Lee,
Thanks for the info about this worm and as soon I make it to the office, I will take a closer look at this worm. Although I don't manage the IP ranges that you listed below, I wonder if it was necessary to disclose this to the NAG group. Perhaps the IP ranges portion of your message should have gone to [log in to unmask]
Firm.
-----Original Message-----
From: MSU Network Administrators Group on behalf of Lee A Duynslager
Sent: Thu 1/4/2007 8:54 PM
To: [log in to unmask]
Subject: [MSUNAG] Symantec: Another Surge In Worm Scanning For Unpatched Antivirus Software (fwd)
According to a recent article Dated Dec 22, 2006, out on the following
website:
http://www.techweb.com/showArticle.jhtml?articleID=196701740
Symantec: Another Surge In Worm Scanning For Unpatched Antivirus Software
"Symantec said Friday that it had detected another surge in scans for a port
associated with a worm that's been sniffing for vulnerable software made by
the security company and warned users to patch immediately in case the
malicious code morphs into something more dangerous.
Sensors monitored by Symantec's DeepSight threat management service have
reported a significant spike in traffic related to TCP port 2967, which
Symantec has traced to scans generated by the "Sagevo" worm, recently
released malware looking for systems running some of the company's
enterprise antivirus software. "
After reviewing my firewall and IDP logs, I believe there are a number of
machines at MSU infected with this worm, if ip addresses of your machines
are in this list please take action:
35.8.224.95
35.8.52.8
35.8.52.45
35.8.52.47
35.8.52.70
35.8.52.132
35.8.53.36
35.8.53.59
35.8.53.78
35.8.53.81
35.8.53.84
35.8.53.87
35.8.53.88
35.8.53.92
35.8.53.102
35.8.53.107
35.8.53.115
35.8.53.116
35.8.53.117
35.8.53.120
35.8.53.121
35.8.53.122
35.8.53.123
35.8.53.126
35.8.53.135
35.8.53.139
35.8.53.149
35.8.53.151
35.8.53.153
35.8.53.154
35.8.53.159
35.8.53.160
35.8.53.162
35.8.53.163
35.8.53.165
35.8.53.167
35.8.53.175
35.8.53.177
35.8.53.178
35.8.53.180
35.8.53.181
35.8.53.185
35.8.53.186
35.8.53.196
35.8.53.253
35.8.163.66
35.8.163.75
35.8.224.95
35.8.52.8
35.8.52.10
35.8.224.88
35.8.224.95
FIREWALL LOG ENTRIES FOLLOW, MY IP ADDRESSES ARE MASKED.
From 35.8.52.8 - 20 packets
To XX.XX.XX.XX - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
From 35.8.52.45 - 5 packets
To XX.XX.XX.XX - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX2 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX0 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
From 35.8.52.47 - 13 packets
To XX.XX.XX.XX - 6 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 6 packets
To XX.XX.XX.XX - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX2 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX5 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX6 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
From 35.8.52.70 - 8 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX0 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX2 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX5 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
From 35.8.52.132 - 5 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX5 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
From 35.8.53.36 - 45 packets
To XX.XX.XX.XX - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX - 7 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 7 packets
To XX.XX.XX.XX0 - 5 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 5 packets
To XX.XX.XX.XX2 - 7 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 7 packets
To XX.XX.XX.XX5 - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX0 - 6 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 6 packets
To XX.XX.XX.XX6 - 8 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 8 packets
From 35.8.53.59 - 4 packets
To XX.XX.XX.XX - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX2 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
From 35.8.53.78 - 12 packets
To XX.XX.XX.XX - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX0 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX2 - 8 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 8 packets
From 35.8.53.81 - 5 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX0 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX2 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
From 35.8.53.84 - 16 packets
To XX.XX.XX.XX - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX - 5 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 5 packets
To XX.XX.XX.XX0 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX5 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX0 - 5 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 5 packets
From 35.8.53.87 - 25 packets
To XX.XX.XX.XX - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX0 - 5 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 5 packets
To XX.XX.XX.XX2 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX5 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX6 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
From 35.8.53.88 - 26 packets
To XX.XX.XX.XX - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX - 8 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 8 packets
To XX.XX.XX.XX - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX0 - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX5 - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX0 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX6 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
From 35.8.53.92 - 17 packets
To XX.XX.XX.XX - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX - 6 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 6 packets
To XX.XX.XX.XX0 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX2 - 5 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 5 packets
To XX.XX.XX.XX5 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
From 35.8.53.102 - 15 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX2 - 6 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 6 packets
To XX.XX.XX.XX5 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX0 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX6 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
From 35.8.53.107 - 11 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX5 - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX6 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
From 35.8.53.115 - 7 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX0 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX6 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
From 35.8.53.116 - 2 packets
To XX.XX.XX.XX - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
From 35.8.53.117 - 12 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX0 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX2 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX5 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX0 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX6 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
From 35.8.53.120 - 32 packets
To XX.XX.XX.XX - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX - 7 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 7 packets
To XX.XX.XX.XX0 - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX2 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX5 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX0 - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX6 - 8 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 8 packets
From 35.8.53.121 - 18 packets
To XX.XX.XX.XX - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX0 - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX2 - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX5 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX0 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
From 35.8.53.122 - 19 packets
To XX.XX.XX.XX - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX0 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX2 - 5 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 5 packets
To XX.XX.XX.XX5 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX0 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX6 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
From 35.8.53.123 - 13 packets
To XX.XX.XX.XX0 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX2 - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX5 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX0 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX6 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
From 35.8.53.126 - 8 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX2 - 5 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 5 packets
To XX.XX.XX.XX0 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
From 35.8.53.135 - 12 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX2 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX5 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX6 - 6 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 6 packets
From 35.8.53.139 - 10 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX2 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX5 - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
From 35.8.53.149 - 1 packet
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
From 35.8.53.151 - 20 packets
To XX.XX.XX.XX - 9 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 9 packets
To XX.XX.XX.XX - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX2 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX5 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX0 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX6 - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
From 35.8.53.153 - 3 packets
To XX.XX.XX.XX0 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX6 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
From 35.8.53.154 - 4 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX0 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX5 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
From 35.8.53.159 - 9 packets
To XX.XX.XX.XX - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX2 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX5 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
From 35.8.53.160 - 6 packets
To XX.XX.XX.XX2 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX0 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX6 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
From 35.8.53.162 - 6 packets
To XX.XX.XX.XX - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX0 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
From 35.8.53.163 - 17 packets
To XX.XX.XX.XX - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX2 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX5 - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX6 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
From 35.8.53.165 - 11 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX0 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX5 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX0 - 7 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 7 packets
From 35.8.53.167 - 6 packets
To XX.XX.XX.XX0 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX5 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX0 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
From 35.8.53.175 - 9 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX2 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX5 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX0 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX6 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
From 35.8.53.177 - 15 packets
To XX.XX.XX.XX - 5 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 5 packets
To XX.XX.XX.XX - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX0 - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX5 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
From 35.8.53.178 - 14 packets
To XX.XX.XX.XX - 8 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 8 packets
To XX.XX.XX.XX2 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX5 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX0 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
From 35.8.53.180 - 19 packets
To XX.XX.XX.XX - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX5 - 8 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 8 packets
To XX.XX.XX.XX0 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX6 - 2 packets
Service: 135 (tcp/135) (INPUT packet died:,eth0,none) - 2 packets
From 35.8.53.181 - 15 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX0 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX5 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX0 - 5 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 5 packets
From 35.8.53.185 - 15 packets
To XX.XX.XX.XX - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX0 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX5 - 8 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 8 packets
To XX.XX.XX.XX0 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX6 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
From 35.8.53.186 - 5 packets
To XX.XX.XX.XX - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX2 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
From 35.8.53.196 - 20 packets
To XX.XX.XX.XX - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX0 - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX5 - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX0 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX6 - 5 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 5 packets
From 35.8.53.253 - 13 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX5 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX0 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX6 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
From 35.8.163.66 - 6 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX0 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX6 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets
To XX.XX.XX.XX7 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
From 35.8.163.75 - 11 packets
To XX.XX.XX.XX0 - 6 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 6 packets
To XX.XX.XX.XX2 - 5 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 5 packets
From 35.8.224.95 - 21 packets
To XX.XX.XX.XX - 7 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 7 packets
To XX.XX.XX.XX0 - 6 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 6 packets
To XX.XX.XX.XX2 - 5 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 5 packets
To XX.XX.XX.XX5 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
From 35.8.52.8 - 79 packets
To XX.XX.XX.XX - 25 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 25 packets
To XX.XX.XX.XX - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX - 11 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 11 packets
To XX.XX.XX.XX0 - 14 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 14 packets
To XX.XX.XX.XX2 - 8 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 8 packets
To XX.XX.XX.XX5 - 7 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 7 packets
To XX.XX.XX.XX0 - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX6 - 6 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 6 packets
From 35.8.52.10 - 91 packets
To XX.XX.XX.XX - 8 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 8 packets
From 35.8.224.88 - 15 packets
To XX.XX.XX.XX - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
To XX.XX.XX.XX - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX0 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX5 - 4 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 4 packets
To XX.XX.XX.XX0 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX6 - 1 packet
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 1 packet
From 35.8.224.95 - 16 packets
To XX.XX.XX.XX - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX2 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX5 - 3 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 3 packets
To XX.XX.XX.XX0 - 5 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 5 packets
To XX.XX.XX.XX6 - 2 packets
Service: 2967 (tcp/2967) (INPUT packet died:,eth0,none) - 2 packets