-f 95.28.204.101 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:859 hits: 11-22 to 01-21] none[3] none:none
UPX| none trace

T:21:27:00 Win2K-f 74.222.5.191 (VRTSERVERS.NET):
VRTSERVERS INC,
SEWICKLEY, PENNSYLVANIA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:29:00 Win2K-f 200.111.193.27 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
200.111.193.27:5273
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:39:00 Win2K-f 68.15.118.131 (COX.NET):
COX COMMUNICATIONS INC,
OKLAHOMA CITY, OKLAHOMA, US. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:221 hits: 12-19 to 01-21] none[3] none:none
MEW| none trace

T:21:46:00 Win2K-f 68.15.118.131 (COX.NET):
COX COMMUNICATIONS INC,
OKLAHOMA CITY, OKLAHOMA, US. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:221 hits: 12-19 to 01-21] none[3] none:none
MEW| none trace

21:51:00 Win2K-f 201.86.232.133 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:52:00 Win2K-f 212.117.163.75 (-):
EYENET,
UK. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:772 hits: 11-21 to 01-21] none[3] none:none
StarForce| none trace

T:21:52:00 Win2K-f 122.116.36.241 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:56:00 Win2K-f 123.204.117.210 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:02:00 Win2K-f 208.100.3.75 (NOZONENET.COM):
NOZONE INC,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:06:00 Win2K-f 61.174.146.47 (163DATA.COM.CN):
CHINANET-ZJ HANGZHOU NODE NETWORK,
HANGZHOU, ZHEJIANG, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1017 hits: 11-30 to 01-21] none[3] none:none
StarForce| none trace

T:22:16:00 Win2K-f 196.2.194.71 (MENANET.NET):
AFRINIC,
CAIRO, AL QAHIRAH, EG. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:18:00 Win2K-f 95.28.204.101 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:859 hits: 11-22 to 01-21] none[3] none:none
UPX| none trace

T:22:18:00 Win2K-f 61.174.146.47 (163DATA.COM.CN):
CHINANET-ZJ HANGZHOU NODE NETWORK,
HANGZHOU, ZHEJIANG, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1017 hits: 11-30 to 01-21] none[3] none:none
StarForce| none trace

22:29:00 Win2K-f 59.165.1.164 (VSNL.NET.IN):
VIDESH SANCHAR NIGAM LTD - INDIA,
IN. (DIAL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:31:00 Win2K-f 78.34.54.147 (NETCOLOGNE.DE):
NETCOLOGNE GMBH,
KOELN, NORDRHEIN-WESTFALEN, DE. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:39:00 Win2K-f 124.10.134.66 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
KAOHSIUNG, KAO-HSIUNG, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:12:00 Win2K-f 59.121.113.80 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:772 hits: 11-21 to 01-21] none[3] none:none
StarForce| none trace

T:23:31:00 Win2K-f 201.86.232.133 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:33:00 Win2K-f 124.112.108.169 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:35:00 Win2K-f 118.123.3.119 (-):
. n/a 445 pcap raw alerts
ruleset http
12 lines Argh : 0.3
profile none summary
tarball none none none none none none none

23:40:00 Win2K-f 118.232.11.245 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:45:00 Win2K-f 59.125.137.122 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:54:00 Win2K-f 122.117.161.113 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:59:00 Win2K-f 219.86.229.231 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:18775 hits: 11-20 to 01-21] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace