04-01-02 ACID Summary
To: toot@sparky.finchhaven.net
Subject: ACID Incident Report
From: ACID Alert
Generated by ACID v0.9.6b21 on Thu April 04, 2002 19:27:00
#14-6| [2002-04-01 00:40:01] 12.82.171.3:2805 -> 12.82.140.60:80 Potential CodeRed/Nimda probe
#14-7| [2002-04-01 00:40:03] 12.82.171.3:2805 -> 12.82.140.60:80 Potential CodeRed/Nimda probe
#14-8| [2002-04-01 01:05:04] 12.222.192.110:2475 -> 12.82.140.60:80 Potential CodeRed/Nimda probe
#14-9| [2002-04-01 01:05:07] 12.222.192.110:2475 -> 12.82.140.60:80 Potential CodeRed/Nimda probe
#14-10| [2002-04-01 01:15:19] 12.82.171.3:2515 -> 12.82.140.60:80 Potential CodeRed/Nimda probe
#14-11| [2002-04-01 01:15:21] 12.82.171.3:2515 -> 12.82.140.60:80 Potential CodeRed/Nimda probe
#14-12| [2002-04-01 02:20:19] 209.143.73.128:4706 -> 12.82.140.60:23 TCP to 23 telnet
#14-13| [2002-04-01 02:20:22] 209.143.73.128:4706 -> 12.82.140.60:23 TCP to 23 telnet
#14-14| [2002-04-01 02:21:36] 12.82.171.3:1559 -> 12.82.140.60:80 Potential CodeRed/Nimda probe
#14-15| [2002-04-01 02:21:39] 12.82.171.3:1559 -> 12.82.140.60:80 Potential CodeRed/Nimda probe
#14-16| [2002-04-01 02:55:16] 12.82.171.3:2702 -> 12.82.140.60:80 Potential CodeRed/Nimda probe
#14-17| [2002-04-01 02:55:19] 12.82.171.3:2702 -> 12.82.140.60:80 Potential CodeRed/Nimda probe
#14-18| [2002-04-01 03:55:48] 12.82.171.3:3075 -> 12.82.140.60:80 Potential CodeRed/Nimda probe
#14-19| [2002-04-01 03:55:51] 12.82.171.3:3075 -> 12.82.140.60:80 Potential CodeRed/Nimda probe
#14-20| [2002-04-01 04:35:08] 12.82.171.3:1730 -> 12.82.140.60:80 Potential CodeRed/Nimda probe
#14-21| [2002-04-01 04:35:11] 12.82.171.3:1730 -> 12.82.140.60:80 Potential CodeRed/Nimda probe
#14-22| [2002-04-01 04:55:42] 210.0.143.36:4821 -> 12.82.140.60:21 TCP to 21 ftp
#14-23| [2002-04-01 04:55:45] 210.0.143.36:4821 -> 12.82.140.60:21 TCP to 21 ftp
#14-24| [2002-04-01 05:10:40] 80.139.44.106:1192 -> 12.82.140.60:21 TCP to 21 ftp
#15-1| [2002-04-01 07:23:38] 151.203.116.145:1048 -> 12.82.128.230:137 UDP to 137 netBIOS ns
#15-2| [2002-04-01 08:01:27] 67.40.51.133:63040 -> 12.82.128.230:137 UDP to 137 netBIOS ns
#15-3| [2002-04-01 08:29:53] 210.0.143.36:2000 -> 12.82.128.230:21 TCP to 21 ftp
#15-4| [2002-04-01 08:29:56] 210.0.143.36:2000 -> 12.82.128.230:21 TCP to 21 ftp
#15-5| [2002-04-01 08:40:25] 210.0.143.36:4439 -> 12.82.128.230:21 TCP to 21 ftp
#15-6| [2002-04-01 08:40:28] 210.0.143.36:4439 -> 12.82.128.230:21 TCP to 21 ftp
#15-7| [2002-04-01 10:01:53] 200.28.185.30:3966 -> 12.82.128.230:27374 TCP to 27374 SubSeven
#15-8| [2002-04-01 10:01:56] 200.28.185.30:3966 -> 12.82.128.230:27374 TCP to 27374 SubSeven
#15-9| [2002-04-01 10:02:03] 200.28.185.30:3966 -> 12.82.128.230:27374 TCP to 27374 SubSeven
#15-10| [2002-04-01 10:19:47] 67.80.114.112:2055 -> 12.82.128.230:27374 TCP to 27374 SubSeven
#15-11| [2002-04-01 10:19:50] 67.80.114.112:2055 -> 12.82.128.230:27374 TCP to 27374 SubSeven
#15-12| [2002-04-01 10:19:56] 67.80.114.112:2055 -> 12.82.128.230:27374 TCP to 27374 SubSeven
#15-13| [2002-04-01 10:20:08] 67.80.114.112:2055 -> 12.82.128.230:27374 TCP to 27374 SubSeven
#15-15| [2002-04-01 11:14:46] 172.161.58.93:2524 -> 12.82.128.230:27374 TCP to 27374 SubSeven
#15-16| [2002-04-01 11:14:49] 172.161.58.93:2524 -> 12.82.128.230:27374 TCP to 27374 SubSeven
#15-17| [2002-04-01 11:49:08] 12.35.123.106:1296 -> 12.82.128.230:27374 TCP to 27374 SubSeven
#15-18| [2002-04-01 11:49:11] 12.35.123.106:1296 -> 12.82.128.230:27374 TCP to 27374 SubSeven
#15-19| [2002-04-01 11:49:17] 12.35.123.106:1296 -> 12.82.128.230:27374 TCP to 27374 SubSeven
#15-20| [2002-04-01 12:32:55] 12.82.142.100:1256 -> 12.82.128.230:80 Potential CodeRed/Nimda probe
#15-21| [2002-04-01 12:36:48] 12.82.142.100:4053 -> 12.82.128.230:80 Potential CodeRed/Nimda probe
#15-22| [2002-04-01 12:36:51] 12.82.142.100:4053 -> 12.82.128.230:80 Potential CodeRed/Nimda probe
#17-1| [2002-04-01 14:13:33] 12.82.140.182:3083 -> 12.82.128.19:80 Potential CodeRed/Nimda probe
#17-2| [2002-04-01 14:13:36] 12.82.140.182:3083 -> 12.82.128.19:80 Potential CodeRed/Nimda probe
#17-3| [2002-04-01 14:44:23] 12.82.140.182:4225 -> 12.82.128.19:80 Potential CodeRed/Nimda probe
#17-4| [2002-04-01 14:44:26] 12.82.140.182:4225 -> 12.82.128.19:80 Potential CodeRed/Nimda probe
#18-1| [2002-04-01 15:57:56] 12.82.140.182:3668 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-2| [2002-04-01 15:57:59] 12.82.140.182:3668 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-3| [2002-04-01 16:12:46] 12.82.140.182:2956 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-4| [2002-04-01 16:12:49] 12.82.140.182:2956 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-5| [2002-04-01 16:50:09] 12.82.140.182:3978 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-6| [2002-04-01 16:50:12] 12.82.140.182:3978 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-7| [2002-04-01 17:14:55] 12.82.173.179:2539 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-8| [2002-04-01 17:14:58] 12.82.173.179:2539 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-9| [2002-04-01 17:34:23] 12.82.128.174:1979 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-10| [2002-04-01 17:34:25] 12.82.128.174:1979 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-11| [2002-04-01 17:37:10] 12.82.128.174:3453 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-12| [2002-04-01 17:37:12] 12.82.128.174:3453 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-13| [2002-04-01 17:42:49] 12.82.128.174:2466 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-14| [2002-04-01 17:42:53] 12.82.128.174:2466 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-15| [2002-04-01 18:02:05] 12.82.140.182:1620 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-16| [2002-04-01 18:02:08] 12.82.140.182:1620 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-17| [2002-04-01 18:18:13] 12.82.128.174:1729 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-18| [2002-04-01 18:18:16] 12.82.128.174:1729 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-19| [2002-04-01 18:27:31] 12.82.128.174:2917 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-20| [2002-04-01 18:27:35] 12.82.128.174:2917 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-21| [2002-04-01 18:31:07] 12.82.140.5:4472 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-22| [2002-04-01 18:31:09] 12.82.140.5:4472 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-23| [2002-04-01 18:42:29] 12.82.128.174:3776 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-24| [2002-04-01 18:42:32] 12.82.128.174:3776 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-25| [2002-04-01 18:52:33] 12.82.140.182:3732 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-26| [2002-04-01 18:52:37] 12.82.140.182:3732 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-28| [2002-04-01 19:51:54] 12.82.140.66:1086 -> 12.82.140.109:137 UDP to 137 netBIOS ns
#18-29| [2002-04-01 20:14:55] 210.24.202.27 -> 12.82.140.109 ICMP echo request
#18-30| [2002-04-01 20:25:59] 12.82.151.138:3534 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-31| [2002-04-01 20:26:02] 12.82.151.138:3534 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-32| [2002-04-01 20:29:44] 12.248.197.76:2413 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-33| [2002-04-01 20:35:22] 12.82.151.138:4478 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-34| [2002-04-01 20:35:25] 12.82.151.138:4478 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-50| [2002-04-01 20:41:32] 80.56.144.47:3922 -> 12.82.140.109:21 TCP to 21 ftp
#18-51| [2002-04-01 20:41:35] 80.56.144.47:3922 -> 12.82.140.109:21 TCP to 21 ftp
#18-52| [2002-04-01 20:45:27] 128.121.10.146:57226 -> 12.82.140.109:53 TCP to 53 domain
#18-53| [2002-04-01 20:45:27] 209.157.68.18:12906 -> 12.82.140.109:53 TCP to 53 domain
#18-54| [2002-04-01 20:45:27] 216.33.35.214:11972 -> 12.82.140.109:53 TCP to 53 domain
#18-55| [2002-04-01 20:45:27] 216.35.167.58:32840 -> 12.82.140.109:53 TCP to 53 domain
#18-56| [2002-04-01 20:45:27] 129.250.244.10:17044 -> 12.82.140.109:53 TCP to 53 domain
#18-57| [2002-04-01 20:45:27] 64.14.200.154:64811 -> 12.82.140.109:53 TCP to 53 domain
#18-58| [2002-04-01 20:45:27] 216.34.68.2:33214 -> 12.82.140.109:53 TCP to 53 domain
#18-59| [2002-04-01 20:45:27] 64.37.200.46:56672 -> 12.82.140.109:53 TCP to 53 domain
#18-60| [2002-04-01 20:45:27] 213.248.75.42:59940 -> 12.82.140.109:53 TCP to 53 domain
#18-61| [2002-04-01 20:45:27] 213.248.69.78:22722 -> 12.82.140.109:53 TCP to 53 domain
#18-62| [2002-04-01 20:45:27] 194.213.64.150:35733 -> 12.82.140.109:53 TCP to 53 domain
#18-63| [2002-04-01 20:45:27] 64.56.174.186:64258 -> 12.82.140.109:53 TCP to 53 domain
#18-64| [2002-04-01 20:45:27] 213.248.70.234:14505 -> 12.82.140.109:53 TCP to 53 domain
#18-65| [2002-04-01 20:45:28] 203.81.45.254:42103 -> 12.82.140.109:53 TCP to 53 domain
#18-66| [2002-04-01 20:45:28] 203.194.166.182:37118 -> 12.82.140.109:53 TCP to 53 domain
#18-67| [2002-04-01 20:45:28] 202.139.133.129:39692 -> 12.82.140.109:53 TCP to 53 domain
#18-68| [2002-04-01 20:45:30] 216.33.35.214:12189 -> 12.82.140.109:53 TCP to 53 domain
#18-69| [2002-04-01 20:45:30] 128.121.10.146:57382 -> 12.82.140.109:53 TCP to 53 domain
#18-70| [2002-04-01 20:45:30] 209.157.68.18:13118 -> 12.82.140.109:53 TCP to 53 domain
#18-71| [2002-04-01 20:45:30] 129.250.244.10:17252 -> 12.82.140.109:53 TCP to 53 domain
#18-72| [2002-04-01 20:45:30] 216.35.167.58:33049 -> 12.82.140.109:53 TCP to 53 domain
#18-73| [2002-04-01 20:45:30] 64.14.200.154:65025 -> 12.82.140.109:53 TCP to 53 domain
#18-74| [2002-04-01 20:45:30] 216.34.68.2:33427 -> 12.82.140.109:53 TCP to 53 domain
#18-75| [2002-04-01 20:45:30] 64.37.200.46:56889 -> 12.82.140.109:53 TCP to 53 domain
#18-76| [2002-04-01 20:45:30] 213.248.75.42:60116 -> 12.82.140.109:53 TCP to 53 domain
#18-77| [2002-04-01 20:45:30] 213.248.69.78:22934 -> 12.82.140.109:53 TCP to 53 domain
#18-78| [2002-04-01 20:45:30] 194.213.64.150:35873 -> 12.82.140.109:53 TCP to 53 domain
#18-79| [2002-04-01 20:45:30] 213.248.70.234:14713 -> 12.82.140.109:53 TCP to 53 domain
#18-80| [2002-04-01 20:45:30] 64.56.174.186:64471 -> 12.82.140.109:53 TCP to 53 domain
#18-81| [2002-04-01 20:45:30] 203.81.45.254:42311 -> 12.82.140.109:53 TCP to 53 domain
#18-82| [2002-04-01 20:45:30] 203.194.166.182:37348 -> 12.82.140.109:53 TCP to 53 domain
#18-83| [2002-04-01 20:45:30] 202.139.133.129:39922 -> 12.82.140.109:53 TCP to 53 domain
#18-86| [2002-04-01 20:45:32] 216.34.68.2:33561 -> 12.82.140.109:53 TCP to 53 domain
#18-87| [2002-04-01 20:45:32] 64.37.200.46:57023 -> 12.82.140.109:53 TCP to 53 domain
#18-88| [2002-04-01 20:45:32] 216.33.35.214:12322 -> 12.82.140.109:53 TCP to 53 domain
#18-89| [2002-04-01 20:45:32] 128.121.10.146:57497 -> 12.82.140.109:53 TCP to 53 domain
#18-90| [2002-04-01 20:45:32] 64.14.200.154:65158 -> 12.82.140.109:53 TCP to 53 domain
#18-91| [2002-04-01 20:45:32] 129.250.244.10:17386 -> 12.82.140.109:53 TCP to 53 domain
#18-92| [2002-04-01 20:45:32] 209.157.68.18:13252 -> 12.82.140.109:53 TCP to 53 domain
#18-93| [2002-04-01 20:45:32] 216.35.167.58:33183 -> 12.82.140.109:53 TCP to 53 domain
#18-94| [2002-04-01 20:45:32] 213.248.75.42:60228 -> 12.82.140.109:53 TCP to 53 domain
#18-95| [2002-04-01 20:45:33] 64.56.174.186:64609 -> 12.82.140.109:53 TCP to 53 domain
#18-96| [2002-04-01 20:45:33] 213.248.69.78:23067 -> 12.82.140.109:53 TCP to 53 domain
#18-97| [2002-04-01 20:45:33] 213.248.70.234:14846 -> 12.82.140.109:53 TCP to 53 domain
#18-100| [2002-04-01 20:45:33] 203.194.166.182:37457 -> 12.82.140.109:53 TCP to 53 domain
#18-101| [2002-04-01 20:45:33] 203.81.45.254:42457 -> 12.82.140.109:53 TCP to 53 domain
#18-102| [2002-04-01 20:45:33] 202.139.133.129:40038 -> 12.82.140.109:53 TCP to 53 domain
#18-105| [2002-04-01 20:45:35] 64.56.174.186:64609 -> 12.82.140.109:53 TCP to 53 domain
#18-106| [2002-04-01 20:45:35] 213.248.69.78:23067 -> 12.82.140.109:53 TCP to 53 domain
#18-107| [2002-04-01 20:45:35] 213.248.70.234:14846 -> 12.82.140.109:53 TCP to 53 domain
#18-108| [2002-04-01 20:45:35] 203.194.166.182:37457 -> 12.82.140.109:53 TCP to 53 domain
#18-109| [2002-04-01 20:45:35] 203.81.45.254:42457 -> 12.82.140.109:53 TCP to 53 domain
#18-110| [2002-04-01 20:45:35] 202.139.133.129:40038 -> 12.82.140.109:53 TCP to 53 domain
#18-111| [2002-04-01 20:45:35] 128.121.10.146:57684 -> 12.82.140.109:53 TCP to 53 domain
#18-112| [2002-04-01 20:45:35] 216.34.68.2:33797 -> 12.82.140.109:53 TCP to 53 domain
#18-113| [2002-04-01 20:45:35] 64.14.200.154:65393 -> 12.82.140.109:53 TCP to 53 domain
#18-114| [2002-04-01 20:45:35] 209.157.68.18:13488 -> 12.82.140.109:53 TCP to 53 domain
#18-115| [2002-04-01 20:45:35] 213.248.75.42:60420 -> 12.82.140.109:53 TCP to 53 domain
#18-116| [2002-04-01 20:45:35] 64.56.174.186:64837 -> 12.82.140.109:53 TCP to 53 domain
#18-117| [2002-04-01 20:45:35] 203.194.166.182:37700 -> 12.82.140.109:53 TCP to 53 domain
#18-118| [2002-04-01 20:45:35] 203.81.45.254:42681 -> 12.82.140.109:53 TCP to 53 domain
#18-119| [2002-04-01 20:45:35] 202.139.133.129:40274 -> 12.82.140.109:53 TCP to 53 domain
#18-120| [2002-04-01 20:45:35] 64.37.200.46:57286 -> 12.82.140.109:53 TCP to 53 domain
#18-121| [2002-04-01 20:45:35] 216.33.35.214:12583 -> 12.82.140.109:53 TCP to 53 domain
#18-122| [2002-04-01 20:45:35] 129.250.244.10:17648 -> 12.82.140.109:53 TCP to 53 domain
#18-123| [2002-04-01 20:45:35] 216.35.167.58:33445 -> 12.82.140.109:53 TCP to 53 domain
#18-124| [2002-04-01 20:45:35] 213.248.69.78:23328 -> 12.82.140.109:53 TCP to 53 domain
#18-125| [2002-04-01 20:45:35] 213.248.70.234:15107 -> 12.82.140.109:53 TCP to 53 domain
#18-84| [2002-04-01 20:45:31] 209.225.26.98 -> 12.82.140.109 ICMP echo request
#18-85| [2002-04-01 20:45:31] 66.207.130.72 -> 12.82.140.109 ICMP echo request
#18-98| [2002-04-01 20:45:33] 209.225.26.98 -> 12.82.140.109 ICMP echo request
#18-99| [2002-04-01 20:45:33] 66.207.130.72 -> 12.82.140.109 ICMP echo request
#18-103| [2002-04-01 20:45:33] 209.225.26.98 -> 12.82.140.109 ICMP echo request
#18-104| [2002-04-01 20:45:33] 66.207.130.72 -> 12.82.140.109 ICMP echo request
#18-126| [2002-04-01 20:46:45] 63.241.68.71 -> 12.82.140.109 ICMP echo request
#18-127| [2002-04-01 20:46:46] 63.241.68.71 -> 12.82.140.109 ICMP echo request
#18-128| [2002-04-01 20:46:47] 63.241.68.71 -> 12.82.140.109 ICMP echo request
#18-129| [2002-04-01 20:47:42] 206.146.143.219 -> 12.82.140.109 ICMP echo request
#18-130| [2002-04-01 20:47:43] 206.146.143.219 -> 12.82.140.109 ICMP echo request
#18-131| [2002-04-01 20:47:44] 206.146.143.219 -> 12.82.140.109 ICMP echo request
#18-132| [2002-04-01 20:47:46] 63.240.26.31 -> 12.82.140.109 ICMP echo request
#18-133| [2002-04-01 20:47:47] 63.240.26.31 -> 12.82.140.109 ICMP echo request
#18-134| [2002-04-01 20:47:48] 63.241.68.31 -> 12.82.140.109 ICMP echo request
#18-135| [2002-04-01 20:47:48] 63.240.26.31 -> 12.82.140.109 ICMP echo request
#18-136| [2002-04-01 20:47:49] 63.241.68.31 -> 12.82.140.109 ICMP echo request
#18-137| [2002-04-01 20:47:50] 63.241.68.31 -> 12.82.140.109 ICMP echo request
#18-138| [2002-04-01 20:48:07] 63.240.26.31 -> 12.82.140.109 ICMP echo request
#18-139| [2002-04-01 20:48:07] 206.146.143.219 -> 12.82.140.109 ICMP echo request
#18-140| [2002-04-01 20:48:08] 63.240.26.31 -> 12.82.140.109 ICMP echo request
#18-141| [2002-04-01 20:48:08] 206.146.143.219 -> 12.82.140.109 ICMP echo request
#18-142| [2002-04-01 20:48:09] 63.240.26.31 -> 12.82.140.109 ICMP echo request
#18-143| [2002-04-01 20:48:09] 206.146.143.219 -> 12.82.140.109 ICMP echo request
#18-144| [2002-04-01 20:48:15] 63.241.68.31 -> 12.82.140.109 ICMP echo request
#18-145| [2002-04-01 20:48:16] 63.241.68.31 -> 12.82.140.109 ICMP echo request
#18-146| [2002-04-01 20:48:17] 63.241.68.31 -> 12.82.140.109 ICMP echo request
#18-147| [2002-04-01 20:48:27] 63.240.26.31 -> 12.82.140.109 ICMP echo request
#18-148| [2002-04-01 20:48:27] 206.146.143.219 -> 12.82.140.109 ICMP echo request
#18-149| [2002-04-01 20:48:28] 63.240.26.31 -> 12.82.140.109 ICMP echo request
#18-150| [2002-04-01 20:48:28] 206.146.143.219 -> 12.82.140.109 ICMP echo request
#18-151| [2002-04-01 20:48:29] 63.240.26.31 -> 12.82.140.109 ICMP echo request
#18-152| [2002-04-01 20:48:29] 206.146.143.219 -> 12.82.140.109 ICMP echo request
#18-153| [2002-04-01 20:48:47] 206.146.143.219 -> 12.82.140.109 ICMP echo request
#18-154| [2002-04-01 20:48:48] 206.146.143.219 -> 12.82.140.109 ICMP echo request
#18-156| [2002-04-01 20:50:58] 209.225.53.252:22305 -> 12.82.140.109:53 UDP to 53 domain
#18-157| [2002-04-01 20:50:59] 209.225.53.252:22305 -> 12.82.140.109:53 UDP to 53 domain
#18-158| [2002-04-01 20:51:00] 209.225.53.252:22305 -> 12.82.140.109:53 UDP to 53 domain
#18-159| [2002-04-01 20:51:31] 66.35.210.60:58217 -> 12.82.140.109:53 UDP to 53 domain
#18-160| [2002-04-01 20:51:32] 66.35.210.60:58217 -> 12.82.140.109:53 UDP to 53 domain
#18-161| [2002-04-01 20:51:33] 66.35.210.60:58217 -> 12.82.140.109:53 UDP to 53 domain
#18-155| [2002-04-01 20:48:49] 206.146.143.219 -> 12.82.140.109 ICMP echo request
#18-162| [2002-04-01 20:55:47] 12.82.151.138:3839 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-163| [2002-04-01 20:55:50] 12.82.151.138:3839 -> 12.82.140.109:80 Potential CodeRed/Nimda probe
#18-164| [2002-04-01 20:55:52] 66.35.210.61:24524 -> 12.82.140.109:53 UDP to 53 domain
#18-165| [2002-04-01 20:55:53] 66.35.210.61:24524 -> 12.82.140.109:53 UDP to 53 domain
#18-166| [2002-04-01 20:55:54] 66.35.210.61:24524 -> 12.82.140.109:53 UDP to 53 domain
#18-167| [2002-04-01 20:59:51] 66.35.210.60:60093 -> 12.82.140.109:53 UDP to 53 domain
#18-168| [2002-04-01 20:59:52] 66.35.210.60:60093 -> 12.82.140.109:53 UDP to 53 domain
#18-169| [2002-04-01 20:59:53] 66.35.210.60:60093 -> 12.82.140.109:53 UDP to 53 domain
#18-170| [2002-04-01 21:00:18] 209.225.53.252:24273 -> 12.82.140.109:53 UDP to 53 domain
#18-171| [2002-04-01 21:00:19] 209.225.53.252:24273 -> 12.82.140.109:53 UDP to 53 domain
#18-172| [2002-04-01 21:00:20] 209.225.53.252:24273 -> 12.82.140.109:53 UDP to 53 domain
#18-173| [2002-04-01 21:05:57] 66.35.210.61:26411 -> 12.82.140.109:53 UDP to 53 domain
#18-174| [2002-04-01 21:05:58] 66.35.210.61:26411 -> 12.82.140.109:53 UDP to 53 domain
#18-175| [2002-04-01 21:05:59] 66.35.210.61:26411 -> 12.82.140.109:53 UDP to 53 domain
#18-176| [2002-04-01 21:12:47] 66.35.210.60:63081 -> 12.82.140.109:53 UDP to 53 domain
#18-177| [2002-04-01 21:12:48] 66.35.210.60:63081 -> 12.82.140.109:53 UDP to 53 domain
#18-178| [2002-04-01 21:12:49] 66.35.210.60:63081 -> 12.82.140.109:53 UDP to 53 domain
#18-179| [2002-04-01 21:15:28] 209.225.53.254:36131 -> 12.82.140.109:53 UDP to 53 domain
#18-180| [2002-04-01 21:15:29] 209.225.53.254:36131 -> 12.82.140.109:53 UDP to 53 domain
#18-181| [2002-04-01 21:15:30] 209.225.53.254:36131 -> 12.82.140.109:53 UDP to 53 domain
#18-182| [2002-04-01 21:23:27] 66.35.210.60:2346 -> 12.82.140.109:53 UDP to 53 domain
#18-183| [2002-04-01 21:23:28] 66.35.210.60:2346 -> 12.82.140.109:53 UDP to 53 domain
#18-184| [2002-04-01 21:23:29] 66.35.210.60:2346 -> 12.82.140.109:53 UDP to 53 domain
#18-185| [2002-04-01 21:33:23] 209.225.53.254:38640 -> 12.82.140.109:53 UDP to 53 domain
#18-186| [2002-04-01 21:33:24] 209.225.53.254:38640 -> 12.82.140.109:53 UDP to 53 domain
#18-187| [2002-04-01 21:33:25] 209.225.53.254:38640 -> 12.82.140.109:53 UDP to 53 domain
jsage@finchhaven.com
Last modified: Thu Apr 4 19:32:59 2002