Multiperspective Malware Analysis Page

Welcome to the Cyber-TA
SRI's Multiperspective Malware Infection Analysis Page

UNCENSORED PAGE

<Click here: to download BotHunter>

27 January 2009
<prev> <next>

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Daily Summary Files: [DNS Lookups & Failed Connects] [ Attacker IPs ] [C&C Servers] [Binary Digests]
Cumulative Summary Files: [DNS Lookup Log] [Attacker IP Log] [C&C Server Log] [Antivirus Detection] [Code Segment Overlap]
[Behavioral Clusters] [Binary Digest Log]

[See Country Codes ]

Time
Victim
OS
Infection
Source
C&C
Server
DNS Lookups &
Failed Connects Infection
Port
Packet
Trace
Detection
Signatures
Infection
Chatter
BotHunter
Analysis
Behavioral
Cluster
Forensic
Logs
Antivirus
Labels
Packed Malware_Binary Unpacked egg.exe
Unpacked egg.asm
Packer PEID
Data Strings
Syscall Trace

00:05:00 Win2K-f 85.112.58.67 (-):
SYZRAN CAVS NETWORK,
RU. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:05:00 Win2K-f 122.120.39.189 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:14:00 Win2K-f 59.115.153.188 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:17:00 Win2K-f 122.120.39.189 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:21:00 Win2K-f 59.95.161.209 (10/24.BSNL.IN):
NIB (NATIONAL INTERNET BACKBONE),
HYDERABAD, ANDHRA PRADESH, IN. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 28 of 39 847cce8313
NEW none[none] none:none
none|none none none

00:22:00 Win2K-f 123.195.83.65 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:30:00 Win2K-f 219.86.201.158 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:33:00 Win2K-f 219.86.201.158 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

00:42:00 Win2K-f 64.122.54.20 (INDEXCOMPUTERS.COM):
INTEGRA TELECOM INC,
PRIOR LAKE, MINNESOTA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:863 hits: 11-22 to 01-26] none[3] none:none
UPX| none trace

T:00:44:00 Win2K-f 221.169.120.77 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:00:53:00 Win2K-f 91.189.104.229 (-):
TRIDENT MEDIGUARD,
FR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 37 0784acb08f
[Firefox: 7 hits: 11-21 to 01-26] none[3] none:none
UPX| none trace

T:01:01:00 Win2K-f 189.21.3.47 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:12:00 Win2K-f 58.52.75.80 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:12:00 Win2K-f 84.75.147.48 (HISPEED.CH):
CABLECOMMAIN-NET,
ZURICH, ZURICH, CH. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:14:00 Win2K-f 189.41.12.185 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:16:00 Win2K-f 122.2.43.88 (PLDT.NET):
JNEC7300I03_CONSUMER,
CEBU, CEBU CITY, PH. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:25:00 Win2K-f 61.230.55.13 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:29:00 Win2K-f 189.41.12.185 (BRASILTELECOM.NET.BR):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:31:00 Win2K-f 61.230.55.13 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:33:00 Win2K-f 92.47.54.135 (IKBCC.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:34:00 Win2K-f 122.123.128.65 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:863 hits: 11-22 to 01-26] none[3] none:none
UPX| none trace

T:01:34:00 Win2K-f 92.47.54.135 (IKBCC.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:01:46:00 Win2K-f 59.116.38.250 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:50:00 Win2K-f 84.19.174.64 (HOSTING-IE.COM):
HOSTING IE IP NETWORK,
WICKLOW, WICKLOW, IE. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

01:51:00 Win2K-f 221.169.120.77 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:05:00 Win2K-f 58.68.38.122 (-):
DISHNET WIRELESS LTD INDIA,
BANGALORE, KARNATAKA, IN. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:12:00 Win2K-f 77.48.89.85 (SLOANE.CZ):
SLOANE PARK PROPERTY TRUST A.S,
CZ. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:15:00 Win2K-f 78.84.230.33 (MICROLINK.LV):
TELEKOM,
RIGA, RIGA, LV. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:15:00 Win2K-f 118.232.13.168 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:15:00 Win2K-f 123.204.113.176 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:20:00 Win2K-f 200.112.150.20 (NET.AR):
BROADBANDTECH S. A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
46 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:33:00 Win2K-f 200.3.177.73 (RAVE-TT.NET):
LISA COMMUNICATIONS LTD,
TT. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:35:00 Win2K-f 118.232.13.168 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

02:37:00 Win2K-f 123.195.216.222 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:37:00 Win2K-f 123.195.216.222 (ETHOME.COM.TW):
TUNG HO MULTIMEDIA CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:02:54:00 Win2K-f 82.99.45.22 (SWEBASE.COM):
SWEBASE NETWORK,
SE. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:00:00 Win2K-f 123.204.113.176 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:10:00 Win2K-f 78.39.40.110 (-):
INFORMATION TECHNOLOGY COMPANY (ITC),
IR. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:03:11:00 Win2K-f 85.112.58.67 (-):
SYZRAN CAVS NETWORK,
RU. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:12:00 Win2K-f 77.74.228.146 (TEAM.BA):
TEAM CONSULTING D.O.O,
BA. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:14:00 Win2K-f 84.75.147.48 (HISPEED.CH):
CABLECOMMAIN-NET,
ZURICH, ZURICH, CH. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:17:00 Win2K-f 77.74.228.146 (TEAM.BA):
TEAM CONSULTING D.O.O,
BA. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:28:00 Win2K-f 81.13.136.47 (-):
IP DHCP SION,
SION, VALAIS, CH. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:28:00 Win2K-f 86.126.60.77 (RDSNET.RO):
RDS,
RO. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:38:00 Win2K-f 59.114.0.180 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:40:00 Win2K-f 77.57.99.18 (SOLPA.NET):
CABLECOM,
ZURICH, ZURICH, CH. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

03:49:00 Win2K-f 78.39.40.110 (-):
INFORMATION TECHNOLOGY COMPANY (ITC),
IR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:863 hits: 11-22 to 01-26] none[3] none:none
UPX| none trace

03:55:00 Win2K-f 77.57.99.18 (SOLPA.NET):
CABLECOM,
ZURICH, ZURICH, CH. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:03:57:00 Win2K-f 81.13.109.42 (RMT.RU):
OAO ROSSIYSKIE ZHELEZNYE DOROGI,
MOSCOW, MOSKVA, RU. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:04:00 Win2K-f 79.18.154.111 (SRC.ORG):
TELECOM ITALIA NET,
ROME, LAZIO, IT. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:04:10:00 Win2K-f 84.19.174.64 (HOSTING-IE.COM):
HOSTING IE IP NETWORK,
WICKLOW, WICKLOW, IE. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:13:00 Win2K-f 190.220.98.38 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

04:13:00 Win2K-f 124.104.244.172 (PLDT.NET):
BATC7300I01_CONSUMER,
PH. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:34:00 Win2K-f 58.68.38.122 (-):
DISHNET WIRELESS LTD INDIA,
BANGALORE, KARNATAKA, IN. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:34:00 Win2K-f 190.173.197.15 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:781 hits: 11-21 to 01-22] none[3] none:none
StarForce| none trace

04:37:00 Win2K-f 82.91.141.2 (POOL8291.INTERBUSINESS.IT):
TELECOM ITALIA WIRELINE SERVICES,
ROME, LAZIO, IT. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:44:00 Win2K-f 78.63.227.232 (ZEBRA.LT):
LIETUVOS,
LT. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:45:00 Win2K-f 89.18.168.91 (DNSKA.COM):
PCEXTREME BV,
MIDDELBURG, ZEELAND, NL. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:04:47:00 Win2K-f 201.116.216.149 (UNINET-IDE.COM.MX):
UNINET S.A. DE C.V,
MX. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

04:49:00 Win2K-f 203.118.236.55 (-):
GRAND TAINAN TECHNOLOGY CO.LTD,
TAINAN, KAO-HSIUNG, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:07:00 Win2K-f 125.86.127.66 (163DATA.COM.CN):
CHINANET CHONGQING PROVINCE NETWORK,
CHONGQING, CHONGQING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

T:05:15:00 Win2K-f 87.58.29.7 (BROADBAND.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
SVENDBORG, FYN, DK. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:21:00 Win2K-f 190.165.62.29 (-):
EMTELSA S.A. E.S.P,
CO. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:28:00 Win2K-f 93.126.152.161 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:552 hits: 11-26 to 01-22] none[3] none:none
Armadillo| none trace

T:05:38:00 Win2K-f 199.43.180.9 (ETNET.CA):
THE DUFFERIN PEEL ROMAN CATHOLIC SEPARATE,
MISSISSAUGA, ONTARIO, CA. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

05:52:00 Win2K-f 122.122.128.131 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:05:53:00 Win2K-f 190.173.197.15 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:781 hits: 11-21 to 01-22] none[3] none:none
StarForce| none trace

T:06:01:00 Win2K-f 190.139.141.100 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

06:05:00 Win2K-f 221.127.233.247 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:05:00 Win2K-f 114.47.168.216 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:08:00 Win2K-f 125.226.133.62 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:30:00 Win2K-f 200.82.77.60 (-):
TELECOM-CEB,
BUENOS AIRES, BUENOS AIRES, AR. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

06:38:00 Win2K-f 24.84.182.112 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
VANCOUVER, BRITISH COLUMBIA, CA. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 5 of 37 741c93f3c1
[Firefox:11 hits: 11-30 to 01-22] none[3] none:none
UPX| none trace

T:06:41:00 Win2K-f 116.9.114.207 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
NANNING, GUANGXI, CN. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:42:00 Win2K-f 125.226.133.62 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:43:00 Win2K-f 114.47.168.216 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:06:46:00 Win2K-f 123.254.15.147 (PIKARA.NE.JP):
STNET INCORPORATED,
TAKAMATSU, KAGAWA, JP. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1928 hits: 11-22 to 01-26] none[3] none:none
UPX| none trace

06:49:00 Win2K-f 201.116.216.149 (UNINET-IDE.COM.MX):
UNINET S.A. DE C.V,
MX. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

06:56:00 Win2K-f 84.126.213.12 (ONO.COM):
PROVIDER LOCAL REGISTRY,
ES. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:01:00 Win2K-f 200.117.52.106 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:03:00 Win2K-f 84.126.213.12 (ONO.COM):
PROVIDER LOCAL REGISTRY,
ES. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
6 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:05:00 Win2K-f 59.112.194.93 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:08:00 Win2K-f 120.50.35.119 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1928 hits: 11-22 to 01-26] none[3] none:none
UPX| none trace

T:07:09:00 Win2K-f 24.84.182.112 (SHAWCABLE.NET):
SHAW COMMUNICATIONS INC,
VANCOUVER, BRITISH COLUMBIA, CA. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 5 of 37 741c93f3c1
[Firefox:11 hits: 11-30 to 01-22] none[3] none:none
UPX| none trace

07:16:00 Win2K-f 200.112.148.34 (NET.AR):
BROADBANDTECH S. A,
MENDOZA, MENDOZA, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1030 hits: 11-30 to 01-22] none[3] none:none
StarForce| none trace

07:36:00 Win2K-f 114.44.120.141 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:36:00 Win2K-f 59.112.194.93 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

07:40:00 Win2K-f 89.18.168.91 (DNSKA.COM):
PCEXTREME BV,
MIDDELBURG, ZEELAND, NL. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:07:52:00 Win2K-f 122.122.128.131 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:00:00 Win2K-f 81.9.218.187 (CM-81-9-211-10.TELECABLE.ES):
TELECABLE,
OVIEDO, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:08:00 Win2K-f 89.117.139.93 (ERDVES.LT):
SC LITHUANIAN RADIO AND TV CENTER,
VILNIUS, VILNIAUS APSKRITIS, LT. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:11:00 Win2K-f 190.51.84.38 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

08:16:00 Win2K-f 122.118.211.124 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:19:00 Win2K-f 114.44.120.141 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:19:00 Win2K-f 59.104.72.236 (SEED.NET.TW):
DIGITAL UNITED I,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:08:22:00 Win2K-f 190.55.208.5 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

T:08:46:00 Win2K-f 190.3.75.107 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

08:51:00 Win2K-f 94.102.3.102 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

08:53:00 Win2K-f 190.246.82.110 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1928 hits: 11-22 to 01-26] none[3] none:none
UPX| none trace

T:08:56:00 Win2K-f 151.60.209.8 (38-151.NET24.IT):
IUNET-BNET,
IT. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:06:00 Win2K-f 59.117.119.111 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

T:09:08:00 Win2K-f 189.89.155.6 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:18:00 Win2K-f 64.56.66.102 (VRTSERVERS.NET):
VRTSERVERS INC,
SEWICKLEY, PENNSYLVANIA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:23:00 Win2K-f 61.140.103.78 (163DATA.COM.CN):
CHINANET GUANGDONG PROVINCE NETWORK,
GUANGZHOU, GUANGDONG, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:27:00 Win2K-f 201.12.36.180 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:781 hits: 11-21 to 01-22] none[3] none:none
StarForce| none trace

T:09:38:00 Win2K-f 114.45.98.238 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

09:41:00 Win2K-f 59.125.193.202 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:49:00 Win2K-f 202.98.236.128 (-):
CHINANET XIZANG PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:54:00 Win2K-f 114.44.9.29 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:09:56:00 Win2K-f 209.90.145.195 (PRIMUS.CA):
PRIMUS TELECOMMUNICATIONS CANADA INC. -EASTERN-070- TOR,
MONTREAL, QUEBEC, CA. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:863 hits: 11-22 to 01-26] none[3] none:none
UPX| none trace

09:58:00 Win2K-f 59.120.50.136 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:01:00 Win2K-f 87.30.231.81 (BUSINESS.TELECOMITALIA.IT):
TELECOM ITALIA NET,
IT. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

10:09:00 Win2K-f 210.4.125.89 (-):
COMCLARK,
ROXAS, CAPIZ, PH. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:13:00 Win2K-f 190.51.84.38 (COM.AR):
TELEFONICA DE ARGENTINA,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

T:10:16:00 Win2K-f 124.39.108.108 (UCOM.NE.JP):
IML,
JP. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

T:10:17:00 Win2K-f 59.125.193.202 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:22:00 Win2K-f 81.9.218.187 (CM-81-9-211-10.TELECABLE.ES):
TELECABLE,
OVIEDO, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:27:00 Win2K-f 114.47.41.47 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:40:00 Win2K-f 94.102.3.102 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:46:00 Win2K-f 59.120.50.136 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:10:47:00 Win2K-f 80.27.50.208 (-):
TELEFONICA MOVILES ESPANA (NCC#2002069993),
ES. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

10:56:00 Win2K-f 201.12.36.180 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:781 hits: 11-21 to 01-22] none[3] none:none
StarForce| none trace

T:10:56:00 Win2K-f 124.123.13.35 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:00:00 Win2K-f 212.23.90.21 (UR.RU):
OOO CHELOVEK MOBILNYJ,
EKATERINBURG, SVERDLOVSKAYA OBLAST', RU. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:01:00 Win2K-f 190.220.80.29 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

11:06:00 Win2K-f 124.123.13.35 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:09:00 Win2K-f 140.113.13.232 (NTU.EDU.TW):
TAIWAN ACADEMIC NETWORK,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:23:00 Win2K-f 84.120.152.117 (ONO.COM):
CABLEUROPA - ONO,
VALENCIA, VALENCIA, ES. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:229 hits: 11-20 to 01-26] none[3] none:none
StarForce| none trace

11:28:00 Win2K-f 186.9.179.13 (-):
. n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

11:31:00 Win2K-f 84.125.7.176 (ONO.COM):
PROVIDER LOCAL REGISTRY,
ES. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

11:39:00 Win2K-f 209.90.145.195 (PRIMUS.CA):
PRIMUS TELECOMMUNICATIONS CANADA INC. -EASTERN-070- TOR,
MONTREAL, QUEBEC, CA. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:863 hits: 11-22 to 01-26] none[3] none:none
UPX| none trace

T:11:41:00 Win2K-f 212.119.180.26 (-):
TECHCENTRE RTS IN SAINT PETERSBURG,
ST. PETERSBURG, SANKT-PETERBURG, RU. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:11:55:00 Win2K-f 84.125.7.176 (ONO.COM):
PROVIDER LOCAL REGISTRY,
ES. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:12:08:00 Win2K-f 190.208.98.6 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:17:00 Win2K-f 84.120.152.117 (ONO.COM):
CABLEUROPA - ONO,
VALENCIA, VALENCIA, ES. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:229 hits: 11-20 to 01-26] none[3] none:none
StarForce| none trace

T:12:20:00 Win2K-f 59.117.116.165 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:24:00 Win2K-f 58.22.66.20 (-):
CNCGROUP FUJIAN PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

12:35:00 Win2K-f 71.16.167.196 (USLEC.NET):
USLEC CORP,
US. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:781 hits: 11-21 to 01-22] none[3] none:none
StarForce| none trace

T:12:37:00 Win2K-f 190.105.17.151 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

T:12:39:00 Win2K-f 186.9.5.199 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1928 hits: 11-22 to 01-26] none[3] none:none
UPX| none trace

T:12:39:00 Win2K-f 113.19.0.42 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:781 hits: 11-21 to 01-22] none[3] none:none
StarForce| none trace

12:51:00 Win2K-f 122.53.217.196 (PLDT.NET):
IPG,
PH. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:03:00 Win2K-f 71.16.167.196 (USLEC.NET):
USLEC CORP,
US. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 223d8089f8
[Firefox:781 hits: 11-21 to 01-22] none[3] none:none
StarForce| none trace

T:13:03:00 Win2K-f 118.161.212.4 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:06:00 Win2K-f 190.220.80.29 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

13:11:00 Win2K-f 200.35.226.15 (SUPERCABLE.NET.VE):
SUPERCABLE,
CARACAS, DISTRITO FEDERAL, VE. (DSL) n/a US:www.maxmind.com
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
5 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:13:00 Win2K-f 190.220.80.29 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
190.220.80.29:2168
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
6 lines Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

T:13:22:00 Win2K-f 85.119.245.11 (POWERED-BY.NETDISTRI.BE):
DUTCHZONE / NETDISTRI,
BE. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

T:13:23:00 Win2K-f 221.125.28.166 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:29:00 Win2K-f 201.87.223.106 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:552 hits: 11-26 to 01-22] none[3] none:none
Armadillo| none trace

13:31:00 Win2K-f 209.23.154.68 (CPTELECOM.NET):
CP INTERNET,
MANKATO, MINNESOTA, US. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:42:00 Win2K-f 190.209.33.137 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:47:00 Win2K-f 189.90.185.171 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

13:48:00 Win2K-f 200.162.143.135 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1928 hits: 11-22 to 01-26] none[3] none:none
UPX| none trace

13:55:00 Win2K-f 201.236.228.173 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:57:00 Win2K-f 190.97.151.189 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:13:58:00 Win2K-f 205.129.165.69 (LEVEL3.NET):
LEVEL 3 COMMUNICATIONS INC,
US. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:03:00 Win2K-f 69.26.69.167 (KMTS.CA):
KMTS INTERNET,
KENORA, ONTARIO, CA. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:03:00 Win2K-f 81.42.194.29 (RIMA-TDE.NET):
TELEFONICA DE ESPANA SAU,
ES. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:07:00 Win2K-f 85.119.245.11 (POWERED-BY.NETDISTRI.BE):
DUTCHZONE / NETDISTRI,
BE. (100Mbps) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

14:12:00 Win2K-f 190.105.17.151 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

14:17:00 Win2K-f 81.42.194.29 (RIMA-TDE.NET):
TELEFONICA DE ESPANA SAU,
ES. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:17:00 Win2K-f 83.97.171.88 (CM-83-97-128-10.TELECABLE.ES):
TELECABLE,
GIJON, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:453 hits: 11-25 to 01-22] none[3] none:none
Armadillo| none trace

T:14:18:00 Win2K-f 201.236.228.173 (-):
EMPRESA DE TELECOMUNICACIONES DE PEREIRA S.A. E.S.P,
MANIZALES, CALDAS, CO. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:20:00 Win2K-f 59.116.102.87 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:14:20:00 Win2K-f 209.23.154.68 (CPTELECOM.NET):
CP INTERNET,
MANKATO, MINNESOTA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

14:25:00 Win2K-f 83.97.171.88 (CM-83-97-128-10.TELECABLE.ES):
TELECABLE,
GIJON, ASTURIAS, ES. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 917c085aca
[Firefox:453 hits: 11-25 to 01-22] none[3] none:none
Armadillo| none trace

14:38:00 Win2K-f 190.90.110.124 (EQUITEL.COM.CO):
INTERNEXA S.A. E.S.P,
CO. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1030 hits: 11-30 to 01-22] none[3] none:none
StarForce| none trace

T:14:55:00 Win2K-f 190.90.110.124 (EQUITEL.COM.CO):
INTERNEXA S.A. E.S.P,
CO. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1030 hits: 11-30 to 01-22] none[3] none:none
StarForce| none trace

14:58:00 Win2K-f 148.223.22.12 (UNINET-IDE.COM.MX):
INST TECNOLOGICO DE LERDO,
DURANGO, DURANGO, MX. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:07:00 Win2K-f 164.58.106.42 (-):
PONTOTOC AREA VOTECH,
ADA, OKLAHOMA, US. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:12:00 Win2K-f 208.98.1.160 (SHARKTECH.NET):
SHARKTECH INTERNET SERVICES,
MISSOULA, MONTANA, US. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:14:00 Win2K-f 205.129.165.69 (LEVEL3.NET):
LEVEL 3 COMMUNICATIONS INC,
US. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:19:00 Win2K-f 82.99.220.60 (-):
PARSONLINE CORP,
TEHRAN, TEHRAN, IR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

15:36:00 Win2K-f 67.159.21.59 (BGMEDIASERVER.COM):
FDC SERVERS.NET LLC,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:15:42:00 Win2K-f 77.22.71.197 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

T:15:44:00 Win2K-f 210.61.170.50 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:02:00 Win2K-f 200.108.218.71 (DEDICADO.COM.UY):
MULTITEL,
UY. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:04:00 Win2K-f 190.3.41.88 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:04:00 Win2K-f 77.22.71.197 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

16:11:00 Win2K-f 208.53.158.184 (ON-DEMAND-TECH.COM):
FDC SERVERS.NET LLC,
CHICAGO, ILLINOIS, US. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:16:00 Win2K-f 38.119.162.36 (PENSYS.COM):
PERFORMANCE SYSTEMS INTERNATIONAL INC,
LAKE GENEVA, WISCONSIN, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:18:00 Win2K-f 38.119.162.36 (PENSYS.COM):
PERFORMANCE SYSTEMS INTERNATIONAL INC,
LAKE GENEVA, WISCONSIN, US. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:32:00 Win2K-f 211.20.200.176 (YY-YONYU.COM.TW):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:41:00 Win2K-f 190.49.167.36 (COM.AR):
TELEFONICA DE ARGENTINA,
LOMAS DE ZAMORA, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

T:16:50:00 Win2K-f 80.71.216.10 (PERMONLINE.RU):
OJSC URALSVYAZINFORM,
OMSK, OMSKAYA OBLAST', RU. (100Mbps) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:52:00 Win2K-f 80.71.216.10 (PERMONLINE.RU):
OJSC URALSVYAZINFORM,
OMSK, OMSKAYA OBLAST', RU. (100Mbps) n/a 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball none none none none none none none

16:52:00 Win2K-f 190.64.175.8 (ANTELDATA.NET.UY):
ADMINISTRACION NACIONAL DE TELECOMUNICACIONES,
MONTEVIDEO, MONTEVIDEO, UY. (DIAL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

16:53:00 Win2K-f 79.108.148.18 (G-M-I.NET):
EU-ZZ,
UK. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:54:00 Win2K-f 77.22.231.250 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:16:56:00 Win2K-f 201.172.218.229 (INTERCABLE.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MONTERREY, NUEVO LEON, MX. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1030 hits: 11-30 to 01-22] none[3] none:none
StarForce| none trace

T:17:02:00 Win2K-f 122.49.118.124 (-):
KINXINC,
SEOUL, KYONGGI-DO, KR. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:04:00 Win2K-f 122.49.118.124 (-):
KINXINC,
SEOUL, KYONGGI-DO, KR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:09:00 Win2K-f 164.58.106.42 (-):
PONTOTOC AREA VOTECH,
ADA, OKLAHOMA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:13:00 Win2K-f 118.232.7.118 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:13:00 Win2K-f 66.18.174.195 (TULAROSA.NET):
TULAROSA COMMUNICATIONS INC,
BURNSVILLE, MINNESOTA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:26:00 Win2K-f 87.49.67.2 (ADSL-DHCP.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
ØLSTYKKE, FREDERIKSBORG, DK. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:30:00 Win2K-f 77.22.231.250 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:17:45:00 Win2K-f 201.40.79.156 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:49:00 Win2K-f 190.3.41.88 (TECHTELNET.NET):
TECHTEL LMDS COMUNICACIONES INTERACTIVAS S.A,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

17:52:00 Win2K-f 122.127.179.17 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:10:00 Win2K-f 211.20.200.176 (YY-YONYU.COM.TW):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:17:00 Win2K-f 190.139.50.35 (NET.AR):
TELECOM ARGENTINA S.A,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:21:00 Win2K-f 222.234.208.138 (HANANET.NET):
HANARO TELECOM INC,
SEOUL, KYONGGI-DO, KR. n/a US:microsoft.com 135 pcap raw alerts
ruleset other
75 lines Yeah : 1.3
profile none summary
tarball 33 of 33
0 of 32 53bfe15e91
[Firefox:4124 hits: 06-17 to 01-18]
73f1082158
[Firefox:2046 hits: 06-18 to 01-13] 1473091351 [0]
none [0] ASM:Graph
none:none
tElock|
Armadillo| lines=75
embedded dns
lines=90 trace
trace

18:23:00 Win2K-f 87.49.67.2 (ADSL-DHCP.TELE.DK):
TDC-TELEDANMARK-BREDBAANDSADSL-NET,
ØLSTYKKE, FREDERIKSBORG, DK. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:26:00 Win2K-f 91.102.160.78 (ATOLYEWEB.NET):
DATAFON ILETISIM A.S,
TR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 8 of 38 4f6b51ea3b
[Firefox:227 hits: 12-19 to 01-26] none[3] none:none
MEW| none trace

T:18:32:00 Win2K-f 190.60.118.250 (IFXNETWORKS.COM):
IFX NETWORKS COLOMBIA,
CO. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

T:18:35:00 Win2K-f 124.11.242.238 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:35:00 Win2K-f 122.127.179.17 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

18:36:00 Win2K-f 61.223.1.176 (HINET.NET):
DATA COMMUNICATION BUSINESS GROUP CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:48:00 Win2K-f 190.208.68.217 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:18:59:00 Win2K-f 61.223.1.176 (HINET.NET):
DATA COMMUNICATION BUSINESS GROUP CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:00:00 Win2K-f 190.60.118.250 (IFXNETWORKS.COM):
IFX NETWORKS COLOMBIA,
CO. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

T:19:01:00 Win2K-f 190.48.149.247 (COM.AR):
TELEFONICA DE ARGENTINA,
AR. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:04:00 Win2K-f 190.54.74.232 (CHILESAT.NET):
TELMEX SERVICIOS EMPRESARIALES S.A,
CL. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:863 hits: 11-22 to 01-26] none[3] none:none
UPX| none trace

19:14:00 Win2K-f 87.97.234.4 (GGBIT.NET):
EKK CATV PLOVDIV,
PLOVDIV, PLOVDIV, BG. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

19:14:00 Win2K-f 219.109.106.24 (CATVNET.NE.JP):
CATV NETWORK SERVICES(STNET INCORPORATED),
OSAKA, OSAKA, JP. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:20:00 Win2K-f 219.86.230.230 (TFN.NET.TW):
TAIWAN FIXED NETWORK CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:25:00 Win2K-f 190.54.74.232 (CHILESAT.NET):
TELMEX SERVICIOS EMPRESARIALES S.A,
CL. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 409ef22885
[Firefox:863 hits: 11-22 to 01-26] none[3] none:none
UPX| none trace

T:19:30:00 Win2K-f 219.109.106.24 (CATVNET.NE.JP):
CATV NETWORK SERVICES(STNET INCORPORATED),
OSAKA, OSAKA, JP. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:37:00 Win2K-f 119.77.204.89 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:19:40:00 Win2K-f 211.20.144.65 (SANGMIN.COM.TW):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:42:00 Win2K-f 85.117.58.94 (DSL.ONLINE.GE):
GEORGIA ONLINE ADSL NETWORK,
GE. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1928 hits: 11-22 to 01-26] none[3] none:none
UPX| none trace

T:19:47:00 Win2K-f 218.190.161.48 (HUTCHCITY.COM):
HUTCHISON GLOBAL COMMUNICATIONS,
HONG KONG, HONG KONG (SAR), HK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

19:52:00 Win2K-f 118.232.7.118 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:05:00 Win2K-f 61.47.61.208 (ICSPACE.NET):
PACIFIC INTERNET THAILAND,
TH. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:05:00 Win2K-f 59.117.126.122 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:07:00 Win2K-f 88.39.99.105 (BUSINESS.TELECOMITALIA.IT):
S.G.B. GEVI SPA,
NAPOLI, CAMPANIA, IT. (100Mbps) n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:16:00 Win2K-f 66.90.104.52 (MM-NEWS.NET):
FDC SERVERS.NET LLC,
RALEIGH, NORTH CAROLINA, US. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:23:00 Win2K-f 91.33.117.216 (T-IPCONNECT.DE):
DEUTSCHE TELEKOM AG,
DE. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:23:00 Win2K-f 122.121.153.124 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:26:00 Win2K-f 190.2.0.74 (IPLANNETWORKS.NET):
NSS S.A,
AR. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:20:29:00 Win2K-f 190.226.20.185 (-):
. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:35:00 Win2K-f 201.172.119.204 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1030 hits: 11-30 to 01-22] none[3] none:none
StarForce| none trace

T:20:38:00 Win2K-f 201.172.119.204 (MULTIMEDIOS.NET):
TELEVISION INTERNACIONAL S.A. DE C.V,
MX. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1030 hits: 11-30 to 01-22] none[3] none:none
StarForce| none trace

T:20:43:00 Win2K-f 83.34.116.51 (RIMA-TDE.NET):
TELEFONICA DE ESPANA SAU,
BARCELONA, CATALUñA, ES. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:45:00 Win2K-f 117.65.33.238 (AH163.NET):
CHINANET ANHUI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

20:49:00 Win2K-f 202.61.52.146 (WOL.NET.PK):
CYBERSOFT TECHNOLOGIES PLC,
KARACHI, SINDH, PK. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 fcb4920986
[Firefox:73 hits: 11-21 to 01-26] none[3] none:none
UPX| none trace

T:20:57:00 Win2K-f 125.21.50.182 (59.AIRTELBROADBAND.IN):
BHARTI TELEVENTURES LIMITED A/C ABTS MP,
BHOPAL, MADHYA PRADESH, IN. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1928 hits: 11-22 to 01-26] none[3] none:none
UPX| none trace

T:20:58:00 Win2K-f 196.2.194.76 (MENANET.NET):
AFRINIC,
CAIRO, AL QAHIRAH, EG. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
2 lines Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:02:00 Win2K-f 69.162.64.218 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:03:00 Win2K-f 207.115.66.106 (ISOMEDIA.COM):
ISOMEDIA INC,
SEATTLE, WASHINGTON, US. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

T:21:06:00 Win2K-f 93.156.176.78 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:09:00 Win2K-f 125.21.50.182 (59.AIRTELBROADBAND.IN):
BHARTI TELEVENTURES LIMITED A/C ABTS MP,
BHOPAL, MADHYA PRADESH, IN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1928 hits: 11-22 to 01-26] none[3] none:none
UPX| none trace

21:26:00 Win2K-f 123.181.144.210 (163DATA.COM.CN):
CHINANET HEBEI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:27:00 Win2K-f 121.247.145.229 (VSNL.NET.IN):
VIDESH SANCHAR NIGAM LTD - INDIA,
COCHIN, KERALA, IN. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:32:00 Win2K-f 118.30.121.228 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:38:00 Win2K-f 93.156.176.78 (APEXCOVANTAGE.COM):
EU-ZZ,
UK. n/a US:www.maxmind.com
:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:40:00 Win2K-f 200.230.80.34 (STERLINGSTUDENTS.NET):
COMITE GESTOR DA INTERNET NO BRASIL,
BR. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
US:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:21:42:00 Win2K-f 212.75.11.212 (BUSINESS.TELECOMITALIA.IT):
PROVIDER LOCAL REGISTRY,
TRIESTE, FRIULI-VENEZIA GIULIA, IT. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

21:46:00 Win2K-f 84.120.172.17 (ONO.COM):
CABLEUROPA - ONO,
VALENCIA, VALENCIA, ES. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 216ec67841
[Firefox:229 hits: 11-20 to 01-26] none[3] none:none
StarForce| none trace

T:21:51:00 Win2K-f 122.121.153.124 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:00:00 Win2K-f 201.253.56.123 (NET.AR):
APOLO -GOLD-TELECOM-PER,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

22:02:00 Win2K-f 218.47.253.243 (PLALA.OR.JP):
PLALA NETWORKS INC,
JP. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:08:00 Win2K-f 123.181.144.210 (163DATA.COM.CN):
CHINANET HEBEI PROVINCE NETWORK,
BEIJING, BEIJING, CN. n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:13:00 Win2K-f 116.11.156.30 (163DATA.COM.CN):
CHINANET GUANGXI PROVINCE NETWORK,
NANNING, GUANGXI, CN. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:20:00 Win2K-f 119.140.51.43 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:23:00 Win2K-f 207.115.66.106 (ISOMEDIA.COM):
ISOMEDIA INC,
SEATTLE, WASHINGTON, US. (DSL) n/a US:www.maxmind.com
US:www.getmyip.org
US:checkip.dyndns.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

T:22:31:00 Win2K-f 94.21.93.151 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:32:00 Win2K-f 58.54.176.156 (163DATA.COM.CN):
CHINANET HUBEI PROVINCE NETWORK,
HUBEI, HUBEI, CN. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 4 of 37 8ce32ded17
[Firefox:552 hits: 11-26 to 01-22] none[3] none:none
Armadillo| none trace

T:22:34:00 Win2K-f 61.59.131.78 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:35:00 Win2K-f 61.59.131.78 (SEED.NET.TW):
DIGITAL UNITED INC,
TAIPEI, T'AI-PEI, TW. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:22:40:00 Win2K-f 77.39.4.234 (STV.RU):
ELECTROSVYAZ STAVROPOL TERRITORY BRANCH OF PJSC UTK,
RU. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

22:55:00 Win2K-f 218.168.1.207 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:10:00 Win2K-f 59.124.71.5 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
:getmyip.co.uk
:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

T:23:13:00 Win2K-f 203.69.99.6 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:checkip.dyndns.org
:getmyip.co.uk
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 2 of 37 d60e538e72
[Firefox:1928 hits: 11-22 to 01-26] none[3] none:none
UPX| none trace

23:14:00 Win2K-f 210.55.77.56 (QUICKER.NET.NZ):
WORLD-NET LIMITED,
AUCKLAND, AUCKLAND, NZ. (DSL) n/a US:www.maxmind.com
US:checkip.dyndns.org
US:www.getmyip.org
:getmyip.co.uk
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 139 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:21:00 Win2K-f 82.253.183.119 (PROXAD.NET):
PROXAD / FREE SAS,
LE HAVRE, HAUTE-NORMANDIE, FR. (DSL) n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:28:00 Win2K-f 200.108.220.203 (DEDICADO.COM.UY):
TECNOWIND S.A,
BUENOS AIRES, BUENOS AIRES, AR. n/a US:www.maxmind.com
US:67.15.94.80:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

23:30:00 Win2K-f 218.173.241.154 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:41:00 Win2K-f 190.220.124.57 (-):
. n/a US:www.maxmind.com
US:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 dc331fb791
[Firefox:1728 hits: 11-24 to 01-26] none[3] none:none
UPX| none trace

T:23:41:00 Win2K-f 218.168.1.207 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TAIPEI, T'AI-PEI, TW. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

T:23:43:00 Win2K-f 94.240.221.48 (-):
. n/a US:www.maxmind.com
US:www.getmyip.org
:getmyip.co.uk
:checkip.dyndns.org
208.78.68.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:44:00 Win2K-f 82.253.183.119 (PROXAD.NET):
PROXAD / FREE SAS,
LE HAVRE, HAUTE-NORMANDIE, FR. (DSL) n/a US:www.maxmind.com
:getmyip.co.uk
US:checkip.dyndns.org
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:53:00 Win2K-f 119.19.8.2 (-):
. n/a US:www.maxmind.com
:checkip.dyndns.org
:getmyip.co.uk
US:www.getmyip.org
US:204.13.249.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 3 of 37 d9cb288f31
[Firefox:19010 hits: 11-20 to 01-26] 45603a001c [0] ASM:Graph
UPX| lines=174
embedded dns trace

23:58:00 Win2K-f 122.118.229.248 (HINET.NET):
CHTD CHUNGHWA TELECOM CO. LTD,
TW. n/a US:www.maxmind.com
:getmyip.co.uk
US:www.getmyip.org
:checkip.dyndns.org
208.78.69.70:80
US:67.15.94.80:80
US:75.126.138.202:80 445 pcap raw alerts
ruleset http
1 line Yeah : 0.8
profile none summary
tarball 7 of 37 7587773eea
[Firefox:1030 hits: 11-30 to 01-22] none[3] none:none
StarForce| none trace