Altair Technologies - "office" IP forensics analysis for IP address 192.168.0.102
Fri Jun 11 00:00:00 2004 to Fri Jun 11 23:59:59 2004
| First event | Jun 11 2004 12:11:13 |
| Last event | Jun 11 2004 17:28:33 |
| Details | Jun 11 2004 |
| Running services | |
| Used services | |
| Traffic | |
| Jun 11 2004 | ||
| Time | Action | Comments |
| 00:00:00 | No activity | |
| 01:00:00 | No activity | |
| 02:00:00 | No activity | |
| 03:00:00 | No activity | |
| 04:00:00 | No activity | |
| 05:00:00 | No activity | |
| 06:00:00 | No activity | |
| 07:00:00 | No activity | |
| 08:00:00 | No activity | |
| 09:00:00 | No activity | |
| 10:00:00 | No activity | |
| 11:00:00 | No activity | |
| 12:11:13 | Connected to mx1.altairtech.ca using the UDP/1 protocol (UDP/1) |
|
| 12:11:28 | Connected to msg.dcn.yahoo.com using yahoo messenger (TCP/5050) (TCP/5050) |
8,736 sec 7,527 bytes out |
| 12:11:29 | Browsed to yahoo.com (204.71.200.36) and accessed: /msgrcli.html /pgdownload/components.html |
Yahoo Messenger 2,081 bytes out |
| 12:11:29 | Browsed to 64.215.172.72 (64.215.172.72) |
436 bytes out |
| 12:11:33 | Browsed to in1.msg.vip.dcn.yahoo.com (216.109.116.191) and accessed: /?p=11&c=&t=1086880764 (submitted: p=11, t=1086880764) /ycontent/?&filter=1084799555&imv=1086918607&system=1081603725&sms=1085708295&chatcat=1078155313&ab2 =1086783984&intl=us&os=win (submitted: filter=1084799555, imv=1086918607, system=1081603725, sms=1085708295, chatcat=1078155313, ab2=1086783984, intl=us, os=win) |
6,033 bytes out |
| 12:11:33 | Browsed to data1.my.vip.sc5.yahoo.com (66.163.175.128) and accessed: /feed/pg4?s=quotes (submitted: s=quotes) |
Yahoo Messenger 1,197 bytes out |
| 12:11:35 | Browsed to 64.215.172.111 (64.215.172.111) and accessed: /us.yimg.com/i/mesg/insider/ins_orange.css /us.yimg.com/lib/common/yg_csstare.js |
33 sec 1,559 bytes out |
| 12:11:37 | Browsed to 64.215.172.15 (64.215.172.15) and accessed: /us.yimg.com/i/mo/riddick132b.jpg /us.yimg.com/i/mo/stepfordwives132b.jpg |
9,956 bytes out |
| 12:12:06 | Browsed to google.com (64.233.167.99) and accessed: /search?client=navclient-auto&ch=63510064629&ie=UTF-8&oe=UTF-8&features=Rank&q=info:http%3A%2F%2Fwas hingtontimes%2Ecom%2Fupi%2Dbreaking%2F20040611%2D094755%2D8599r%2Ehtm (submitted: client=navclient-auto, ch=63510064629, ie=UTF-8, oe=UTF-8, features=Rank, q=info:http://washingtontimes.com/upi-breaking/20040611-094755-8599r.htm) /search?client=navclient-auto&googleip=E;0&ch=6321099736&freshness_check=4lxfRNPAS8LY7ckWqSBj5&ie=UT F-8&oe=UTF-8&features=Rank&q=info:http%3A%2F%2Fweather%2Eyahoo%2Ecom%2Ff (submitted: client=navclient-auto, googleip=E;0, ch=6321099736, freshness_check=4lxfRNPAS8LY7ckWqSBj5, ie=UTF-8, oe=UTF-8, features=Rank, q=info:http://weather.yahoo.com/f) |
Google toolbar 126 sec 23,247 bytes out |
| 12:12:06 | Browsed to p1.weather.vip.dcn.yahoo.com (216.109.126.70) and accessed: /forecast/CAXX0289_c.html /images/ussat_440x297_thu.jpg /thumbs/bn1.jpg /thumbs/bn6.jpg |
4 sec 24,127 bytes out |
| 12:12:08 | Browsed to ad.us.doubleclick.net (216.73.86.65) and accessed: /adi/N2097.ca.yahoo.com/B1373808.4;sz=728x90;dcopt=rcl;click=http://rd.yahoo.com/SIG=120emveno/M=299 125.5008706.6163823.34241/D=wt/S=20078731:N/EXP=1087056466/A=2178567/R=0/ /adi/N3285.washingtontimes/B1316212.6;sz=120x600;click0=http://oascentral.washtimes.com/RealMedia/ad s/click_lx.ads/new.washtimes.com/upi-breaking/354943773/Position1/washtim /adi/N609.digitas.Weather.com/B1344692.3;sz=300x250;ord=2004.06.11.16.08.12? /adj/N2097.ca.yahoo.com/B1373808.4;abr=!ie;sz=728x90;dcopt=rcl;click=http://rd.yahoo.com/SIG=120emve no/M=299125.5008706.6163823.34241/D=wt/S=20078731:N/EXP=1087056466/A=2178 /adj/N3285.washingtontimes/B1316212.6;abr=!ie;sz=120x600;click0=http://oascentral.washtimes.com/Real Media/ads/click_lx.ads/new.washtimes.com/upi-breaking/354943773/Position1 /adj/N609.digitas.Weather.com/B1344692.3;abr=!ie;sz=300x250;ord=2004.06.11.16.08.12? /adj/N609.digitas.Weather.com/B1344692.3;abr=!ie;sz=300x250;ord=2004.06.11.16.10.15? |
148 sec 20,250 bytes out |
| 12:12:09 | Browsed to 64.215.172.71 (64.215.172.71) and accessed: /us.yimg.com/a/1-/jscodes/072002/fs_pb_fitted_072002b.js |
570 bytes out |
| 12:12:09 | Browsed to 209.120.155.234 (209.120.155.234) and accessed: /510296/reason_728x90-CA.swf?clickTag=http%3A//rd.yahoo.com/SIG%3D120emveno/M%3D299125.5008706.61638 23.34241/D%3Dwt/S%3D20078731%3AN/EXP%3D1087056466/A%3D2178567/R%3D0/*h (submitted: clickTag=http://rd.yahoo.com/SIG=120emveno/M=299125.5008706.6163823.34241/D=wt/S=20078731:N/EXP%3) /767490/essentials_300x250.swf?clickTag=http%3A//ad.doubleclick.net/click%253Bh%3Dv2%7C3127%7C3%7C0% 7C%252a%7Ci%253B7802707%253B2-0%253B0%253B9018829%253B4307-300%7C250%2 (submitted: clickTag=http://ad.doubleclick.net/click;h=v2|3127|3|0|*|i;7802707;2-0;0%) /895178/lmb_lre_50statessnowabb_0504_120x600.swf?clickTag=http%3A//ad.doubleclick.net/click%253Bh%3D v2%7C3127%7C17%7Cd8%7C%252a%7Cj%253B8579869%253B1-0%253B0%253B9459154% (submitted: clickTag=http://ad.doubleclick.net/click;h=v2|3127|17|d8|*|j;8579869;1-0;0%) |
130 sec 80,877 bytes out |
| 12:12:30 | Browsed to w4.rd.dcn.yahoo.com (216.109.127.249) and accessed: /SIG=125kh04qe/M=216468.4402777.5591713.1666089/D=wt/S=20078731:WTHE/EXP=1087056466/A=1056905/R=0/SI G=12ubvifaa/*http://www.weather.com/weather/extended/CAXX0289?par=yaho (submitted: par=yaho) |
1,559 bytes out |
| 12:12:30 | Browsed to web1.weather.com (63.111.66.11) and accessed: /weather/extended/CAXX0289?par=yahoo&site=www.yahoo.com&promo=forecast (submitted: par=yahoo, site=www.yahoo.com, promo=forecast) |
30,997 bytes out |
| 12:12:31 | Browsed to origin.fe.weather.com (63.111.66.54) and accessed: /web/common/header/stylesheet/style_sheet.css |
7,296 bytes out |
| 12:12:33 | Browsed to 207.61.132.40 (207.61.132.40) and accessed: /6/800/1133/1086197966/oasc02.247realmedia.com/RealMedia/ads/Creatives/washtimes/twt_nav_FP_feature2/ wtimesMY.gif /6/800/1133/1086197966/oasc02.247realmedia.com/RealMedia/ads/Creatives/washtimes/twt_nav_feature/fea ture.gif /multimedia/realone/popup/detect.js /web/common/banners/spring/travel.jpg |
104 sec 39,343 bytes out |
| 12:12:34 | Browsed to google.com (64.233.167.104) and accessed: /pagead/ads?client=ca-weather_citytravel&random=1086970338538&hl=en&safe=high&num=3&output=js&conten ts=Milton+*+travel&url=http%3A//www.weather.com/outlook/travel/extended (submitted: client=ca-weather_citytravel, random=1086970338538, hl=en, safe=high, num=3, output=js, contents=Milton+*+travel, url=http://www.weather.com/outlook/travel/extended) /pagead/show_ads.js (submitted: client=ca-weather_citytravel, random=1086970338538, hl=en, safe=high, num=3, output=js, contents=Milton+*+travel, url=http://www.weather.com/outlook/travel/extended) |
105 sec 5,289 bytes out |
| 12:12:36 | Browsed to 64.215.172.97 (64.215.172.97) and accessed: /java60/classes/adcontroller.jar /upload/sites/46800.js |
14 sec 100,224 bytes out |
| 12:13:35 | Browsed to 65.182.128.71 (65.182.128.71) and accessed: /load_image.asp?image=contactus@nowwhere.net (submitted: image=contactus@nowwhere.net) |
260 bytes out |
| 12:13:43 | Browsed to akamai.com (64.124.201.133) and accessed: /images/G/01/icons/eyebrow-upper-left-corner.gif /images/G/01/icons/eyebrow-upper-right-corner.gif |
3,001 bytes out |
| 12:13:43 | Browsed to host96.ipowerweb.com (12.129.229.196) and accessed: /Fundsnet/images/gobutton.gif /Fundsnet/images/gobuttongif |
6,855 bytes out |
| 12:13:43 | Browsed to goldrush.com (206.171.171.1) and accessed: /~acug/vendor/winxppro.jpg |
8,010 bytes out |
| 12:13:43 | Browsed to abitz.customer.loomes.de (212.40.165.111) and accessed: /schreib/officexppro.jpg |
5,903 bytes out |
| 12:13:43 | Browsed to www.fredmiranda.com (66.98.176.44) and accessed: /Buzz/photoshopbox.gif |
12,806 bytes out |
| 12:13:56 | Browsed to vrp1.atl.xpc-mii.net (63.111.30.114) and accessed: /adt/img/protectamerica/email/glowinglock/images/protam_em_glowlock_01.gif /adt/img/protectamerica/email/glowinglock/images/protam_em_glowlock_02.jpg |
15 sec 68,125 bytes out |
| 12:13:56 | Browsed to 206.112.90.66 (206.112.90.66) and accessed: /dbm83/opened.php?217&306112 |
15 sec 477 bytes out |
| 12:14:11 | Browsed to 198.65.148.234 (198.65.148.234) and accessed: /images/clear.gif /images/weather/weather2.gif /upi-breaking/20040611-094755-8599r.htm |
4 sec 89,565 bytes out |
| 12:14:12 | Browsed to oasc02a.247realmedia.com (198.87.214.22) and accessed: /RealMedia/ads/adstream_mjx.ads/new.washtimes.com/upi-breaking/1565833648@Top,Position1,Position2,Mi ddle,Bottom? |
1 sec 7,563 bytes out |
| 12:14:17 | Browsed to musicmatch.com (69.28.154.21) and accessed: /intercept/tag/int171.js /undertone/tag/int171.html |
3 sec 1,303 bytes out |
| 12:14:19 | Browsed to 64.215.172.81 (64.215.172.81) and accessed: /ads2/d/29/0/162/256/1/e0.js?s=219&z=5545 (submitted: s=219, z=5545) |
1 sec 1,265 bytes out |
| 12:14:20 | Browsed to 216.74.132.12 (216.74.132.12) and accessed: /iview/ndrtnhtl00800040ave/direct;wi.468;hi.60/01?click=http://xads.zedo.com//ads2/c%3Fa=50701%3Bx=2 9%3Bg=0,0%3Bc=162000256,162000256%3Bi=0%3Bn=162%3Bs=219%3Bs=219%3Bg=27%3 (submitted: click=http://xads.zedo.com//ads2/c?a) |
1 sec 5,317 bytes out |
| 12:14:21 | Browsed to unknown.Level3.net (166.90.213.136) and accessed: /ds/AAAVEHOTEHTL/hotels_search_html_oct2003/468x60_curve.gif /ds/AAAVEHOTEHTL/hotels_search_html_oct2003/468x60_go.gif |
1 sec 4,541 bytes out |
| 12:14:35 | Browsed to web1.weather.com (63.111.24.20) and accessed: /RealMedia/ads/adstream_mjx.ads/www.weather.com/5day/ca/0/0/milton/1716395287@HeaderSpon,PageSpon,Pa geSpon2,LocalAd,Explore1,Explore2,Explore3,Explore4,Explore5,Explore6,Spo |
15,066 bytes out |
| 12:14:58 | Browsed to www.mlive.com (65.223.248.88) and accessed: /images/footer/affiliatelogo.gif /images/spacer.gif /news/grpress/index.ssf?/base/news-4/1086965240254130.xml |
25 sec 216,052 bytes out |
| 12:15:22 | Browsed to ads5.udc.advance.net (69.2.112.15) and accessed: /RealMedia/ads/Creatives/MICHIGANLIVE/MICHCVB01MI02/sumtrav04_468x60.gif /RealMedia/ads/Creatives/MICHIGANLIVE/SPONS_SITE_01/marketing_realestate3130x60.gif |
21,168 bytes out |
| 12:15:22 | Browsed to ads.advance.net (65.223.248.72) and accessed: /RealMedia/ads/Creatives/MICHIGANLIVE/AV_SKYAUTO_MI01/auto_center.jpg /RealMedia/ads/Creatives/MICHIGANLIVE/AV_SKYAUTO_MI01/auto_top.jpg /RealMedia/ads/adstream_jx.ads/www.mlive.com/xml/story/N/NELK/@StoryAd |
36,732 bytes out |
| 12:16:06 | Browsed to www.globeandmail.com (199.246.67.250) and accessed: /cssv3/v4/footer.css /images/arrow-gray7x5.gif /partners/manulife/ws/images/but_logo.gif /servlet/ArticleNews/TPStory/LAC/20040611/REBRDLEMIERRE11/TPBusiness/Canadian |
14 sec 120,034 bytes out |
| 12:16:06 | Browsed to www.globeandmail.com (199.246.67.210) and accessed: /cssv3/print.css /imagesv3/bgm-site-logo138x49.gif /imagesv3/icons/go_dkg.gif /imagesv3/icons/gowhite.gif /imagesv3/icons/more.gif /imagesv3/spacer.gif /imagesv3/v4/masthead/go.gif /imagesv3/v4/masthead/tgam.gif /js/common.js /js/css.js /js/regwelcome.js /js/showLocator.js /js/showTextAd.js?1 |
12 sec 24,764 bytes out |
| 12:16:07 | Browsed to 199.198.129.245 (199.198.129.245) and accessed: /video/js/player.js |
3,197 bytes out |
| 12:16:08 | Browsed to www.globeandmail.com (199.246.67.251) and accessed: /counter.visit?grp=news&site=theglobeandmail&l1=Business&l2=TP&l3=Canadian&page=story&id=LAC.2004061 1.REBRDLEMIERRE11 (submitted: grp=news, site=theglobeandmail, l1=Business, l2=TP, l3=Canadian, page=story, id=LAC.20040611.REBRDLEMIERRE11) |
1,625 bytes out |
| 12:16:08 | Browsed to ad.la.mediaplex.com (64.70.10.80) and accessed: /ad/bn/3248-20319-4498-0?mpt=20040405 (submitted: mpt=20040405) |
660 bytes out |
| 12:16:08 | Browsed to www.globeandmail.com (199.246.67.114) and accessed: /servlet/AdletCounter?ad1=GAMstory_TPBusiness_300x250 (submitted: ad1=GAMstory_TPBusiness_300x250) /servlet/AdletCounter?ad1=HSBC_GamStockBox (submitted: ad1=HSBC_GamStockBox) /servlet/AdletCounter?ad1=audi_120x60_7730822 (submitted: ad1=audi_120x60_7730822) /servlet/AdletCounter?ad1=cibc_earlug_biz_7756166L (submitted: ad1=cibc_earlug_biz_7756166L) /servlet/AdletCounter?ad1=cibc_earlug_biz_7756166R (submitted: ad1=cibc_earlug_biz_7756166R) /servlet/AdletCounter?ad1=manulife_rob_6581472 (submitted: ad1=manulife_rob_6581472) /servlet/AdletCounter?ad1=microsoft_gam_7777883 (submitted: ad1=microsoft_gam_7777883) /servlet/AdletCounter?ad1=microsoft_rob_6533863v2 (submitted: ad1=microsoft_rob_6533863v2) /servlet/AdletCounter?ad1=scotiabank_gam_7527192 (submitted: ad1=scotiabank_gam_7527192) /servlet/AdletCounter?ad1=scotiabank_mortgageGAM_6330985 (submitted: ad1=scotiabank_mortgageGAM_6330985) |
11 sec 14,267 bytes out |
| 12:16:10 | Browsed to img.la.mediaplex.com (64.70.10.83) and accessed: /ads/3248/20319/040331_bizline_100x45.gif |
2 sec 2,483 bytes out |
| 12:16:11 | Browsed to www.globeandmail.com (199.246.67.248) and accessed: /images/eeeeee.gif /images/partners/audi/golf5_120x60.gif /images/partners/microsoft/120x120/m_120x120_grey.gif /images/partners/microsoft/120x90/ms_moments120x90b.gif |
3 sec 31,857 bytes out |
| 12:16:20 | Browsed to 206.65.183.125 (206.65.183.125) and accessed: /adi/N2713.globeinvestor/B1370626.2;sz=300x250;ord=2195707? /adj/N2713.globeinvestor/B1370626.2;abr=!ie;sz=300x250;ord=2195707? /adj/www.theglobeandmail.com/rob-hub;abr=!webtv;mode=Canadian;loc=lower;adpg=TPBusiness;arena=busine ss;arena=Gordon+Pitts;;ops=;nc=;kw=;pos=;sz=300x250;tile=3;ord=99792785 |
1 sec 6,781 bytes out |
| 12:16:21 | Browsed to eqvamdvip1.doubleclick.net (216.73.87.13) and accessed: /758709/osb_special_bond_300x250_bold.swf?clickTag=http%3A//ad.ca.doubleclick.net/click%253Bh%3Dv2%7 C3127%7C3%7C0%7C%252a%7Ch%253B8289778%253B0-0%253B0%253B9189893%253B4307- (submitted: clickTag=http://ad.ca.doubleclick.net/click;h=v2|3127|3|0|*|h;8289778;0-0;0) |
1 sec 22,072 bytes out |
| 12:16:45 | Browsed to 210-210-19-112.lan.sify.net (210.210.19.112) and accessed: /css/sify.css /css/solfuncs.js /images/spacer.gif /latead.php?adtag=http://ads.sify.com/RealMedia/ads/adstream_jx.ads/movies.sify.com/bollywood@Top (submitted: adtag=http://ads.sify.com/RealMedia/ads/adstream_jx.ads/movies.sify.com/bollywood@Top) /latead.php?adtag=http://ads.sify.com/RealMedia/ads/adstream_jx.ads/movies.sify.com/bollywood@Top&de lay=T (submitted: adtag=http://ads.sify.com/RealMedia/ads/adstream_jx.ads/movies.sify.com/bollywood@Top, delay=T) /movies/bollywood/fullstory.php?id=13494811 (submitted: id=13494811) /rightnavad.php?adtag=http://ads.sify.com/RealMedia/ads/adstream_jx.ads/mall.sify.com/all@Right (submitted: adtag=http://ads.sify.com/RealMedia/ads/adstream_jx.ads/mall.sify.com/all@Right) /rightnavad.php?adtag=http://ads.sify.com/RealMedia/ads/adstream_jx.ads/mall.sify.com/all@Right&dela y=T (submitted: adtag=http://ads.sify.com/RealMedia/ads/adstream_jx.ads/mall.sify.com/all@Right, delay=T) /topstories.php (submitted: adtag=http://ads.sify.com/RealMedia/ads/adstream_jx.ads/mall.sify.com/all@Right, delay=T) |
6 sec 31,088 bytes out |
| 12:16:46 | Browsed to 209.120.155.228 (209.120.155.228) and accessed: /sify.com/css/openWinMail.js /sify.com/entertainment/movies/bollywood/images/topicon_19mar04.gif |
1 sec 37,103 bytes out |
| 12:16:47 | Browsed to google.com (64.233.167.104) and accessed: /pagead/ads?client=ca-sify_484x133&random=1086970600406&adsafe=high&lmt=1086970600&format=484x133_ab gn&output=html&url=http%3A%2F%2Fsify.com%2Fmovies%2Fbollywood%2Ffullsto (submitted: client=ca-sify_484x133, random=1086970600406, adsafe=high, lmt=1086970600, format=484x133_abgn, output=html, url=http://sify.com/movies/bollywood/fullsto) |
2,048 bytes out |
| 12:16:50 | Browsed to 210-210-109-20.lan.sify.net (210.210.109.20) and accessed: /RealMedia/ads/adstream_jx.ads/mall.sify.com/all@Right /RealMedia/ads/adstream_jx.ads/movies.sify.com/bollywood@Top |
1 sec 17,795 bytes out |
| 12:16:51 | Browsed to 210-210-109-5.lan.sify.net (210.210.109.5) and accessed: /RealMedia/ads/Creatives/inh_mall_150/fdset1_150x150_charlie.gif |
1 sec 12,725 bytes out |
| 12:17:33 | Browsed to support.microsoft.com (207.46.248.245) and accessed: / /common/script/gsfx/common.js /common/script/gsfx/flyout.htc |
9 sec 489,950 bytes out |
| 12:17:36 | Browsed to support.microsoft.com (207.46.248.107) and accessed: /trans_pixel.asp?TYPE=SSPV&SOURCE=SUPPORT&URI=%2fMVP%2fEN-US%2ffh_en-us_mvpaward&GUID=1F4FC18C-F71E- 47fb-8FC9-612F8EE59C61&R=http%3a%2f%2fmvp.support.microsoft.com&msid=b2 (submitted: TYPE=SSPV, SOURCE=SUPPORT, URI=/MVP/EN-US/fh_en-us_mvpaward, GUID=1F4FC18C-F71E-47fb-8FC9-612F8EE59C61, R=http://mvp.support.microsoft.com, msid=b2) /trans_pixel.asp?TYPE=SSPV&SOURCE=SUPPORT&URI=%2fMVP%2fEN-US%2ffh_en-us_mvphomenew&GUID=1F4FC18C-F71 E-47fb-8FC9-612F8EE59C61&R=&msid=b2d65cbbcaa70a4096e1c407911ed1d1 (submitted: TYPE=SSPV, SOURCE=SUPPORT, URI=/MVP/EN-US/fh_en-us_mvphomenew, GUID=1F4FC18C-F71E-47fb-8FC9-612F8EE59C61, msid=b2d65cbbcaa70a4096e1c407911ed1d1) |
6 sec 1,835 bytes out |
| 12:17:54 | Browsed to kundenserver.de (212.227.127.71) and accessed: / /sponlist.htm |
168,426 bytes out |
| 12:17:56 | Browsed to google.com (64.233.167.99) and accessed: /logos/Logo_40wht.gif |
4,331 bytes out |
| 12:18:20 | Browsed to www.nowhere.com (205.189.214.250) and accessed: /links.htm /administration/mainlogin.asp?admin=admin (submitted: admin=admin) |
3 sec 210,967 bytes out |
| 12:22:21 | Browsed to paypal.com (64.4.241.18) and accessed: /en_US/images/pixel.gif |
1,203 bytes out |
| 12:22:28 | Browsed to r.pm0.net (216.39.113.142) |
133 sec |
| 12:22:41 | Browsed to www.bbc.co.uk (212.58.240.130) and accessed: / /nol/ifs_news/hi/front_page/ticker.stm |
1 sec 55,715 bytes out |
| 12:22:42 | Browsed to 64.14.128.203 (64.14.128.203) and accessed: /action/ar_bbc_news_homepage |
791 bytes out |
| 12:22:42 | Browsed to 207.61.132.9 (207.61.132.9) and accessed: /media/images/40259000/jpg/_40259099_count66.jpg /media/images/40260000/jpg/_40260813_bush_ap_ind.jpg |
42,731 bytes out |
| 12:22:43 | Browsed to 62.189.244.254 (62.189.244.254) and accessed: /cgi-bin/m?ci=bbc&cg=0&rd=1086970958947&si=http%3A//news.bbc.co.uk/&rp=http%3A//www.altairtech.ca/li nks.htm&sr=1280x1024&cd=32&lg=en-us&je=y&ck=y&tz=-4&ct=lan&hp=n&tl=BBC% (submitted: ci=bbc, cg=0, rd=1086970958947, si=http://news.bbc.co.uk/, rp=http://www.altairtech.ca/links.htm, sr=1280x1024, cd=32, lg=en-us, je=y, ck=y, tz=-4, ct=lan, hp=n, tl=BBC%) /v5.js (submitted: ci=bbc, cg=0, rd=1086970958947, si=http://news.bbc.co.uk/, rp=http://www.altairtech.ca/links.htm, sr=1280x1024, cd=32, lg=en-us, je=y, ck=y, tz=-4, ct=lan, hp=n, tl=BBC%) |
4,012 bytes out |
| 12:29:59 | Browsed to r.pm0.net (216.39.113.142) and accessed: /s/o?3a7.9tzn.0.254sb |
495 bytes out |
| 12:32:15 | Browsed to support.microsoft.com (207.46.248.245) and accessed: /common/script/gsfx/common.js /common/script/gsfx/flyout.htc /default.aspx?scid=fh;EN-US;mvpaward&style=toc (submitted: scid=fh;EN-US;mvpaward, style=toc) |
2 sec 265,886 bytes out |
| 12:32:15 | Browsed to google.com (64.233.167.99) and accessed: /search?client=navclient-auto&ch=61327969466&ie=UTF-8&oe=UTF-8&features=Rank&q=info:http%3A%2F%2Fmvp %2Esupport%2Emicrosoft%2Ecom%2Fdefault%2Easpx%3F (submitted: client=navclient-auto, ch=61327969466, ie=UTF-8, oe=UTF-8, features=Rank, q=info:http://mvp.support.microsoft.com/default.aspx?) /search?client=navclient-auto&ch=6351856721&freshness_check=46nqnvzfZp8H3kTQi6qHo&ie=UTF-8&oe=UTF-8& features=Rank&q=info:http%3A%2F%2Fwww%2Enowwhere%2Enet%2Fadministration%2Fquery (submitted: client=navclient-auto, ch=6351856721, freshness_check=46nqnvzfZp8H3kTQi6qHo, ie=UTF-8, oe=UTF-8, features=Rank, q=info:http://www.nowhere.com/administration/query) /search?client=navclient-auto&googleip=E;0&ch=61614330083&freshness_check=4_yh7nmPqKKTyEjE-6Je_&ie=U TF-8&oe=UTF-8&features=Rank&q=info:http%3A%2F%2Fwww%2Ealtairtech%2Eca%2F (submitted: client=navclient-auto, googleip=E;0, ch=61614330083, freshness_check=4_yh7nmPqKKTyEjE-6Je_, ie=UTF-8, oe=UTF-8, features=Rank, q=info:http://www.altairtech.ca/) /search?q=Francis.Ouellet%40OptimalPayments.com&hl=en&lr=&ie=UTF-8&sa=N&tab=gw (submitted: q=Francis.Ouellet%40OptimalPayments.com, hl=en, ie=UTF-8, sa=N, tab=gw) |
Google toolbar 135 sec 11,216 bytes out |
| 12:32:18 | Browsed to support.microsoft.com (207.46.248.107) and accessed: /trans_pixel.asp?TYPE=SSPV&SOURCE=SUPPORT&URI=%2fMVP%2fEN-US%2ffh_en-us_mvpaward&GUID=1F4FC18C-F71E- 47fb-8FC9-612F8EE59C61&R=http%3a%2f%2fwww.altairtech.ca&msid=b2d65cbbca (submitted: TYPE=SSPV, SOURCE=SUPPORT, URI=/MVP/EN-US/fh_en-us_mvpaward, GUID=1F4FC18C-F71E-47fb-8FC9-612F8EE59C61, R=http://www.altairtech.ca, msid=b2d65cbbca) |
950 bytes out |
| 12:32:26 | Browsed to www.nowhere.com (205.189.214.250) and accessed: /links.htm /administration/querydatas.asp?data=freexxx&Phase=1&QueryType=1 (submitted: data=freexxx, Phase=1, QueryType=1) |
124 sec 5,815 bytes out |
| 12:32:28 | Browsed to google.com (216.239.51.147) and accessed: / /groups?hl=en&lr=&ie=UTF-8&frame=right&th=2da34f90a146b2d6&seekm=Ous05avdCHA.1688%40tkmsftngp09 (submitted: hl=en, ie=UTF-8, frame=right, th=2da34f90a146b2d6, seekm=Ous05avdCHA.1688%40tkmsftngp09) |
8 sec 42,207 bytes out |
| 12:33:31 | Browsed to redirect.domainpeople.com (204.174.223.28) and accessed: / |
817 bytes out |
| 12:33:59 | Browsed to svr56.ehostpros.com (67.15.24.24) and accessed: /scoble/archives/001189.html |
11,598 bytes out |
| 12:34:08 | Browsed to tempuri.org (207.46.196.115) and accessed: /subscriptions/rss.xml |
2,754 bytes out |
| 12:34:41 | Opened a terminal services session on www.nowhere.com using the RDP protocol (TCP/3389) |
713 sec 206,595 bytes out |
| 12:36:22 | Browsed to www.nowhere.com (205.189.214.250) and accessed: /_vti_inf.html |
FrontPage editing 273 sec 4,106 bytes out |
| 12:40:55 | Browsed to www.nowhere.com (205.189.214.250) |
511 sec 71,226 bytes out |
| 12:41:56 | Browsed to google.com (64.233.167.99) and accessed: /search?client=navclient-auto&ch=6751150685&freshness_check=432k-vrPqKEZ7GSFr6LGq&ie=UTF-8&oe=UTF-8& features=Rank&q=info:http%3A%2F%2Fwww%2Enowwhere%2Enet%2Fadministration%2Fdupli (submitted: client=navclient-auto, ch=6751150685, freshness_check=432k-vrPqKEZ7GSFr6LGq, ie=UTF-8, oe=UTF-8, features=Rank, q=info:http://www.nowhere.com/administration/dupli) |
Google toolbar 1,330 bytes out |
| 12:44:54 | Browsed to google.com (64.233.167.99) and accessed: /search?client=navclient-auto&ch=63274474728&ie=UTF-8&oe=UTF-8&querytime=rH&features=Rank&q=info:htt p%3A%2F%2Fwww%2Ebudburker%2Ecom%2F (submitted: client=navclient-auto, ch=63274474728, ie=UTF-8, oe=UTF-8, querytime=rH, features=Rank, q=info:http://www.budburker.com/) |
Google toolbar 1,235 bytes out |
| 12:44:59 | Browsed to budbarker.com (216.121.125.54) and accessed: / |
996 bytes out |
| 12:47:27 | Browsed to google.com (64.233.167.99) and accessed: /search?client=navclient-auto&ch=61614330083&freshness_check=4_yh7nmPqKKTyEjE-6Je_&ie=UTF-8&oe=UTF-8 &features=Rank&q=info:http%3A%2F%2Fwww%2Ealtairtech%2Eca%2Flinks%2Ehtm (submitted: client=navclient-auto, ch=61614330083, freshness_check=4_yh7nmPqKKTyEjE-6Je_, ie=UTF-8, oe=UTF-8, features=Rank, q=info:http://www.altairtech.ca/links.htm) /search?client=navclient-auto&ch=6351856721&freshness_check=423PnHrPjIsA_gTUiyKGo&ie=UTF-8&oe=UTF-8& features=Rank&q=info:http%3A%2F%2Fwww%2Enowwhere%2Enet%2Fadministration%2Fquery (submitted: client=navclient-auto, ch=6351856721, freshness_check=423PnHrPjIsA_gTUiyKGo, ie=UTF-8, oe=UTF-8, features=Rank, q=info:http://www.nowhere.com/administration/query) /search?client=navclient-auto&googleip=E;0&ch=61614330083&freshness_check=4_yh7nmPqKKTyEjE-6Je_&ie=U TF-8&oe=UTF-8&features=Rank&q=info:http%3A%2F%2Fwww%2Ealtairtech%2Eca%2F (submitted: client=navclient-auto, googleip=E;0, ch=61614330083, freshness_check=4_yh7nmPqKKTyEjE-6Je_, ie=UTF-8, oe=UTF-8, features=Rank, q=info:http://www.altairtech.ca/) |
Google toolbar 123 sec 1,958 bytes out |
| 12:47:29 | Browsed to www.nowhere.com URL:/links.htm URL:/administration/querydatas.asp?data=4273&phase=1&querytype=1&ascdesc=DESC Secured connection (https - TCP/443) |
190 sec 40,010 bytes out |
| 12:47:59 | Browsed to www.nowhere.com (205.189.214.250) |
185 sec 3,521 bytes out |
| 12:48:01 | Browsed to moneris.com Secured connection (https - TCP/443) |
143 sec 118,584 bytes out |
| 12:51:07 | Browsed to www.nowhere.com (205.189.214.250) and accessed: /administration/querydatas.asp?data=DEGMSEC8H755&phase=1&querytype=1&ascdesc=DESC (submitted: data=DEGMSEC8H755, phase=1, querytype=1, ascdesc=DESC) |
4,538 bytes out |
| 12:51:07 | Browsed to google.com (64.233.167.99) and accessed: /search?client=navclient-auto&ch=6351856721&freshness_check=4ul7WDnNrLNy_r_lNxaYw&ie=UTF-8&oe=UTF-8& features=Rank&q=info:http%3A%2F%2Fwww%2Enowwhere%2Enet%2Fadministration%2Fquery (submitted: client=navclient-auto, ch=6351856721, freshness_check=4ul7WDnNrLNy_r_lNxaYw, ie=UTF-8, oe=UTF-8, features=Rank, q=info:http://www.nowhere.com/administration/query) |
Google toolbar 1,944 bytes out |
| 12:52:22 | Browsed to moneris.com Secured connection (https - TCP/443) |
1 sec 6,309 bytes out |
| 12:54:32 | Browsed to www.nowhere.com (205.189.214.250) and accessed: /administration/querydatas.asp?data=Petros_Vournas@village.com.gr&phase=1&querytype=1&ascdesc= DESC (submitted: data=Petros_Vournas@village.com.gr, phase=1, querytype=1, ascdesc=DESC) |
6,243 bytes out |
| 12:54:32 | Browsed to google.com (64.233.167.99) and accessed: /search?client=navclient-auto&ch=6351856721&freshness_check=451b37Zf9p8E_gTUiyKGo&ie=UTF-8&oe=UTF-8& features=Rank&q=info:http%3A%2F%2Fwww%2Enowwhere%2Enet%2Fadministration%2Fquery (submitted: client=navclient-auto, ch=6351856721, freshness_check=451b37Zf9p8E_gTUiyKGo, ie=UTF-8, oe=UTF-8, features=Rank, q=info:http://www.nowhere.com/administration/query) |
Google toolbar 663 bytes out |
| 12:56:55 | Browsed to 202.106.127.34 (202.106.127.34) |
1 sec |
| 12:58:03 | Browsed to musicmatch.com (63.236.14.26) and accessed: /mmjb/check.cgi /mmjb/oemserver.cgi?REQUEST=session_info.xml&os=pc&VERSION=8.20.0130MMD&MMUID={957308CF-D475-4261-AC 46-21A5D52566AD}&MMJB_KEY=U7L3W-7H9JH-7473A-R2KKA&OEM=MMD&LANG=ENU&COUNTR (submitted: REQUEST=session_info.xml, os=pc, VERSION=8.20.0130MMD, MMUID={957308CF-D475-4261-AC46-21A5D52566AD}, MMJB_KEY=U7L3W-7H9JH-7473A-R2KKA, OEM=MMD, LANG=ENU) /mmjb/radiotime?VERSION=8.20.0130MMD&MMUID=957308CF-D475-4261-AC46-21A5D52566AD (submitted: VERSION=8.20.0130MMD, MMUID=957308CF-D475-4261-AC46-21A5D52566AD) /mmjb/sc.cgi?os=pc&VERSION=8.20.0130MMD&MMUID={957308CF-D475-4261-AC46-21A5D52566AD}&MMJB_KEY=U7L3W- 7H9JH-7473A-R2KKA&OEM=MMD&LANG=ENU&COUNTRY=CANADA&URL=http%3A%2F%2Fonline (submitted: os=pc, VERSION=8.20.0130MMD, MMUID={957308CF-D475-4261-AC46-21A5D52566AD}, MMJB_KEY=U7L3W-7H9JH-7473A-R2KKA, OEM=MMD, LANG=ENU, COUNTRY=CANADA, URL=http://online) |
52 sec 7,103 bytes out |
| 12:58:03 | Browsed to musicmatch.com (63.236.14.21) and accessed: /mmjb/process.cgi?REQUEST=GOTO&URL=SVALIDATE (submitted: REQUEST=GOTO, URL=SVALIDATE) /mmjb/process.cgi?REQUEST=QCF&MMJB_KEY=U7L3W-7H9JH-7473A-R2KKA&KEY_VERSION=lifetime&KEY_STATE=1&CERT _STATE=1&MMUID={957308CF-D475-4261-AC46-21A5D52566AD}&grant=1&VERSION=8.2 (submitted: REQUEST=QCF, MMJB_KEY=U7L3W-7H9JH-7473A-R2KKA, KEY_VERSION=lifetime, KEY_STATE=1, CERT_STATE=1, MMUID={957308CF-D475-4261-AC46-21A5D52566AD}, grant=1, VERSION=8.2) /mmjb/process.cgi?REQUEST=RADIO&MMJB_KEY=U7L3W-7H9JH-7473A-R2KKA&KEY_VERSION=lifetime&KEY_STATE=1&CE RT_STATE=1&MMUID={957308CF-D475-4261-AC46-21A5D52566AD}&grant=1&VERSION=8 (submitted: REQUEST=RADIO, MMJB_KEY=U7L3W-7H9JH-7473A-R2KKA, KEY_VERSION=lifetime, KEY_STATE=1, CERT_STATE=1, MMUID={957308CF-D475-4261-AC46-21A5D52566AD}, grant=1, VERSION=8) /mmjb/process.cgi?REQUEST=SESSIONINFO&MMJB_KEY=U7L3W-7H9JH-7473A-R2KKA&KEY_VERSION=lifetime&KEY_STAT E=1&CERT_STATE=1&MMUID={957308CF-D475-4261-AC46-21A5D52566AD}&grant=1&VER (submitted: REQUEST=SESSIONINFO, MMJB_KEY=U7L3W-7H9JH-7473A-R2KKA, KEY_VERSION=lifetime, KEY_STATE=1, CERT_STATE=1, MMUID={957308CF-D475-4261-AC46-21A5D52566AD}, grant=1) |
13 sec 6,677 bytes out |
| 12:58:04 | Browsed to musicmatch.com (63.236.14.37) and accessed: /nova/images/artisteditor_updn_arrow.gif /nova/images/norm-right-side.gif /nova/images/nova_style.css /nova/images/preview.gif /nova/index.html?mode=radio&BANDWIDTH=&GRANT=&MMUID={957308CF-D475-4261-AC46-21A5D52566AD}&VERSION=8. 20.0130MMD&LASTSTATION=reference%3D1%26params%3Dstationid%253D1072806346 (submitted: mode=radio, MMUID={957308CF-D475-4261-AC46-21A5D52566AD}, VERSION=8.20.0130MMD, LASTSTATION=reference=1¶ms=stationid=1072806346) /nova/javascript/cb2004.6.10/stationTree.js (submitted: mode=radio, MMUID={957308CF-D475-4261-AC46-21A5D52566AD}, VERSION=8.20.0130MMD, LASTSTATION=reference=1¶ms=stationid=1072806346) /nova/javascript/cb2004.6.10/utility.js (submitted: mode=radio, MMUID={957308CF-D475-4261-AC46-21A5D52566AD}, VERSION=8.20.0130MMD, LASTSTATION=reference=1¶ms=stationid=1072806346) /radio/ui_detect.cgi?mode=radio&BANDWIDTH=&GRANT=&MMUID={957308CF-D475-4261-AC46-21A5D52566AD}&VERSI ON=8.20.0130MMD&LASTSTATION=reference%3D1%26params%3Dstationid%253D107280 (submitted: mode=radio, MMUID={957308CF-D475-4261-AC46-21A5D52566AD}, VERSION=8.20.0130MMD, LASTSTATION=reference=1¶ms=stationid=107280) |
53 sec 712,972 bytes out |
| 12:58:06 | Browsed to 207.61.132.9 (207.61.132.9) and accessed: /ads/musicmatch/2004_Feb_Banners/230x24_MX_2.gif? /graphics/online.musicmatch.com/artist_image/amg/drp200/p238/p23854oa4ma.jpg /qos/qos.xml |
16 sec 58,715 bytes out |
| 12:58:15 | Browsed to musicmatch.com (63.236.14.11) and accessed: /hserver/acc_random=/AAMSZ=230x24/SITE=MMRADIO/AREA=RADIO.HOME/MMJBPLUS=/CLIENT= /hserver/acc_random=1086972835/AAMSZ=230x24/SITE=MMRADIO/AREA=RADIO.HOME/MMJBPLUS=1/CLIENT=MMJB |
37 sec 8,512 bytes out |
| 12:58:16 | Browsed to musicmatch.com URL:/nova/images/gambit-bottom.gif URL:/nova/cgi/loadstationlist.cgi?UID=957308CF-D475-4261-AC46-21A5D52566AD&rnd=1086973097671 URL:/nova/cgi/loadstationlist.cgi?UID=5924677&rnd=1086973100414 URL:/nova/images/small-play-button.gif URL:/nova/images/checkbox.gif URL:/nova/images/small-play-button.gif URL:/nova/images/default.jpg Secured connection (https - TCP/443) |
36 sec 3,862 bytes out |
| 12:58:19 | Browsed to musicmatch.com (63.236.14.14) and accessed: /cdi/cdi.cgi?REQUEST=cdi+query+00000000+13+0+19652+61177+80804+109762+128049+148058+166950+191541+20 8952+227043+247148+265891+285333+3804&hello=Source%3DMMJB%2BMMJB_KEY%3DU7 (submitted: REQUEST=cdi+query+00000000+13+0+19652+61177+80804+109762+128049+148058+166950+191541+208952+227043+247148+26, hello=Source=MMJB%2BMMJB_KEY=U7) /cdi/check.cgi?hello=Source%3DMMJB%2BMMJB_KEY%3DU7L3W-7H9JH-7473A-R2KKA%26KEY_VERSION%3Dlifetime%26K EY_STATE%3D1%26CERT_STATE%3D1%26MMUID%3D%7B957308CF-D475-4261-AC46-21A5D5 (submitted: hello=Source=MMJB%2BMMJB_KEY=U7L3W-7H9JH-7473A-R2KKA&KEY_VERSION=lifetime&KEY_STATE=1&CERT_S) |
1 sec 2,352 bytes out |
| 12:58:55 | Browsed to musicmatch.com (63.236.14.12) |
1 sec 17,647 bytes out |
| 12:58:56 | Browsed to musicmatch.com (69.28.154.147) and accessed: /mp3/00000001/DISK/d000/87/06/pro-19.01-S/064-kbps/t018.mp3?STATION_ID=artistMatch%3a300%3a%3a357275 _340744_358388_342460_349108_335069_353732_365884_338195_342043%3a%3a%3a (submitted: STATION_ID=artistMatch:300::357275_340744_358388_342460_349108_335069_353732_365884_338195_342043::%3) |
131,468 bytes out |
| 12:58:56 | Browsed to musicmatch.com (69.28.154.153) and accessed: /mp3/00000001/DISK/d000/87/06/pro-19.01-L/064-kbps/t018.mp3?STATION_ID=artistMatch%3a300%3a%3a357275 _340744_358388_342460_349108_335069_353732_365884_338195_342043%3a%3a%3a (submitted: STATION_ID=artistMatch:300::357275_340744_358388_342460_349108_335069_353732_365884_338195_342043::%3) |
2,470,849 bytes out |
| 12:58:58 | Browsed to musicmatch.com (69.28.154.140) and accessed: /mm_cdn/01068ABAASAAAAAsDq0mG.Pth3YbANncOnzAvOaXPiWXbxImylXyL5JzhApAtK6k27bxNA6FFoVAkCsUvcLKYtO7ilT2 u_.DAhmtra1IxvQ--/album_image/amg/dre200/e279/e279618voh8.jpg |
5,396 bytes out |
| 12:59:11 | Browsed to 202.106.127.34 (202.106.127.34) and accessed: /O9KxTzn |
5 sec 9,618 bytes out |
| 12:59:37 | Browsed to kundenserver.de (212.227.127.71) and accessed: /favicon.ico /mom/default.htm /mom/defmom.js /mom/mom.js /mom/momevents.htm /mom/mommonitor.htm /mom/monitor/loads%20events%20comps.htm |
59 sec 117,015 bytes out |
| 12:59:46 | Browsed to google.com (64.233.167.99) and accessed: /search?client=navclient-auto&ch=6222565639&freshness_check=4t-f_iVmLovx_r_lNxaYw&ie=UTF-8&oe=UTF-8& features=Rank&q=info:http%3A%2F%2Fwww%2Efaqshop%2Ecom%2Fmom%2Fdefault%2E (submitted: client=navclient-auto, ch=6222565639, freshness_check=4t-f_iVmLovx_r_lNxaYw, ie=UTF-8, oe=UTF-8, features=Rank, q=info:http://www.faqshop.com/mom/default.) |
Google toolbar 646 bytes out |
| 13:01:04 | Browsed to 64.251.9.199 (64.251.9.199) and accessed: /o/WxGCxCMlEThM8SYVCdaMcg.gif |
420 bytes out |
| 13:01:04 | Browsed to 66.59.149.199 (66.59.149.199) and accessed: /678/email1_01.gif /678/spacer.gif |
5,368 bytes out |
| 13:01:15 | Browsed to 61.250.93.199 (61.250.93.199) and accessed: /i/4a.gif /i/4b.gif |
1 sec 484 bytes out |
| 13:03:50 | Browsed to musicmatch.com (69.28.154.141) and accessed: /mp3/00000001/TMC/d000/54/99/pro-19.01-S/064-kbps/tB03.mp3?STATION_ID=artistMatch%3a300%3a%3a357275_ 340744_358388_342460_349108_335069_353732_365884_338195_342043%3a%3a%3a% (submitted: STATION_ID=artistMatch:300::357275_340744_358388_342460_349108_335069_353732_365884_338195_342043::%3) |
78,417 bytes out |
| 13:04:22 | Browsed to musicmatch.com (63.236.14.21) and accessed: /mmjb/ev/mx?EVENT=MXTrackDone&VER=8%2E20%2E0130MMD&OS=WinXPSP1&MMUID=957308CF%2DD475%2D4261%2DAC46%2 D21A5D52566AD&SEQ=1&TRACKPOS=1&STATION%5FID=artistMatch%253a300%253a%253a (submitted: EVENT=MXTrackDone, VER=8.20.0130MMD, OS=WinXPSP1, MMUID=957308CF-D475-4261-AC46-21A5D52566AD, SEQ=1, TRACKPOS=1, STATION_ID=artistMatch:300::) |
1 sec 1,368 bytes out |
| 13:04:23 | Browsed to musicmatch.com (69.28.154.140) and accessed: /mm_cdn/01068ABAASAAAAAsDq0mG.Pth3YbANncOnzAvOaXPiWXbxImylXyL5JzhApAtK6k27bxNA6FFoVAkCsUvcLKYtO7ilT2 u_.DAhmtra1IxvQ--/album_image/amg/dre500/e518/e51814d60hw.jpg |
13,166 bytes out |
| 13:07:04 | Browsed to musicmatch.com (69.28.154.141) and accessed: /mp3/00000001/DISK/d002/41/62/pro-19.01-S/064-kbps/t009.mp3?STATION_ID=artistMatch%3a300%3a%3a357275 _340744_358388_342460_349108_335069_353732_365884_338195_342043%3a%3a%3a (submitted: STATION_ID=artistMatch:300::357275_340744_358388_342460_349108_335069_353732_365884_338195_342043::%3) |
130,372 bytes out |
| 13:07:04 | Browsed to musicmatch.com (69.28.154.156) and accessed: /mp3/00000001/DISK/d002/41/62/pro-19.01-L/064-kbps/t009.mp3?STATION_ID=artistMatch%3a300%3a%3a357275 _340744_358388_342460_349108_335069_353732_365884_338195_342043%3a%3a%3a (submitted: STATION_ID=artistMatch:300::357275_340744_358388_342460_349108_335069_353732_365884_338195_342043::%3) |
2,450,007 bytes out |
| 13:07:35 | Browsed to musicmatch.com (63.236.14.21) and accessed: /mmjb/ev/mx?EVENT=MXTrackDone&VER=8%2E20%2E0130MMD&OS=WinXPSP1&MMUID=957308CF%2DD475%2D4261%2DAC46%2 D21A5D52566AD&SEQ=1&TRACKPOS=2&STATION%5FID=artistMatch%253a300%253a%253a (submitted: EVENT=MXTrackDone, VER=8.20.0130MMD, OS=WinXPSP1, MMUID=957308CF-D475-4261-AC46-21A5D52566AD, SEQ=1, TRACKPOS=2, STATION_ID=artistMatch:300::) |
1,362 bytes out |
| 13:07:36 | Browsed to musicmatch.com (69.28.154.140) and accessed: /mm_cdn/01068ABAASAAAAAsDq0mG.Pth3YbANncOnzAvOaXPiWXbxImylXyL5JzhApAtK6k27bxNA6FFoVAkCsUvcLKYtO7ilT2 u_.DAhmtra1IxvQ--/album_image/amg/dre000/e081/e08137fh4da.jpg |
8,856 bytes out |
| 13:08:13 | Attempted to connect to musicmatch.com using http (TCP/80) but it was denied by the firewall Reason: No connection |
|
| 13:12:27 | Browsed to 64.215.164.123 (64.215.164.123) and accessed: /mp3/00000001/DISK/d000/37/83/pro-19.01-S/064-kbps/t007.mp3?STATION_ID=artistMatch%3a300%3a%3a357275 _340744_358388_342460_349108_335069_353732_365884_338195_342043%3a%3a%3 (submitted: STATION_ID=artistMatch:300::357275_340744_358388_342460_349108_335069_353732_365884_338195_342043::%3) |
113,169 bytes out |
| 13:12:58 | Browsed to musicmatch.com (63.236.14.21) and accessed: /mmjb/ev/mx?EVENT=MXTrackDone&VER=8%2E20%2E0130MMD&OS=WinXPSP1&MMUID=957308CF%2DD475%2D4261%2DAC46%2 D21A5D52566AD&SEQ=1&TRACKPOS=3&STATION%5FID=artistMatch%253a300%253a%253a (submitted: EVENT=MXTrackDone, VER=8.20.0130MMD, OS=WinXPSP1, MMUID=957308CF-D475-4261-AC46-21A5D52566AD, SEQ=1, TRACKPOS=3, STATION_ID=artistMatch:300::) |
1,368 bytes out |
| 13:12:59 | Browsed to musicmatch.com (69.28.154.140) and accessed: /mm_cdn/01068ABAASAAAAAsDq0mG.Pth3YbANncOnzAvOaXPiWXbxImylXyL5JzhApAtK6k27bxNA6FFoVAkCsUvcLKYtO7ilT2 u_.DAhmtra1IxvQ--/album_image/amg/drf100/f177/f17703pvten.jpg |
8,075 bytes out |
| 13:12:59 | Browsed to musicmatch.com (63.236.14.26) and accessed: /mmjb/check.cgi |
841 bytes out |
| 13:12:59 | Browsed to musicmatch.com (63.236.14.24) |
1 sec 3,239 bytes out |
| 13:13:36 | Attempted to connect to musicmatch.com using http (TCP/80) but it was denied by the firewall Reason: No connection |
|
| 13:17:06 | Browsed to musicmatch.com (69.28.154.147) and accessed: /mp3/00000001/DISK/d001/90/77/pro-19.01-L/064-kbps/t001.mp3?STATION_ID=artistMatch%3a300%3a%3a357275 _340744_358388_342460_349108_335069_353732_365884_338195_342043%3a%3a%3a (submitted: STATION_ID=artistMatch:300::357275_340744_358388_342460_349108_335069_353732_365884_338195_342043::%3) |
2,185,556 bytes out |
| 13:17:06 | Browsed to musicmatch.com (69.28.154.142) and accessed: /mp3/00000001/DISK/d001/90/77/pro-19.01-S/064-kbps/t001.mp3?STATION_ID=artistMatch%3a300%3a%3a357275 _340744_358388_342460_349108_335069_353732_365884_338195_342043%3a%3a%3a (submitted: STATION_ID=artistMatch:300::357275_340744_358388_342460_349108_335069_353732_365884_338195_342043::%3) |
116,454 bytes out |
| 13:17:38 | Browsed to musicmatch.com (63.236.14.21) and accessed: /mmjb/ev/mx?EVENT=MXTrackDone&VER=8%2E20%2E0130MMD&OS=WinXPSP1&MMUID=957308CF%2DD475%2D4261%2DAC46%2 D21A5D52566AD&SEQ=1&TRACKPOS=4&STATION%5FID=artistMatch%253a300%253a%253a (submitted: EVENT=MXTrackDone, VER=8.20.0130MMD, OS=WinXPSP1, MMUID=957308CF-D475-4261-AC46-21A5D52566AD, SEQ=1, TRACKPOS=4, STATION_ID=artistMatch:300::) |
1,360 bytes out |
| 13:17:39 | Browsed to musicmatch.com (69.28.154.140) and accessed: /mm_cdn/01068ABAASAAAAAsDq0mG.Pth3YbANncOnzAvOaXPiWXbxImylXyL5JzhApAtK6k27bxNA6FFoVAkCsUvcLKYtO7ilT2 u_.DAhmtra1IxvQ--/album_image/amg/drc800/c847/c847636l0gb.jpg |
10,643 bytes out |
| 13:17:40 | Browsed to 211.157.36.10 (211.157.36.10) and accessed: /windowflower/bullet_pieces.gif /windowflower/removeme.gif |
6,779 bytes out |
| 13:18:16 | Attempted to connect to musicmatch.com using http (TCP/80) but it was denied by the firewall Reason: No connection |
|
| 13:19:49 | Browsed to 61.250.93.199 (61.250.93.199) and accessed: /i/4a.gif /i/4b.gif |
1 sec 15,370 bytes out |
| 13:21:54 | Browsed to musicmatch.com (69.28.154.145) and accessed: /mp3/00000001/CUSTOM/d003/58/10/pro-19.01-S/064-kbps/t010.mp3?STATION_ID=artistMatch%3a300%3a%3a3572 75_340744_358388_342460_349108_335069_353732_365884_338195_342043%3a%3a% (submitted: STATION_ID=artistMatch:300::357275_340744_358388_342460_349108_335069_353732_365884_338195_342043::%) |
88,651 bytes out |
| 13:22:26 | Browsed to musicmatch.com (63.236.14.21) and accessed: /mmjb/ev/mx?EVENT=MXTrackDone&VER=8%2E20%2E0130MMD&OS=WinXPSP1&MMUID=957308CF%2DD475%2D4261%2DAC46%2 D21A5D52566AD&SEQ=1&TRACKPOS=5&STATION%5FID=artistMatch%253a300%253a%253a (submitted: EVENT=MXTrackDone, VER=8.20.0130MMD, OS=WinXPSP1, MMUID=957308CF-D475-4261-AC46-21A5D52566AD, SEQ=1, TRACKPOS=5, STATION_ID=artistMatch:300::) |
1 sec 1,368 bytes out |
| 13:22:27 | Browsed to musicmatch.com (69.28.154.140) and accessed: /mm_cdn/01068ABAASAAAAAsDq0mG.Pth3YbANncOnzAvOaXPiWXbxImylXyL5JzhApAtK6k27bxNA6FFoVAkCsUvcLKYtO7ilT2 u_.DAhmtra1IxvQ--/album_image/amg/drf500/f576/f57636rb6df.jpg |
13,773 bytes out |
| 13:23:04 | Attempted to connect to musicmatch.com using http (TCP/80) but it was denied by the firewall Reason: No connection |
|