Вы находитесь на странице: 1из 1561

[12/10/13-20:31:55] *********************************************

[12/10/13-20:31:55] Network Inspection System service starting.


[12/10/13-20:31:55] Version: 4.1.522.0
[12/10/13-20:31:55] *********************************************
[12/10/13-20:31:55] Service started by NisIpsPlugin
[12/10/13-20:31:55] Service started
[12/10/13-20:31:55] Loading Definitions: fZeroDayEnabled=1, fNetBmEnabled=1, pat
h=c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{471A218E-D2
1F-4C94-BC6F-B48B22C6F10F}
[12/10/13-20:31:55] Not FEP/SCEP: overriding fZeroDayEnabled to FALSE
[12/10/13-20:31:55] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/10/13-20:31:55] --Signature list start-[12/10/13-20:31:55] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z

BOT.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z


EGOST.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:31:55] --Signature list end-[12/10/13-20:31:55] Signatures: Total: 26; Enabled: 26
[12/10/13-20:31:55] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/10/13-20:31:55] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/10/13-20:31:55] Successfully loaded new definitions, Any signature active (0
/1): ZeroDay=0, BM=1
[12/10/13-20:31:55] At least one signature is active
[12/10/13-20:31:55] Connecting to the driver
[12/10/13-20:31:56] Load Definitions completed successfully.
[12/10/13-20:33:52] System shutdown: networking block feature is disabled
[12/10/13-20:33:52] Service stopping
[12/10/13-20:33:52] Disengaging the driver
[12/10/13-20:33:52] Service stopped
[12/10/13-20:34:40] *********************************************
[12/10/13-20:34:40] Network Inspection System service starting.
[12/10/13-20:34:40] Version: 4.1.522.0
[12/10/13-20:34:40] *********************************************
[12/10/13-20:34:40] Service started by NisIpsPlugin
[12/10/13-20:34:40] Service started
[12/10/13-20:34:41] Loading Definitions: fZeroDayEnabled=1, fNetBmEnabled=1, pat
h=c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{471A218E-D2
1F-4C94-BC6F-B48B22C6F10F}
[12/10/13-20:34:41] Not FEP/SCEP: overriding fZeroDayEnabled to FALSE
[12/10/13-20:34:41] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/10/13-20:34:41] --Signature list start-[12/10/13-20:34:41] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R

ENOS.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S


IMDA.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:34:41] --Signature list end-[12/10/13-20:34:41] Signatures: Total: 26; Enabled: 26
[12/10/13-20:34:41] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/10/13-20:34:41] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/10/13-20:34:41] Successfully loaded new definitions, Any signature active (0
/1): ZeroDay=0, BM=1
[12/10/13-20:34:41] At least one signature is active
[12/10/13-20:34:41] Connecting to the driver
[12/10/13-20:34:42] Load Definitions completed successfully.
[12/10/13-20:36:58] System shutdown: networking block feature is disabled
[12/10/13-20:36:58] Service stopping
[12/10/13-20:36:58] Disengaging the driver
[12/10/13-20:36:58] Service stopped
[12/10/13-20:37:52] *********************************************
[12/10/13-20:37:52] Network Inspection System service starting.
[12/10/13-20:37:52] Version: 4.1.522.0
[12/10/13-20:37:52] *********************************************
[12/10/13-20:37:52] Service started by NisIpsPlugin
[12/10/13-20:37:52] Service started
[12/10/13-20:37:52] Loading Definitions: fZeroDayEnabled=1, fNetBmEnabled=1, pat
h=c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{471A218E-D2
1F-4C94-BC6F-B48B22C6F10F}
[12/10/13-20:37:52] Not FEP/SCEP: overriding fZeroDayEnabled to FALSE
[12/10/13-20:37:52] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/10/13-20:37:53] --Signature list start-[12/10/13-20:37:53] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C

YCBOT.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F


AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/10/13-20:37:53] --Signature list end-[12/10/13-20:37:53] Signatures: Total: 26; Enabled: 26
[12/10/13-20:37:53] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/10/13-20:37:53] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/10/13-20:37:53] Successfully loaded new definitions, Any signature active (0
/1): ZeroDay=0, BM=1
[12/10/13-20:37:53] At least one signature is active
[12/10/13-20:37:53] Connecting to the driver
[12/10/13-20:37:53] Load Definitions completed successfully.
[12/10/13-21:00:07] System shutdown: networking block feature is disabled
[12/10/13-21:00:07] Service stopping
[12/10/13-21:00:07] Disengaging the driver
[12/10/13-21:00:07] Service stopped

[12/11/13-07:55:44] *********************************************
[12/11/13-07:55:44] Network Inspection System service starting.
[12/11/13-07:55:44] Version: 4.1.522.0
[12/11/13-07:55:44] *********************************************
[12/11/13-07:55:44] Service started by NisIpsPlugin
[12/11/13-07:55:44] Service started
[12/11/13-07:55:45] Loading Definitions: fZeroDayEnabled=1, fNetBmEnabled=1, pat
h=c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{471A218E-D2
1F-4C94-BC6F-B48B22C6F10F}
[12/11/13-07:55:45] Not FEP/SCEP: overriding fZeroDayEnabled to FALSE
[12/11/13-07:55:45] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/11/13-07:55:45] --Signature list start-[12/11/13-07:55:45] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z

BOT.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z


EGOST.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/11/13-07:55:45] --Signature list end-[12/11/13-07:55:45] Signatures: Total: 26; Enabled: 26
[12/11/13-07:55:45] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/11/13-07:55:45] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/11/13-07:55:45] Successfully loaded new definitions, Any signature active (0
/1): ZeroDay=0, BM=1
[12/11/13-07:55:45] At least one signature is active
[12/11/13-07:55:45] Connecting to the driver
[12/11/13-07:55:45] Load Definitions completed successfully.
[12/11/13-17:11:37] Service stopping
[12/11/13-17:11:37] Disengaging the driver
[12/11/13-17:11:37] Service stopped
[12/11/13-17:11:52] *********************************************
[12/11/13-17:11:52] Network Inspection System service starting.
[12/11/13-17:11:52] Version: 4.4.304.0
[12/11/13-17:11:52] *********************************************
[12/11/13-17:11:52] Service started by NisIpsPlugin
[12/11/13-17:11:52] Service started
[12/11/13-17:11:52] Loading Definitions: fZeroDayEnabled=1, fNetBmEnabled=1, pat
h=c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{471A218E-D2
1F-4C94-BC6F-B48B22C6F10F}
[12/11/13-17:11:52] Not FEP/SCEP: overriding fZeroDayEnabled to FALSE
[12/11/13-17:11:52] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/11/13-17:11:52] --Signature list start-[12/11/13-17:11:52] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 -

[12/11/13-17:11:52] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S


IMDA.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] --Signature list end-[12/11/13-17:11:52] Signatures: Total: 26; Enabled: 26
[12/11/13-17:11:52] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/11/13-17:11:52] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/11/13-17:11:52] Successfully loaded new definitions, Any signature active (0
/1): ZeroDay=0, BM=1
[12/11/13-17:11:52] At least one signature is active
[12/11/13-17:11:52] Connecting to the driver
[12/11/13-17:11:52] NumberOfCompletionPortThreads: 2, NubmerOfInspectionThreads:
24
[12/11/13-17:11:52] Load Definitions completed successfully.
[12/11/13-17:11:52] Loading Definitions: fZeroDayEnabled=1, fNetBmEnabled=1, pat
h=c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{471A218E-D2
1F-4C94-BC6F-B48B22C6F10F}
[12/11/13-17:11:52] Not FEP/SCEP: overriding fZeroDayEnabled to FALSE
[12/11/13-17:11:52] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/11/13-17:11:52] --Signature list start-[12/11/13-17:11:52] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 -

[12/11/13-17:11:52] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H


OTBAR.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:11:52] --Signature list end-[12/11/13-17:11:52] Signatures: Total: 26; Enabled: 26
[12/11/13-17:11:52] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/11/13-17:11:52] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/11/13-17:11:52] Successfully loaded new definitions, Any signature active (0
/1): ZeroDay=0, BM=1
[12/11/13-17:11:52] At least one signature is active
[12/11/13-17:11:52] Already connected to the driver
[12/11/13-17:11:52] Load Definitions completed successfully.
[12/11/13-17:28:52] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/11/13-17:28:52] --Signature list start-[12/11/13-17:28:52] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 -

[12/11/13-17:28:52] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F


AREIT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:28:52] --Signature list end-[12/11/13-17:28:52] Signatures: Total: 26; Enabled: 26
[12/11/13-17:28:52] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/11/13-17:28:52] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/11/13-17:34:55] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/11/13-17:34:55] --Signature list start-[12/11/13-17:34:55] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F

AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F


AREIT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:34:55] --Signature list end-[12/11/13-17:34:55] Signatures: Total: 26; Enabled: 26
[12/11/13-17:34:55] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/11/13-17:34:55] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/11/13-17:43:23] System shutdown: networking block feature is disabled
[12/11/13-17:43:23] Service stopping
[12/11/13-17:43:23] Disengaging the driver
[12/11/13-17:43:23] Service stopped
[12/11/13-17:44:15] *********************************************
[12/11/13-17:44:15] Network Inspection System service starting.
[12/11/13-17:44:15] Version: 4.4.304.0
[12/11/13-17:44:15] *********************************************
[12/11/13-17:44:15] Service started by NisIpsPlugin
[12/11/13-17:44:15] Service started
[12/11/13-17:44:17] Loading Definitions: fZeroDayEnabled=1, fNetBmEnabled=1, pat

h=c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{471A218E-D2


1F-4C94-BC6F-B48B22C6F10F}
[12/11/13-17:44:17] Not FEP/SCEP: overriding fZeroDayEnabled to FALSE
[12/11/13-17:44:17] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/11/13-17:44:17] --Signature list start-[12/11/13-17:44:17] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/11/13-17:44:17] --Signature list end-[12/11/13-17:44:17] Signatures: Total: 26; Enabled: 26

[12/11/13-17:44:17] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa


y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/11/13-17:44:17] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/11/13-17:44:17] Successfully loaded new definitions, Any signature active (0
/1): ZeroDay=0, BM=1
[12/11/13-17:44:17] At least one signature is active
[12/11/13-17:44:17] Connecting to the driver
[12/11/13-17:44:17] NumberOfCompletionPortThreads: 2, NubmerOfInspectionThreads:
24
[12/11/13-17:44:17] Load Definitions completed successfully.
[12/11/13-21:26:57] System shutdown: networking block feature is disabled
[12/11/13-21:26:57] Service stopping
[12/11/13-21:26:57] Disengaging the driver
[12/11/13-21:26:57] Service stopped
[12/12/13-07:55:47] *********************************************
[12/12/13-07:55:47] Network Inspection System service starting.
[12/12/13-07:55:47] Version: 4.4.304.0
[12/12/13-07:55:47] *********************************************
[12/12/13-07:55:47] Service started by NisIpsPlugin
[12/12/13-07:55:47] Service started
[12/12/13-07:55:47] Loading Definitions: fZeroDayEnabled=1, fNetBmEnabled=1, pat
h=c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{471A218E-D2
1F-4C94-BC6F-B48B22C6F10F}
[12/12/13-07:55:47] Not FEP/SCEP: overriding fZeroDayEnabled to FALSE
[12/12/13-07:55:48] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-07:55:48] --Signature list start-[12/12/13-07:55:48] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 -

[12/12/13-07:55:48] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S


WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-07:55:48] --Signature list end-[12/12/13-07:55:48] Signatures: Total: 26; Enabled: 26
[12/12/13-07:55:48] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-07:55:48] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-07:55:48] Successfully loaded new definitions, Any signature active (0
/1): ZeroDay=0, BM=1
[12/12/13-07:55:48] At least one signature is active
[12/12/13-07:55:48] Connecting to the driver
[12/12/13-07:55:48] NumberOfCompletionPortThreads: 2, NubmerOfInspectionThreads:
24
[12/12/13-07:55:48] Load Definitions completed successfully.
[12/12/13-08:05:39] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-08:05:39] --Signature list start-[12/12/13-08:05:39] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 -

[12/12/13-08:05:39] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R


AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:05:39] --Signature list end-[12/12/13-08:05:39] Signatures: Total: 26; Enabled: 26
[12/12/13-08:05:39] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-08:05:39] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-08:16:32] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-08:16:32] --Signature list start-[12/12/13-08:16:32] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P

AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R


AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:16:32] --Signature list end-[12/12/13-08:16:32] Signatures: Total: 26; Enabled: 26
[12/12/13-08:16:32] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-08:16:32] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-08:48:44] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-08:48:44] --Signature list start-[12/12/13-08:48:44] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 -

[12/12/13-08:48:44] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P


AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:48:44] --Signature list end-[12/12/13-08:48:44] Signatures: Total: 26; Enabled: 26
[12/12/13-08:48:44] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-08:48:44] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-08:57:44] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-08:57:44] --Signature list start-[12/12/13-08:57:44] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M

YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P


AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-08:57:44] --Signature list end-[12/12/13-08:57:44] Signatures: Total: 26; Enabled: 26
[12/12/13-08:57:44] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-08:57:44] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-09:19:08] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-09:19:08] --Signature list start-[12/12/13-09:19:08] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 -

[12/12/13-09:19:08] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M


YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:19:08] --Signature list end-[12/12/13-09:19:08] Signatures: Total: 26; Enabled: 26
[12/12/13-09:19:08] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-09:19:08] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-09:56:03] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-09:56:03] --Signature list start-[12/12/13-09:56:03] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L

OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M


YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-09:56:03] --Signature list end-[12/12/13-09:56:03] Signatures: Total: 26; Enabled: 26
[12/12/13-09:56:03] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-09:56:03] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-10:15:55] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-10:15:55] --Signature list start-[12/12/13-10:15:55] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 -

[12/12/13-10:15:55] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L


OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:15:55] --Signature list end-[12/12/13-10:15:55] Signatures: Total: 26; Enabled: 26
[12/12/13-10:15:55] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-10:15:55] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-10:25:43] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-10:25:43] --Signature list start-[12/12/13-10:25:43] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H

OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L


OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-10:25:43] --Signature list end-[12/12/13-10:25:43] Signatures: Total: 26; Enabled: 26
[12/12/13-10:25:43] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-10:25:43] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-11:40:07] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-11:40:08] --Signature list start-[12/12/13-11:40:08] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 -

[12/12/13-11:40:08] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H


OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:40:08] --Signature list end-[12/12/13-11:40:08] Signatures: Total: 26; Enabled: 26
[12/12/13-11:40:08] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-11:40:08] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-11:49:07] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-11:49:07] --Signature list start-[12/12/13-11:49:07] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H

ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H


OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-11:49:07] --Signature list end-[12/12/13-11:49:07] Signatures: Total: 26; Enabled: 26
[12/12/13-11:49:07] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-11:49:07] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-12:05:16] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-12:05:16] --Signature list start-[12/12/13-12:05:16] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 -

[12/12/13-12:05:16] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H


ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:05:16] --Signature list end-[12/12/13-12:05:16] Signatures: Total: 26; Enabled: 26
[12/12/13-12:05:16] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-12:05:16] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-12:14:44] Parse error - Cancel Inspection
[12/12/13-12:14:44] SpyNet report was successfully sent
[12/12/13-12:14:55] Parse error - Cancel Inspection
[12/12/13-12:14:55] SpyNet report was successfully sent
[12/12/13-12:18:07] Parse error - Cancel Inspection
[12/12/13-12:18:07] SpyNet report was successfully sent
[12/12/13-12:25:48] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-12:25:48] --Signature list start-[12/12/13-12:25:48] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C

YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F


AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:25:48] --Signature list end-[12/12/13-12:25:48] Signatures: Total: 26; Enabled: 26
[12/12/13-12:25:48] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-12:25:48] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-12:45:24] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-12:45:25] --Signature list start-[12/12/13-12:45:25] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 -

[12/12/13-12:45:25] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C


YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-12:45:25] --Signature list end-[12/12/13-12:45:25] Signatures: Total: 26; Enabled: 26
[12/12/13-12:45:25] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-12:45:25] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-13:29:08] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-13:29:08] --Signature list start-[12/12/13-13:29:08] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C

LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C


YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:29:08] --Signature list end-[12/12/13-13:29:08] Signatures: Total: 26; Enabled: 26
[12/12/13-13:29:08] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-13:29:08] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-13:39:52] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-13:39:52] --Signature list start-[12/12/13-13:39:52] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 -

[12/12/13-13:39:52] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C


LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:39:52] --Signature list end-[12/12/13-13:39:52] Signatures: Total: 26; Enabled: 26
[12/12/13-13:39:52] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-13:39:52] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-13:49:10] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-13:49:10] --Signature list start-[12/12/13-13:49:10] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B

IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C


LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-13:49:10] --Signature list end-[12/12/13-13:49:10] Signatures: Total: 26; Enabled: 26
[12/12/13-13:49:10] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-13:49:10] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-14:05:25] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-14:05:25] --Signature list start-[12/12/13-14:05:25] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 -

[12/12/13-14:05:25] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B


IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:05:25] --Signature list end-[12/12/13-14:05:25] Signatures: Total: 26; Enabled: 26
[12/12/13-14:05:25] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-14:05:25] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-14:29:11] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-14:29:11] --Signature list start-[12/12/13-14:29:11] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B

eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B


IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:29:11] --Signature list end-[12/12/13-14:29:11] Signatures: Total: 26; Enabled: 26
[12/12/13-14:29:11] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-14:29:11] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-14:49:12] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-14:49:12] --Signature list start--

[12/12/13-14:49:12] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B


eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-14:49:12] --Signature list end-[12/12/13-14:49:12] Signatures: Total: 26; Enabled: 26
[12/12/13-14:49:12] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-14:49:12] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-15:09:14] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0

[12/12/13-15:09:14] --Signature list start-[12/12/13-15:09:14] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B


eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:09:14] --Signature list end-[12/12/13-15:09:14] Signatures: Total: 26; Enabled: 26
[12/12/13-15:09:14] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-15:09:14] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-15:29:16] Signature update - files received: Engine version: 2.1.10003

.0; Signature version = 109.61.0.0


[12/12/13-15:29:16] --Signature list start-[12/12/13-15:29:16] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:29:16] --Signature list end-[12/12/13-15:29:16] Signatures: Total: 26; Enabled: 26
[12/12/13-15:29:16] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-15:29:16] New engine version=2.1.10003.0; New signature version=109.61
.0.0

[12/12/13-15:37:39] Signature update - files received: Engine version: 2.1.10003


.0; Signature version = 109.61.0.0
[12/12/13-15:37:39] --Signature list start-[12/12/13-15:37:39] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:37:39] --Signature list end-[12/12/13-15:37:39] Signatures: Total: 26; Enabled: 26
[12/12/13-15:37:39] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-15:37:39] New engine version=2.1.10003.0; New signature version=109.61

.0.0
[12/12/13-15:49:18] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-15:49:18] --Signature list start-[12/12/13-15:49:18] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:49:18] --Signature list end-[12/12/13-15:49:18] Signatures: Total: 26; Enabled: 26
[12/12/13-15:49:18] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0

[12/12/13-15:49:18] New engine version=2.1.10003.0; New signature version=109.61


.0.0
[12/12/13-15:54:21] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-15:54:21] --Signature list start-[12/12/13-15:54:21] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-15:54:21] --Signature list end-[12/12/13-15:54:21] Signatures: Total: 26; Enabled: 26
[12/12/13-15:54:21] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa

y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-15:54:21] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-16:04:05] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-16:04:05] --Signature list start-[12/12/13-16:04:05] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:04:05] --Signature list end-[12/12/13-16:04:05] Signatures: Total: 26; Enabled: 26

[12/12/13-16:04:05] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa


y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-16:04:05] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-16:09:20] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-16:09:20] --Signature list start-[12/12/13-16:09:20] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:09:20] --Signature list end--

[12/12/13-16:09:20] Signatures: Total: 26; Enabled: 26


[12/12/13-16:09:20] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-16:09:20] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-16:20:23] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-16:20:23] --Signature list start-[12/12/13-16:20:23] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:20:23] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 -

[12/12/13-16:20:23] --Signature list end-[12/12/13-16:20:23] Signatures: Total: 26; Enabled: 26


[12/12/13-16:20:23] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-16:20:23] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-16:28:59] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-16:28:59] --Signature list start-[12/12/13-16:28:59] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z

WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:28:59] --Signature list end-[12/12/13-16:28:59] Signatures: Total: 26; Enabled: 26


[12/12/13-16:28:59] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-16:28:59] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-16:40:08] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-16:40:08] --Signature list start-[12/12/13-16:40:08] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 -

[12/12/13-16:40:08] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z


WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:40:08] --Signature list end-[12/12/13-16:40:08] Signatures: Total: 26; Enabled: 26
[12/12/13-16:40:08] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-16:40:08] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-16:49:02] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-16:49:02] --Signature list start-[12/12/13-16:49:02] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z

EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z


WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-16:49:02] --Signature list end-[12/12/13-16:49:02] Signatures: Total: 26; Enabled: 26
[12/12/13-16:49:02] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-16:49:02] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-17:00:36] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-17:00:36] --Signature list start-[12/12/13-17:00:36] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 -

[12/12/13-17:00:36] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z


EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:00:36] --Signature list end-[12/12/13-17:00:36] Signatures: Total: 26; Enabled: 26
[12/12/13-17:00:36] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-17:00:36] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-17:09:25] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-17:09:25] --Signature list start-[12/12/13-17:09:25] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z

BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z


EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:09:25] --Signature list end-[12/12/13-17:09:25] Signatures: Total: 26; Enabled: 26
[12/12/13-17:09:25] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-17:09:25] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-17:14:37] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-17:14:37] --Signature list start-[12/12/13-17:14:37] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 -

[12/12/13-17:14:37] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z


BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:14:37] --Signature list end-[12/12/13-17:14:37] Signatures: Total: 26; Enabled: 26
[12/12/13-17:14:37] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-17:14:37] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-17:24:57] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-17:24:57] --Signature list start-[12/12/13-17:24:57] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X

TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z


BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:24:57] --Signature list end-[12/12/13-17:24:57] Signatures: Total: 26; Enabled: 26
[12/12/13-17:24:57] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-17:24:57] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-17:49:29] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-17:49:29] --Signature list start-[12/12/13-17:49:29] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 -

[12/12/13-17:49:29] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X


TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-17:49:29] --Signature list end-[12/12/13-17:49:29] Signatures: Total: 26; Enabled: 26
[12/12/13-17:49:29] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-17:49:29] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-18:09:30] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-18:09:31] --Signature list start-[12/12/13-18:09:31] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W

uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X


TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:09:31] --Signature list end-[12/12/13-18:09:31] Signatures: Total: 26; Enabled: 26
[12/12/13-18:09:31] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-18:09:31] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-18:36:42] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-18:36:42] --Signature list start-[12/12/13-18:36:42] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 -

[12/12/13-18:36:42] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W


uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:36:42] --Signature list end-[12/12/13-18:36:42] Signatures: Total: 26; Enabled: 26
[12/12/13-18:36:42] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-18:36:42] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-18:49:34] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-18:49:34] --Signature list start-[12/12/13-18:49:34] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W

INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W


uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-18:49:34] --Signature list end-[12/12/13-18:49:34] Signatures: Total: 26; Enabled: 26
[12/12/13-18:49:34] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-18:49:34] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-19:01:34] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-19:01:35] --Signature list start-[12/12/13-19:01:35] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 -

[12/12/13-19:01:35] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W


INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:01:35] --Signature list end-[12/12/13-19:01:35] Signatures: Total: 26; Enabled: 26
[12/12/13-19:01:35] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-19:01:35] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-19:09:35] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-19:09:35] --Signature list start-[12/12/13-19:09:35] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W

ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W


INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:09:35] --Signature list end-[12/12/13-19:09:35] Signatures: Total: 26; Enabled: 26
[12/12/13-19:09:35] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-19:09:35] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-19:16:16] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-19:16:16] --Signature list start-[12/12/13-19:16:16] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 -

[12/12/13-19:16:16] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W


ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-19:16:16] --Signature list end-[12/12/13-19:16:16] Signatures: Total: 26; Enabled: 26
[12/12/13-19:16:16] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-19:16:16] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-21:24:09] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/12/13-21:24:09] --Signature list start-[12/12/13-21:24:09] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V

UNDO.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W


ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/12/13-21:24:09] --Signature list end-[12/12/13-21:24:09] Signatures: Total: 26; Enabled: 26
[12/12/13-21:24:09] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/12/13-21:24:09] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/12/13-21:25:52] System shutdown: networking block feature is disabled
[12/12/13-21:25:52] Service stopping
[12/12/13-21:25:52] Disengaging the driver
[12/12/13-21:25:52] Service stopped
[12/13/13-07:55:50] *********************************************
[12/13/13-07:55:50] Network Inspection System service starting.
[12/13/13-07:55:50] Version: 4.4.304.0
[12/13/13-07:55:50] *********************************************
[12/13/13-07:55:50] Service started by NisIpsPlugin
[12/13/13-07:55:50] Service started
[12/13/13-07:55:51] Loading Definitions: fZeroDayEnabled=1, fNetBmEnabled=1, pat
h=c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{471A218E-D2
1F-4C94-BC6F-B48B22C6F10F}
[12/13/13-07:55:51] Not FEP/SCEP: overriding fZeroDayEnabled to FALSE
[12/13/13-07:55:51] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-07:55:51] --Signature list start-[12/13/13-07:55:51] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 -

[12/13/13-07:55:51] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P


AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-07:55:51] --Signature list end-[12/13/13-07:55:51] Signatures: Total: 26; Enabled: 26
[12/13/13-07:55:51] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-07:55:51] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-07:55:51] Successfully loaded new definitions, Any signature active (0
/1): ZeroDay=0, BM=1
[12/13/13-07:55:51] At least one signature is active
[12/13/13-07:55:51] Connecting to the driver
[12/13/13-07:55:51] NumberOfCompletionPortThreads: 2, NubmerOfInspectionThreads:
24
[12/13/13-07:55:51] Load Definitions completed successfully.
[12/13/13-08:11:19] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-08:11:19] --Signature list start-[12/13/13-08:11:19] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 -

[12/13/13-08:11:19] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H


ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:11:19] --Signature list end-[12/13/13-08:11:19] Signatures: Total: 26; Enabled: 26
[12/13/13-08:11:19] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-08:11:19] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-08:53:07] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-08:53:07] --Signature list start-[12/13/13-08:53:07] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G

ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H


ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-08:53:07] --Signature list end-[12/13/13-08:53:07] Signatures: Total: 26; Enabled: 26
[12/13/13-08:53:07] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-08:53:07] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-09:04:52] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-09:04:52] --Signature list start-[12/13/13-09:04:52] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 -

[12/13/13-09:04:52] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G


ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:04:52] --Signature list end-[12/13/13-09:04:52] Signatures: Total: 26; Enabled: 26
[12/13/13-09:04:52] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-09:04:52] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-09:20:46] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-09:20:46] --Signature list start-[12/13/13-09:20:46] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F

AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G


ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-09:20:46] --Signature list end-[12/13/13-09:20:46] Signatures: Total: 26; Enabled: 26
[12/13/13-09:20:46] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-09:20:46] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-10:11:56] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-10:11:56] --Signature list start-[12/13/13-10:11:56] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 -

[12/13/13-10:11:56] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F


AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:11:56] --Signature list end-[12/13/13-10:11:56] Signatures: Total: 26; Enabled: 26
[12/13/13-10:11:56] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-10:11:56] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-10:55:47] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-10:55:47] --Signature list start-[12/13/13-10:55:47] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F

AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F


AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-10:55:47] --Signature list end-[12/13/13-10:55:47] Signatures: Total: 26; Enabled: 26
[12/13/13-10:55:47] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-10:55:47] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-11:09:54] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-11:09:54] --Signature list start-[12/13/13-11:09:54] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 -

[12/13/13-11:09:54] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F


AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:09:54] --Signature list end-[12/13/13-11:09:54] Signatures: Total: 26; Enabled: 26
[12/13/13-11:09:54] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-11:09:54] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-11:11:44] System shutdown: networking block feature is disabled
[12/13/13-11:11:44] Service stopping
[12/13/13-11:11:44] Disengaging the driver
[12/13/13-11:11:44] Service stopped
[12/13/13-11:12:38] *********************************************
[12/13/13-11:12:38] Network Inspection System service starting.
[12/13/13-11:12:38] Version: 4.4.304.0
[12/13/13-11:12:38] *********************************************
[12/13/13-11:12:38] Service started by NisIpsPlugin
[12/13/13-11:12:38] Service started

[12/13/13-11:12:39] Loading Definitions: fZeroDayEnabled=1, fNetBmEnabled=1, pat


h=c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{471A218E-D2
1F-4C94-BC6F-B48B22C6F10F}
[12/13/13-11:12:39] Not FEP/SCEP: overriding fZeroDayEnabled to FALSE
[12/13/13-11:12:39] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-11:12:39] --Signature list start-[12/13/13-11:12:39] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:12:39] --Signature list end--

[12/13/13-11:12:39] Signatures: Total: 26; Enabled: 26


[12/13/13-11:12:39] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-11:12:39] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-11:12:39] Successfully loaded new definitions, Any signature active (0
/1): ZeroDay=0, BM=1
[12/13/13-11:12:39] At least one signature is active
[12/13/13-11:12:39] Connecting to the driver
[12/13/13-11:12:39] NumberOfCompletionPortThreads: 2, NubmerOfInspectionThreads:
24
[12/13/13-11:12:39] Load Definitions completed successfully.
[12/13/13-11:22:41] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-11:22:41] --Signature list start-[12/13/13-11:22:41] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X

TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z


BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:22:41] --Signature list end-[12/13/13-11:22:41] Signatures: Total: 26; Enabled: 26
[12/13/13-11:22:41] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-11:22:41] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-11:33:50] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-11:33:50] --Signature list start-[12/13/13-11:33:50] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 -

[12/13/13-11:33:50] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X


TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-11:33:50] --Signature list end-[12/13/13-11:33:50] Signatures: Total: 26; Enabled: 26
[12/13/13-11:33:50] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-11:33:50] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-12:31:16] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-12:31:16] --Signature list start-[12/13/13-12:31:16] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W

uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X


TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:31:16] --Signature list end-[12/13/13-12:31:16] Signatures: Total: 26; Enabled: 26
[12/13/13-12:31:16] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-12:31:16] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-12:43:33] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-12:43:33] --Signature list start-[12/13/13-12:43:33] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 -

[12/13/13-12:43:33] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W


uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:43:33] --Signature list end-[12/13/13-12:43:33] Signatures: Total: 26; Enabled: 26
[12/13/13-12:43:33] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-12:43:33] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-12:51:45] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-12:51:45] --Signature list start-[12/13/13-12:51:45] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W

INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W


uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-12:51:45] --Signature list end-[12/13/13-12:51:45] Signatures: Total: 26; Enabled: 26
[12/13/13-12:51:45] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-12:51:45] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-13:00:29] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-13:00:29] --Signature list start-[12/13/13-13:00:29] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 -

[12/13/13-13:00:29] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W


INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:00:29] --Signature list end-[12/13/13-13:00:29] Signatures: Total: 26; Enabled: 26
[12/13/13-13:00:29] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-13:00:29] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-13:21:22] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-13:21:22] --Signature list start-[12/13/13-13:21:22] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W

ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W


INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:21:22] --Signature list end-[12/13/13-13:21:22] Signatures: Total: 26; Enabled: 26
[12/13/13-13:21:22] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-13:21:22] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-13:31:45] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-13:31:45] --Signature list start-[12/13/13-13:31:45] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 -

[12/13/13-13:31:45] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W


ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:31:45] --Signature list end-[12/13/13-13:31:45] Signatures: Total: 26; Enabled: 26
[12/13/13-13:31:45] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-13:31:45] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-13:40:13] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-13:40:13] --Signature list start-[12/13/13-13:40:13] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V

UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W


ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:40:13] --Signature list end-[12/13/13-13:40:13] Signatures: Total: 26; Enabled: 26
[12/13/13-13:40:13] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-13:40:13] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-13:50:29] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-13:50:29] --Signature list start-[12/13/13-13:50:29] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 -

[12/13/13-13:50:29] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V


UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-13:50:29] --Signature list end-[12/13/13-13:50:29] Signatures: Total: 26; Enabled: 26
[12/13/13-13:50:29] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-13:50:29] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-14:03:47] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-14:03:47] --Signature list start-[12/13/13-14:03:47] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V

OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V


UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:03:47] --Signature list end-[12/13/13-14:03:47] Signatures: Total: 26; Enabled: 26
[12/13/13-14:03:47] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-14:03:47] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-14:29:18] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-14:29:18] --Signature list start-[12/13/13-14:29:18] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 -

[12/13/13-14:29:18] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V


OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:29:18] --Signature list end-[12/13/13-14:29:18] Signatures: Total: 26; Enabled: 26
[12/13/13-14:29:18] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-14:29:18] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-14:38:33] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-14:38:33] --Signature list start-[12/13/13-14:38:33] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S

WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V


OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:38:33] --Signature list end-[12/13/13-14:38:33] Signatures: Total: 26; Enabled: 26
[12/13/13-14:38:33] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-14:38:33] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-14:51:48] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-14:51:48] --Signature list start-[12/13/13-14:51:48] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 -

[12/13/13-14:51:48] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S


WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-14:51:48] --Signature list end-[12/13/13-14:51:48] Signatures: Total: 26; Enabled: 26
[12/13/13-14:51:48] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-14:51:48] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-15:00:43] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-15:00:43] --Signature list start-[12/13/13-15:00:43] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S

IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S


WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:00:43] --Signature list end-[12/13/13-15:00:43] Signatures: Total: 26; Enabled: 26
[12/13/13-15:00:43] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-15:00:43] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-15:07:38] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-15:07:38] --Signature list start-[12/13/13-15:07:38] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 -

[12/13/13-15:07:38] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S


IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:07:38] --Signature list end-[12/13/13-15:07:38] Signatures: Total: 26; Enabled: 26
[12/13/13-15:07:38] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-15:07:38] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-15:15:21] System shutdown: networking block feature is disabled
[12/13/13-15:15:21] Service stopping
[12/13/13-15:15:21] Disengaging the driver
[12/13/13-15:15:21] Service stopped
[12/13/13-15:16:14] *********************************************
[12/13/13-15:16:14] Network Inspection System service starting.
[12/13/13-15:16:14] Version: 4.4.304.0
[12/13/13-15:16:14] *********************************************
[12/13/13-15:16:14] Service started by NisIpsPlugin
[12/13/13-15:16:14] Service started
[12/13/13-15:16:14] Loading Definitions: fZeroDayEnabled=1, fNetBmEnabled=1, pat
h=c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{471A218E-D2
1F-4C94-BC6F-B48B22C6F10F}
[12/13/13-15:16:14] Not FEP/SCEP: overriding fZeroDayEnabled to FALSE
[12/13/13-15:16:14] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-15:16:15] --Signature list start-[12/13/13-15:16:15] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H

ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H


OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:16:15] --Signature list end-[12/13/13-15:16:15] Signatures: Total: 26; Enabled: 26
[12/13/13-15:16:15] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-15:16:15] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-15:16:15] Successfully loaded new definitions, Any signature active (0
/1): ZeroDay=0, BM=1
[12/13/13-15:16:15] At least one signature is active
[12/13/13-15:16:15] Connecting to the driver
[12/13/13-15:16:15] NumberOfCompletionPortThreads: 2, NubmerOfInspectionThreads:
24
[12/13/13-15:16:15] Load Definitions completed successfully.
[12/13/13-15:26:24] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-15:26:24] --Signature list start-[12/13/13-15:26:24] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C

YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F


AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-15:26:24] --Signature list end-[12/13/13-15:26:24] Signatures: Total: 26; Enabled: 26
[12/13/13-15:26:24] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-15:26:24] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-16:42:10] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-16:42:10] --Signature list start-[12/13/13-16:42:10] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 -

[12/13/13-16:42:10] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C


YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-16:42:10] --Signature list end-[12/13/13-16:42:10] Signatures: Total: 26; Enabled: 26
[12/13/13-16:42:10] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-16:42:10] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-17:00:32] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-17:00:32] --Signature list start-[12/13/13-17:00:32] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C

LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C


YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:00:32] --Signature list end-[12/13/13-17:00:32] Signatures: Total: 26; Enabled: 26
[12/13/13-17:00:32] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-17:00:32] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-17:16:21] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-17:16:21] --Signature list start-[12/13/13-17:16:21] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 -

[12/13/13-17:16:21] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C


LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-17:16:21] --Signature list end-[12/13/13-17:16:21] Signatures: Total: 26; Enabled: 26
[12/13/13-17:16:21] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-17:16:21] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-18:11:11] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-18:11:11] --Signature list start-[12/13/13-18:11:11] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B

IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C


LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:11:11] --Signature list end-[12/13/13-18:11:11] Signatures: Total: 26; Enabled: 26
[12/13/13-18:11:11] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-18:11:11] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-18:36:20] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-18:36:20] --Signature list start-[12/13/13-18:36:20] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 -

[12/13/13-18:36:20] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B


IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-18:36:20] --Signature list end-[12/13/13-18:36:20] Signatures: Total: 26; Enabled: 26
[12/13/13-18:36:20] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-18:36:20] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-19:35:15] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-19:35:15] --Signature list start-[12/13/13-19:35:15] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B

eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B


IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-19:35:15] --Signature list end-[12/13/13-19:35:15] Signatures: Total: 26; Enabled: 26
[12/13/13-19:35:15] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-19:35:15] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-20:02:21] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/13/13-20:02:21] --Signature list start--

[12/13/13-20:02:21] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B


eebone.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/13/13-20:02:21] --Signature list end-[12/13/13-20:02:21] Signatures: Total: 26; Enabled: 26
[12/13/13-20:02:21] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/13/13-20:02:21] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/13/13-21:19:06] System shutdown: networking block feature is disabled
[12/13/13-21:19:06] Service stopping

[12/13/13-21:19:06] Disengaging the driver


[12/13/13-21:19:06] Service stopped
[12/14/13-07:56:00] *********************************************
[12/14/13-07:56:00] Network Inspection System service starting.
[12/14/13-07:56:00] Version: 4.4.304.0
[12/14/13-07:56:00] *********************************************
[12/14/13-07:56:00] Service started by NisIpsPlugin
[12/14/13-07:56:00] Service started
[12/14/13-07:56:00] Loading Definitions: fZeroDayEnabled=1, fNetBmEnabled=1, pat
h=c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{471A218E-D2
1F-4C94-BC6F-B48B22C6F10F}
[12/14/13-07:56:00] Not FEP/SCEP: overriding fZeroDayEnabled to FALSE
[12/14/13-07:56:00] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-07:56:00] --Signature list start-[12/14/13-07:56:00] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X

TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z


BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-07:56:00] --Signature list end-[12/14/13-07:56:00] Signatures: Total: 26; Enabled: 26
[12/14/13-07:56:00] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-07:56:00] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-07:56:00] Successfully loaded new definitions, Any signature active (0
/1): ZeroDay=0, BM=1
[12/14/13-07:56:00] At least one signature is active
[12/14/13-07:56:00] Connecting to the driver
[12/14/13-07:56:00] NumberOfCompletionPortThreads: 2, NubmerOfInspectionThreads:
24
[12/14/13-07:56:00] Load Definitions completed successfully.
[12/14/13-08:09:38] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-08:09:38] --Signature list start-[12/14/13-08:09:38] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V

UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W


ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:09:38] --Signature list end-[12/14/13-08:09:38] Signatures: Total: 26; Enabled: 26
[12/14/13-08:09:38] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-08:09:38] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-08:43:44] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-08:43:44] --Signature list start-[12/14/13-08:43:44] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 -

[12/14/13-08:43:44] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V


UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-08:43:44] --Signature list end-[12/14/13-08:43:44] Signatures: Total: 26; Enabled: 26
[12/14/13-08:43:44] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-08:43:44] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-09:54:51] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-09:54:51] --Signature list start-[12/14/13-09:54:51] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V

OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V


UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-09:54:51] --Signature list end-[12/14/13-09:54:51] Signatures: Total: 26; Enabled: 26
[12/14/13-09:54:51] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-09:54:51] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-11:06:54] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-11:06:54] --Signature list start-[12/14/13-11:06:54] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 -

[12/14/13-11:06:54] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V


OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:06:54] --Signature list end-[12/14/13-11:06:54] Signatures: Total: 26; Enabled: 26
[12/14/13-11:06:54] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-11:06:54] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-11:47:48] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-11:47:48] --Signature list start-[12/14/13-11:47:48] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S

WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V


OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-11:47:48] --Signature list end-[12/14/13-11:47:48] Signatures: Total: 26; Enabled: 26
[12/14/13-11:47:48] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-11:47:48] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-12:25:58] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-12:25:58] --Signature list start-[12/14/13-12:25:58] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 -

[12/14/13-12:25:58] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S


WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-12:25:58] --Signature list end-[12/14/13-12:25:58] Signatures: Total: 26; Enabled: 26
[12/14/13-12:25:58] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-12:25:58] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-13:07:49] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-13:07:49] --Signature list start-[12/14/13-13:07:49] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S

IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S


WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:07:49] --Signature list end-[12/14/13-13:07:49] Signatures: Total: 26; Enabled: 26
[12/14/13-13:07:49] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-13:07:49] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-13:52:01] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-13:52:01] --Signature list start-[12/14/13-13:52:01] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 -

[12/14/13-13:52:01] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S


IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-13:52:01] --Signature list end-[12/14/13-13:52:01] Signatures: Total: 26; Enabled: 26
[12/14/13-13:52:01] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-13:52:01] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-14:58:52] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-14:58:52] --Signature list start-[12/14/13-14:58:52] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S

IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S


IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-14:58:52] --Signature list end-[12/14/13-14:58:52] Signatures: Total: 26; Enabled: 26
[12/14/13-14:58:52] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-14:58:52] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-15:15:03] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-15:15:03] --Signature list start-[12/14/13-15:15:03] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 -

[12/14/13-15:15:03] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S


IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-15:15:03] --Signature list end-[12/14/13-15:15:03] Signatures: Total: 26; Enabled: 26
[12/14/13-15:15:03] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-15:15:03] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-16:18:55] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-16:18:55] --Signature list start-[12/14/13-16:18:55] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R

ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S


IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-16:18:55] --Signature list end-[12/14/13-16:18:55] Signatures: Total: 26; Enabled: 26
[12/14/13-16:18:55] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-16:18:55] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-17:00:29] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-17:00:29] --Signature list start-[12/14/13-17:00:29] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 -

[12/14/13-17:00:29] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R


ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:00:29] --Signature list end-[12/14/13-17:00:29] Signatures: Total: 26; Enabled: 26
[12/14/13-17:00:29] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-17:00:29] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-17:17:32] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-17:17:32] --Signature list start-[12/14/13-17:17:32] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R

AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R


ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:17:32] --Signature list end-[12/14/13-17:17:32] Signatures: Total: 26; Enabled: 26
[12/14/13-17:17:32] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-17:17:32] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-17:57:59] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-17:57:59] --Signature list start-[12/14/13-17:57:59] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 -

[12/14/13-17:57:59] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R


AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-17:57:59] --Signature list end-[12/14/13-17:57:59] Signatures: Total: 26; Enabled: 26
[12/14/13-17:57:59] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-17:57:59] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-18:20:31] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-18:20:31] --Signature list start-[12/14/13-18:20:31] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P

AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R


AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-18:20:31] --Signature list end-[12/14/13-18:20:31] Signatures: Total: 26; Enabled: 26
[12/14/13-18:20:31] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-18:20:31] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-19:23:02] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-19:23:02] --Signature list start-[12/14/13-19:23:02] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 -

[12/14/13-19:23:02] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P


AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:23:02] --Signature list end-[12/14/13-19:23:02] Signatures: Total: 26; Enabled: 26
[12/14/13-19:23:02] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-19:23:02] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-19:52:32] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-19:52:32] --Signature list start-[12/14/13-19:52:32] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M

YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P


AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-19:52:32] --Signature list end-[12/14/13-19:52:32] Signatures: Total: 26; Enabled: 26
[12/14/13-19:52:32] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-19:52:32] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-20:41:05] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-20:41:05] --Signature list start-[12/14/13-20:41:05] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 -

[12/14/13-20:41:05] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M


YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-20:41:05] --Signature list end-[12/14/13-20:41:05] Signatures: Total: 26; Enabled: 26
[12/14/13-20:41:05] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-20:41:05] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-21:48:35] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-21:48:35] --Signature list start-[12/14/13-21:48:35] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L

OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M


YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-21:48:35] --Signature list end-[12/14/13-21:48:35] Signatures: Total: 26; Enabled: 26
[12/14/13-21:48:35] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-21:48:35] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-22:50:38] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-22:50:38] --Signature list start-[12/14/13-22:50:38] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 -

[12/14/13-22:50:38] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L


OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-22:50:38] --Signature list end-[12/14/13-22:50:38] Signatures: Total: 26; Enabled: 26
[12/14/13-22:50:38] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-22:50:38] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/14/13-23:09:07] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/14/13-23:09:07] --Signature list start-[12/14/13-23:09:07] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H

OTBAR.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L


OLYDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/14/13-23:09:07] --Signature list end-[12/14/13-23:09:07] Signatures: Total: 26; Enabled: 26
[12/14/13-23:09:07] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/14/13-23:09:07] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/15/13-00:11:01] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/15/13-00:11:01] --Signature list start-[12/15/13-00:11:01] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 -

[12/15/13-00:11:01] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H


OTBAR.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/15/13-00:11:01] --Signature list end-[12/15/13-00:11:01] Signatures: Total: 26; Enabled: 26
[12/15/13-00:11:01] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/15/13-00:11:01] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/15/13-01:06:11] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/15/13-01:06:11] --Signature list start-[12/15/13-01:06:11] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H

ARNIG.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H


OTBAR.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:06:11] --Signature list end-[12/15/13-01:06:11] Signatures: Total: 26; Enabled: 26
[12/15/13-01:06:11] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/15/13-01:06:11] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/15/13-01:42:53] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/15/13-01:42:53] --Signature list start-[12/15/13-01:42:53] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 -

[12/15/13-01:42:53] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H


ARNIG.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/15/13-01:42:53] --Signature list end-[12/15/13-01:42:53] Signatures: Total: 26; Enabled: 26
[12/15/13-01:42:53] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/15/13-01:42:53] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/15/13-02:53:15] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/15/13-02:53:15] --Signature list start-[12/15/13-02:53:15] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G

ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H


ARNIG.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/15/13-02:53:15] --Signature list end-[12/15/13-02:53:15] Signatures: Total: 26; Enabled: 26
[12/15/13-02:53:15] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/15/13-02:53:15] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/15/13-03:15:43] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/15/13-03:15:43] --Signature list start-[12/15/13-03:15:43] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 -

[12/15/13-03:15:43] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G


ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/15/13-03:15:43] --Signature list end-[12/15/13-03:15:43] Signatures: Total: 26; Enabled: 26
[12/15/13-03:15:43] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/15/13-03:15:43] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/15/13-04:31:46] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/15/13-04:31:46] --Signature list start-[12/15/13-04:31:46] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F

AREIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G


ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:31:46] --Signature list end-[12/15/13-04:31:46] Signatures: Total: 26; Enabled: 26
[12/15/13-04:31:46] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/15/13-04:31:46] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/15/13-04:42:16] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/15/13-04:42:16] --Signature list start-[12/15/13-04:42:16] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 -

[12/15/13-04:42:16] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F


AREIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/15/13-04:42:16] --Signature list end-[12/15/13-04:42:16] Signatures: Total: 26; Enabled: 26
[12/15/13-04:42:16] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/15/13-04:42:16] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/15/13-05:23:44] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/15/13-05:23:44] --Signature list start-[12/15/13-05:23:44] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F

AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F


AREIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:23:44] --Signature list end-[12/15/13-05:23:44] Signatures: Total: 26; Enabled: 26
[12/15/13-05:23:44] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/15/13-05:23:44] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/15/13-05:47:50] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/15/13-05:47:50] --Signature list start-[12/15/13-05:47:50] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 -

[12/15/13-05:47:50] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F


AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/15/13-05:47:50] --Signature list end-[12/15/13-05:47:50] Signatures: Total: 26; Enabled: 26
[12/15/13-05:47:50] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/15/13-05:47:50] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/15/13-06:36:16] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/15/13-06:36:16] --Signature list start-[12/15/13-06:36:16] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C

YCBOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F


AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:36:16] --Signature list end-[12/15/13-06:36:16] Signatures: Total: 26; Enabled: 26
[12/15/13-06:36:16] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/15/13-06:36:16] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/15/13-06:50:52] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/15/13-06:50:52] --Signature list start-[12/15/13-06:50:52] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 -

[12/15/13-06:50:52] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C


YCBOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/15/13-06:50:52] --Signature list end-[12/15/13-06:50:52] Signatures: Total: 26; Enabled: 26
[12/15/13-06:50:52] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/15/13-06:50:52] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/15/13-08:06:06] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/15/13-08:06:06] --Signature list start-[12/15/13-08:06:06] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C

LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C


YCBOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/15/13-08:06:06] --Signature list end-[12/15/13-08:06:06] Signatures: Total: 26; Enabled: 26
[12/15/13-08:06:06] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/15/13-08:06:06] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/15/13-17:03:00] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/15/13-17:03:00] --Signature list start-[12/15/13-17:03:00] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 -

[12/15/13-17:03:00] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C


LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/15/13-17:03:00] --Signature list end-[12/15/13-17:03:00] Signatures: Total: 26; Enabled: 26
[12/15/13-17:03:00] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/15/13-17:03:00] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/16/13-09:10:02] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/16/13-09:10:02] --Signature list start-[12/16/13-09:10:02] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B

IFROSE.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C


LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/16/13-09:10:02] --Signature list end-[12/16/13-09:10:02] Signatures: Total: 26; Enabled: 26
[12/16/13-09:10:02] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/16/13-09:10:02] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/16/13-10:59:24] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/16/13-10:59:24] --Signature list start-[12/16/13-10:59:24] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 -

[12/16/13-10:59:24] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B


IFROSE.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/16/13-10:59:24] --Signature list end-[12/16/13-10:59:24] Signatures: Total: 26; Enabled: 26
[12/16/13-10:59:24] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/16/13-10:59:24] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/16/13-11:26:35] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/16/13-11:26:36] --Signature list start-[12/16/13-11:26:36] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B

eebone.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B


IFROSE.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/16/13-11:26:36] --Signature list end-[12/16/13-11:26:36] Signatures: Total: 26; Enabled: 26
[12/16/13-11:26:36] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/16/13-11:26:36] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/16/13-12:29:13] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/16/13-12:29:13] --Signature list start--

[12/16/13-12:29:13] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B


eebone.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/16/13-12:29:13] --Signature list end-[12/16/13-12:29:13] Signatures: Total: 26; Enabled: 26
[12/16/13-12:29:13] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/16/13-12:29:13] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/16/13-14:47:59] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0

[12/16/13-14:47:59] --Signature list start-[12/16/13-14:47:59] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B


eebone.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/16/13-14:47:59] --Signature list end-[12/16/13-14:47:59] Signatures: Total: 26; Enabled: 26
[12/16/13-14:47:59] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/16/13-14:47:59] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/16/13-16:32:47] System shutdown: networking block feature is disabled

[12/16/13-16:32:47] Service stopping


[12/16/13-16:32:47] Disengaging the driver
[12/16/13-16:32:47] Service stopped
[12/16/13-16:33:48] *********************************************
[12/16/13-16:33:48] Network Inspection System service starting.
[12/16/13-16:33:48] Version: 4.4.304.0
[12/16/13-16:33:48] *********************************************
[12/16/13-16:33:48] Service started by NisIpsPlugin
[12/16/13-16:33:48] Service started
[12/16/13-16:33:48] Loading Definitions: fZeroDayEnabled=1, fNetBmEnabled=1, pat
h=c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{471A218E-D2
1F-4C94-BC6F-B48B22C6F10F}
[12/16/13-16:33:48] Not FEP/SCEP: overriding fZeroDayEnabled to FALSE
[12/16/13-16:33:48] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/16/13-16:33:48] --Signature list start-[12/16/13-16:33:48] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 -

[12/16/13-16:33:48] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X


TRAT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:33:48] --Signature list end-[12/16/13-16:33:48] Signatures: Total: 26; Enabled: 26
[12/16/13-16:33:48] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/16/13-16:33:48] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/16/13-16:33:48] Successfully loaded new definitions, Any signature active (0
/1): ZeroDay=0, BM=1
[12/16/13-16:33:48] At least one signature is active
[12/16/13-16:33:48] Connecting to the driver
[12/16/13-16:33:48] NumberOfCompletionPortThreads: 2, NubmerOfInspectionThreads:
24
[12/16/13-16:33:48] Load Definitions completed successfully.
[12/16/13-16:35:16] System shutdown: networking block feature is disabled
[12/16/13-16:35:16] Service stopping
[12/16/13-16:35:16] Disengaging the driver
[12/16/13-16:35:16] Service stopped
[12/16/13-16:36:09] *********************************************
[12/16/13-16:36:09] Network Inspection System service starting.
[12/16/13-16:36:09] Version: 4.4.304.0
[12/16/13-16:36:09] *********************************************
[12/16/13-16:36:09] Service started by NisIpsPlugin
[12/16/13-16:36:09] Service started
[12/16/13-16:36:10] Loading Definitions: fZeroDayEnabled=1, fNetBmEnabled=1, pat
h=c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{471A218E-D2
1F-4C94-BC6F-B48B22C6F10F}
[12/16/13-16:36:10] Not FEP/SCEP: overriding fZeroDayEnabled to FALSE
[12/16/13-16:36:10] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/16/13-16:36:10] --Signature list start-[12/16/13-16:36:10] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 -

[12/16/13-16:36:10] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P


AMESEG.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:36:10] --Signature list end-[12/16/13-16:36:10] Signatures: Total: 26; Enabled: 26
[12/16/13-16:36:10] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/16/13-16:36:10] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/16/13-16:36:10] Successfully loaded new definitions, Any signature active (0
/1): ZeroDay=0, BM=1
[12/16/13-16:36:10] At least one signature is active
[12/16/13-16:36:10] Connecting to the driver
[12/16/13-16:36:10] NumberOfCompletionPortThreads: 2, NubmerOfInspectionThreads:
24
[12/16/13-16:36:10] Load Definitions completed successfully.
[12/16/13-16:43:06] System shutdown: networking block feature is disabled
[12/16/13-16:43:06] Service stopping
[12/16/13-16:43:06] Disengaging the driver
[12/16/13-16:43:06] Service stopped
[12/16/13-16:44:14] *********************************************
[12/16/13-16:44:14] Network Inspection System service starting.
[12/16/13-16:44:14] Version: 4.4.304.0
[12/16/13-16:44:14] *********************************************
[12/16/13-16:44:14] Service started by NisIpsPlugin
[12/16/13-16:44:14] Service started
[12/16/13-16:44:14] Loading Definitions: fZeroDayEnabled=1, fNetBmEnabled=1, pat
h=c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{471A218E-D2
1F-4C94-BC6F-B48B22C6F10F}
[12/16/13-16:44:14] Not FEP/SCEP: overriding fZeroDayEnabled to FALSE
[12/16/13-16:44:14] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/16/13-16:44:14] --Signature list start--

[12/16/13-16:44:14] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B


eebone.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:44:14] --Signature list end-[12/16/13-16:44:14] Signatures: Total: 26; Enabled: 26
[12/16/13-16:44:14] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/16/13-16:44:14] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/16/13-16:44:14] Successfully loaded new definitions, Any signature active (0
/1): ZeroDay=0, BM=1

[12/16/13-16:44:14] At least one signature is active


[12/16/13-16:44:14] Connecting to the driver
[12/16/13-16:44:14] NumberOfCompletionPortThreads: 2, NubmerOfInspectionThreads:
24
[12/16/13-16:44:14] Load Definitions completed successfully.
[12/16/13-16:57:35] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/16/13-16:57:35] --Signature list start-[12/16/13-16:57:35] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/16/13-16:57:35] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 -

[12/16/13-16:57:35] --Signature list end-[12/16/13-16:57:35] Signatures: Total: 26; Enabled: 26


[12/16/13-16:57:35] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/16/13-16:57:35] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/16/13-17:15:34] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/16/13-17:15:34] --Signature list start-[12/16/13-17:15:34] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z

WANGI.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:15:34] --Signature list end-[12/16/13-17:15:34] Signatures: Total: 26; Enabled: 26


[12/16/13-17:15:34] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/16/13-17:15:34] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/16/13-17:46:26] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/16/13-17:46:26] --Signature list start-[12/16/13-17:46:26] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 -

[12/16/13-17:46:26] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z


WANGI.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:46:26] --Signature list end-[12/16/13-17:46:26] Signatures: Total: 26; Enabled: 26
[12/16/13-17:46:26] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/16/13-17:46:26] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/16/13-17:52:15] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/16/13-17:52:15] --Signature list start-[12/16/13-17:52:15] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z

EGOST.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z


WANGI.HTTP.HTTP!NIS-0000-0000 [12/16/13-17:52:15] --Signature list end-[12/16/13-17:52:15] Signatures: Total: 26; Enabled: 26
[12/16/13-17:52:15] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/16/13-17:52:15] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/16/13-18:14:34] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/16/13-18:14:34] --Signature list start-[12/16/13-18:14:34] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 -

[12/16/13-18:14:34] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z


EGOST.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/16/13-18:14:34] --Signature list end-[12/16/13-18:14:34] Signatures: Total: 26; Enabled: 26
[12/16/13-18:14:34] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/16/13-18:14:34] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/16/13-19:10:18] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/16/13-19:10:18] --Signature list start-[12/16/13-19:10:18] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z

BOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z


EGOST.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:10:18] --Signature list end-[12/16/13-19:10:18] Signatures: Total: 26; Enabled: 26
[12/16/13-19:10:18] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/16/13-19:10:18] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/16/13-19:35:35] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/16/13-19:35:35] --Signature list start-[12/16/13-19:35:35] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 -

[12/16/13-19:35:35] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z


BOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/16/13-19:35:35] --Signature list end-[12/16/13-19:35:35] Signatures: Total: 26; Enabled: 26
[12/16/13-19:35:35] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/16/13-19:35:35] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/16/13-20:39:38] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/16/13-20:39:38] --Signature list start-[12/16/13-20:39:38] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X

TRAT.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z


BOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/16/13-20:39:38] --Signature list end-[12/16/13-20:39:38] Signatures: Total: 26; Enabled: 26
[12/16/13-20:39:38] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/16/13-20:39:38] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/16/13-21:08:19] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/16/13-21:08:19] --Signature list start-[12/16/13-21:08:19] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 -

[12/16/13-21:08:19] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X


TRAT.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/16/13-21:08:19] --Signature list end-[12/16/13-21:08:19] Signatures: Total: 26; Enabled: 26
[12/16/13-21:08:19] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/16/13-21:08:19] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/16/13-21:32:28] System shutdown: networking block feature is disabled
[12/16/13-21:32:28] Service stopping
[12/16/13-21:32:28] Disengaging the driver
[12/16/13-21:32:28] Service stopped
[12/17/13-07:55:40] *********************************************
[12/17/13-07:55:40] Network Inspection System service starting.
[12/17/13-07:55:40] Version: 4.4.304.0
[12/17/13-07:55:40] *********************************************
[12/17/13-07:55:40] Service started by NisIpsPlugin
[12/17/13-07:55:40] Service started
[12/17/13-07:55:40] Loading Definitions: fZeroDayEnabled=1, fNetBmEnabled=1, pat
h=c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{471A218E-D2
1F-4C94-BC6F-B48B22C6F10F}
[12/17/13-07:55:40] Not FEP/SCEP: overriding fZeroDayEnabled to FALSE
[12/17/13-07:55:40] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-07:55:41] --Signature list start-[12/17/13-07:55:41] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S

IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S


IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-07:55:41] --Signature list end-[12/17/13-07:55:41] Signatures: Total: 26; Enabled: 26
[12/17/13-07:55:41] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-07:55:41] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-07:55:41] Successfully loaded new definitions, Any signature active (0
/1): ZeroDay=0, BM=1
[12/17/13-07:55:41] At least one signature is active
[12/17/13-07:55:41] Connecting to the driver
[12/17/13-07:55:41] NumberOfCompletionPortThreads: 2, NubmerOfInspectionThreads:
24
[12/17/13-07:55:41] Load Definitions completed successfully.
[12/17/13-08:09:17] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-08:09:17] --Signature list start-[12/17/13-08:09:17] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M

YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P


AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-08:09:17] --Signature list end-[12/17/13-08:09:17] Signatures: Total: 26; Enabled: 26
[12/17/13-08:09:17] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-08:09:17] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-09:05:41] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-09:05:41] --Signature list start-[12/17/13-09:05:41] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 -

[12/17/13-09:05:41] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M


YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:05:41] --Signature list end-[12/17/13-09:05:41] Signatures: Total: 26; Enabled: 26
[12/17/13-09:05:41] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-09:05:41] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-09:22:39] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-09:22:39] --Signature list start-[12/17/13-09:22:39] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L

OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M


YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-09:22:39] --Signature list end-[12/17/13-09:22:39] Signatures: Total: 26; Enabled: 26
[12/17/13-09:22:39] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-09:22:39] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-10:25:41] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-10:25:41] --Signature list start-[12/17/13-10:25:41] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 -

[12/17/13-10:25:41] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L


OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:25:41] --Signature list end-[12/17/13-10:25:41] Signatures: Total: 26; Enabled: 26
[12/17/13-10:25:41] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-10:25:41] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-10:46:42] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-10:46:42] --Signature list start-[12/17/13-10:46:42] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H

OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L


OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-10:46:42] --Signature list end-[12/17/13-10:46:42] Signatures: Total: 26; Enabled: 26
[12/17/13-10:46:42] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-10:46:42] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-11:19:47] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-11:19:47] --Signature list start-[12/17/13-11:19:47] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 -

[12/17/13-11:19:47] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H


OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:19:47] --Signature list end-[12/17/13-11:19:47] Signatures: Total: 26; Enabled: 26
[12/17/13-11:19:47] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-11:19:47] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-11:31:27] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-11:31:27] --Signature list start-[12/17/13-11:31:27] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H

ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H


OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:31:27] --Signature list end-[12/17/13-11:31:27] Signatures: Total: 26; Enabled: 26
[12/17/13-11:31:27] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-11:31:27] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-11:52:41] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-11:52:41] --Signature list start-[12/17/13-11:52:41] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 -

[12/17/13-11:52:41] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H


ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-11:52:41] --Signature list end-[12/17/13-11:52:41] Signatures: Total: 26; Enabled: 26
[12/17/13-11:52:41] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-11:52:41] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-12:04:16] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-12:04:16] --Signature list start-[12/17/13-12:04:16] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G

ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H


ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:04:16] --Signature list end-[12/17/13-12:04:16] Signatures: Total: 26; Enabled: 26
[12/17/13-12:04:16] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-12:04:16] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-12:23:57] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-12:23:57] --Signature list start-[12/17/13-12:23:57] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 -

[12/17/13-12:23:57] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G


ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:23:57] --Signature list end-[12/17/13-12:23:57] Signatures: Total: 26; Enabled: 26
[12/17/13-12:23:57] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-12:23:57] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-12:29:09] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-12:29:09] --Signature list start-[12/17/13-12:29:09] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F

AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G


ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:29:09] --Signature list end-[12/17/13-12:29:09] Signatures: Total: 26; Enabled: 26
[12/17/13-12:29:09] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-12:29:09] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-12:45:07] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-12:45:07] --Signature list start-[12/17/13-12:45:07] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 -

[12/17/13-12:45:07] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F


AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-12:45:07] --Signature list end-[12/17/13-12:45:07] Signatures: Total: 26; Enabled: 26
[12/17/13-12:45:07] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-12:45:07] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-13:08:03] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-13:08:03] --Signature list start-[12/17/13-13:08:03] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F

AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F


AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:08:03] --Signature list end-[12/17/13-13:08:03] Signatures: Total: 26; Enabled: 26
[12/17/13-13:08:03] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-13:08:03] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-13:50:17] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-13:50:17] --Signature list start-[12/17/13-13:50:17] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 -

[12/17/13-13:50:17] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F


AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-13:50:17] --Signature list end-[12/17/13-13:50:17] Signatures: Total: 26; Enabled: 26
[12/17/13-13:50:17] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-13:50:17] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-14:38:55] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-14:38:55] --Signature list start-[12/17/13-14:38:55] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C

YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F


AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:38:55] --Signature list end-[12/17/13-14:38:55] Signatures: Total: 26; Enabled: 26
[12/17/13-14:38:55] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-14:38:55] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-14:53:01] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-14:53:01] --Signature list start-[12/17/13-14:53:01] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 -

[12/17/13-14:53:01] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C


YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-14:53:01] --Signature list end-[12/17/13-14:53:01] Signatures: Total: 26; Enabled: 26
[12/17/13-14:53:01] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-14:53:01] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-15:08:14] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-15:08:14] --Signature list start-[12/17/13-15:08:14] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C

LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C


YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:08:14] --Signature list end-[12/17/13-15:08:14] Signatures: Total: 26; Enabled: 26
[12/17/13-15:08:14] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-15:08:14] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-15:28:16] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-15:28:16] --Signature list start-[12/17/13-15:28:16] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 -

[12/17/13-15:28:16] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C


LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:28:16] --Signature list end-[12/17/13-15:28:16] Signatures: Total: 26; Enabled: 26
[12/17/13-15:28:16] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-15:28:16] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-15:48:18] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-15:48:18] --Signature list start-[12/17/13-15:48:18] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B

IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C


LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:48:18] --Signature list end-[12/17/13-15:48:18] Signatures: Total: 26; Enabled: 26
[12/17/13-15:48:18] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-15:48:18] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-15:55:00] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-15:55:00] --Signature list start-[12/17/13-15:55:00] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 -

[12/17/13-15:55:00] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B


IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-15:55:00] --Signature list end-[12/17/13-15:55:00] Signatures: Total: 26; Enabled: 26
[12/17/13-15:55:00] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-15:55:00] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-16:14:52] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-16:14:52] --Signature list start-[12/17/13-16:14:52] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B

eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B


IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:14:52] --Signature list end-[12/17/13-16:14:52] Signatures: Total: 26; Enabled: 26
[12/17/13-16:14:52] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-16:14:52] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-16:19:55] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-16:19:55] --Signature list start--

[12/17/13-16:19:55] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B


eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:19:55] --Signature list end-[12/17/13-16:19:55] Signatures: Total: 26; Enabled: 26
[12/17/13-16:19:55] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-16:19:55] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-16:44:20] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0

[12/17/13-16:44:20] --Signature list start-[12/17/13-16:44:20] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B


eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-16:44:20] --Signature list end-[12/17/13-16:44:20] Signatures: Total: 26; Enabled: 26
[12/17/13-16:44:20] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-16:44:20] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-17:00:29] Signature update - files received: Engine version: 2.1.10003

.0; Signature version = 109.61.0.0


[12/17/13-17:00:30] --Signature list start-[12/17/13-17:00:30] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:00:30] --Signature list end-[12/17/13-17:00:30] Signatures: Total: 26; Enabled: 26
[12/17/13-17:00:30] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-17:00:30] New engine version=2.1.10003.0; New signature version=109.61
.0.0

[12/17/13-17:31:55] Signature update - files received: Engine version: 2.1.10003


.0; Signature version = 109.61.0.0
[12/17/13-17:31:55] --Signature list start-[12/17/13-17:31:55] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:31:55] --Signature list end-[12/17/13-17:31:55] Signatures: Total: 26; Enabled: 26
[12/17/13-17:31:55] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-17:31:55] New engine version=2.1.10003.0; New signature version=109.61

.0.0
[12/17/13-17:38:31] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-17:38:31] --Signature list start-[12/17/13-17:38:31] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-17:38:31] --Signature list end-[12/17/13-17:38:31] Signatures: Total: 26; Enabled: 26
[12/17/13-17:38:31] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0

[12/17/13-17:38:31] New engine version=2.1.10003.0; New signature version=109.61


.0.0
[12/17/13-18:59:08] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-18:59:08] --Signature list start-[12/17/13-18:59:08] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-18:59:08] --Signature list end-[12/17/13-18:59:08] Signatures: Total: 26; Enabled: 26
[12/17/13-18:59:08] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa

y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-18:59:08] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-20:00:12] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-20:00:12] --Signature list start-[12/17/13-20:00:12] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:00:12] --Signature list end-[12/17/13-20:00:12] Signatures: Total: 26; Enabled: 26

[12/17/13-20:00:12] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa


y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-20:00:12] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-20:52:57] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-20:52:57] --Signature list start-[12/17/13-20:52:57] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/17/13-20:52:57] --Signature list end--

[12/17/13-20:52:57] Signatures: Total: 26; Enabled: 26


[12/17/13-20:52:57] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-20:52:57] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-21:10:16] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/17/13-21:10:16] --Signature list start-[12/17/13-21:10:16] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/17/13-21:10:16] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 -

[12/17/13-21:10:16] --Signature list end-[12/17/13-21:10:16] Signatures: Total: 26; Enabled: 26


[12/17/13-21:10:16] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/17/13-21:10:16] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/17/13-21:27:42] System shutdown: networking block feature is disabled
[12/17/13-21:27:42] Service stopping
[12/17/13-21:27:42] Disengaging the driver
[12/17/13-21:27:42] Service stopped
[12/18/13-07:55:47] *********************************************
[12/18/13-07:55:47] Network Inspection System service starting.
[12/18/13-07:55:47] Version: 4.4.304.0
[12/18/13-07:55:47] *********************************************
[12/18/13-07:55:47] Service started by NisIpsPlugin
[12/18/13-07:55:47] Service started
[12/18/13-07:55:48] Loading Definitions: fZeroDayEnabled=1, fNetBmEnabled=1, pat
h=c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{471A218E-D2
1F-4C94-BC6F-B48B22C6F10F}
[12/18/13-07:55:48] Not FEP/SCEP: overriding fZeroDayEnabled to FALSE
[12/18/13-07:55:48] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-07:55:48] --Signature list start-[12/18/13-07:55:48] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V

UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W


ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-07:55:48] --Signature list end-[12/18/13-07:55:48] Signatures: Total: 26; Enabled: 26
[12/18/13-07:55:48] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-07:55:48] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-07:55:48] Successfully loaded new definitions, Any signature active (0
/1): ZeroDay=0, BM=1
[12/18/13-07:55:48] At least one signature is active
[12/18/13-07:55:48] Connecting to the driver
[12/18/13-07:55:48] NumberOfCompletionPortThreads: 2, NubmerOfInspectionThreads:
24
[12/18/13-07:55:48] Load Definitions completed successfully.
[12/18/13-08:05:36] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-08:05:36] --Signature list start-[12/18/13-08:05:36] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S

IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S


IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:05:36] --Signature list end-[12/18/13-08:05:36] Signatures: Total: 26; Enabled: 26
[12/18/13-08:05:36] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-08:05:36] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-08:16:34] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-08:16:34] --Signature list start-[12/18/13-08:16:34] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-08:16:34] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S


IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:16:34] --Signature list end-[12/18/13-08:16:34] Signatures: Total: 26; Enabled: 26
[12/18/13-08:16:34] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-08:16:34] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-08:37:54] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-08:37:54] --Signature list start-[12/18/13-08:37:54] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R

ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S


IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:37:54] --Signature list end-[12/18/13-08:37:54] Signatures: Total: 26; Enabled: 26
[12/18/13-08:37:54] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-08:37:54] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-08:51:06] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-08:51:07] --Signature list start-[12/18/13-08:51:07] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-08:51:07] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R


ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:51:07] --Signature list end-[12/18/13-08:51:07] Signatures: Total: 26; Enabled: 26
[12/18/13-08:51:07] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-08:51:07] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-08:58:12] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-08:58:12] --Signature list start-[12/18/13-08:58:12] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R

AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R


ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-08:58:12] --Signature list end-[12/18/13-08:58:12] Signatures: Total: 26; Enabled: 26
[12/18/13-08:58:12] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-08:58:12] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-09:09:51] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-09:09:51] --Signature list start-[12/18/13-09:09:51] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-09:09:51] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R


AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:09:51] --Signature list end-[12/18/13-09:09:51] Signatures: Total: 26; Enabled: 26
[12/18/13-09:09:51] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-09:09:51] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-09:18:12] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-09:18:12] --Signature list start-[12/18/13-09:18:12] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P

AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R


AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:18:12] --Signature list end-[12/18/13-09:18:12] Signatures: Total: 26; Enabled: 26
[12/18/13-09:18:12] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-09:18:12] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-09:26:36] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-09:26:36] --Signature list start-[12/18/13-09:26:36] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-09:26:36] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P


AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:26:36] --Signature list end-[12/18/13-09:26:36] Signatures: Total: 26; Enabled: 26
[12/18/13-09:26:36] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-09:26:36] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-09:38:12] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-09:38:12] --Signature list start-[12/18/13-09:38:12] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M

YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P


AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:38:12] --Signature list end-[12/18/13-09:38:12] Signatures: Total: 26; Enabled: 26
[12/18/13-09:38:12] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-09:38:12] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-09:45:39] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-09:45:39] --Signature list start-[12/18/13-09:45:39] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-09:45:39] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M


YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:45:39] --Signature list end-[12/18/13-09:45:39] Signatures: Total: 26; Enabled: 26
[12/18/13-09:45:39] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-09:45:39] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-09:51:25] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-09:51:26] --Signature list start-[12/18/13-09:51:26] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L

OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M


YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:51:26] --Signature list end-[12/18/13-09:51:26] Signatures: Total: 26; Enabled: 26
[12/18/13-09:51:26] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-09:51:26] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-09:58:14] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-09:58:14] --Signature list start-[12/18/13-09:58:14] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-09:58:14] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L


OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-09:58:14] --Signature list end-[12/18/13-09:58:14] Signatures: Total: 26; Enabled: 26
[12/18/13-09:58:14] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-09:58:14] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-10:08:14] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-10:08:14] --Signature list start-[12/18/13-10:08:14] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H

OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L


OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:08:14] --Signature list end-[12/18/13-10:08:14] Signatures: Total: 26; Enabled: 26
[12/18/13-10:08:14] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-10:08:14] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-10:33:37] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-10:33:37] --Signature list start-[12/18/13-10:33:37] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-10:33:37] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H


OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:33:37] --Signature list end-[12/18/13-10:33:37] Signatures: Total: 26; Enabled: 26
[12/18/13-10:33:37] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-10:33:37] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-10:58:18] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-10:58:18] --Signature list start-[12/18/13-10:58:18] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H

ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H


OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-10:58:18] --Signature list end-[12/18/13-10:58:18] Signatures: Total: 26; Enabled: 26
[12/18/13-10:58:18] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-10:58:18] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-11:15:29] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-11:15:29] --Signature list start-[12/18/13-11:15:29] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-11:15:29] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H


ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:15:29] --Signature list end-[12/18/13-11:15:29] Signatures: Total: 26; Enabled: 26
[12/18/13-11:15:29] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-11:15:29] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-11:30:14] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-11:30:14] --Signature list start-[12/18/13-11:30:14] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G

ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H


ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:30:14] --Signature list end-[12/18/13-11:30:14] Signatures: Total: 26; Enabled: 26
[12/18/13-11:30:14] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-11:30:14] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-11:38:21] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-11:38:22] --Signature list start-[12/18/13-11:38:22] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-11:38:22] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G


ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:38:22] --Signature list end-[12/18/13-11:38:22] Signatures: Total: 26; Enabled: 26
[12/18/13-11:38:22] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-11:38:22] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-11:51:42] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-11:51:42] --Signature list start-[12/18/13-11:51:42] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F

AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G


ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:51:42] --Signature list end-[12/18/13-11:51:42] Signatures: Total: 26; Enabled: 26
[12/18/13-11:51:42] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-11:51:42] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-11:57:32] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-11:57:32] --Signature list start-[12/18/13-11:57:32] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-11:57:32] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F


AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-11:57:32] --Signature list end-[12/18/13-11:57:32] Signatures: Total: 26; Enabled: 26
[12/18/13-11:57:32] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-11:57:32] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-12:04:04] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-12:04:04] --Signature list start-[12/18/13-12:04:04] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F

AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F


AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:04:04] --Signature list end-[12/18/13-12:04:04] Signatures: Total: 26; Enabled: 26
[12/18/13-12:04:04] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-12:04:04] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-12:18:25] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-12:18:25] --Signature list start-[12/18/13-12:18:25] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-12:18:25] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F


AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:18:25] --Signature list end-[12/18/13-12:18:25] Signatures: Total: 26; Enabled: 26
[12/18/13-12:18:25] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-12:18:25] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-12:38:15] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-12:38:15] --Signature list start-[12/18/13-12:38:15] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C

YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F


AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:38:15] --Signature list end-[12/18/13-12:38:15] Signatures: Total: 26; Enabled: 26
[12/18/13-12:38:15] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-12:38:15] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-12:44:29] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-12:44:29] --Signature list start-[12/18/13-12:44:29] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-12:44:29] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C


YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:44:29] --Signature list end-[12/18/13-12:44:29] Signatures: Total: 26; Enabled: 26
[12/18/13-12:44:29] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-12:44:29] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-12:58:29] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-12:58:29] --Signature list start-[12/18/13-12:58:29] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C

LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C


YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-12:58:29] --Signature list end-[12/18/13-12:58:29] Signatures: Total: 26; Enabled: 26
[12/18/13-12:58:29] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-12:58:29] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-13:10:04] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-13:10:04] --Signature list start-[12/18/13-13:10:04] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-13:10:04] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C


LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:10:04] --Signature list end-[12/18/13-13:10:04] Signatures: Total: 26; Enabled: 26
[12/18/13-13:10:04] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-13:10:04] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-13:15:50] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-13:15:50] --Signature list start-[12/18/13-13:15:50] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B

IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C


LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:15:50] --Signature list end-[12/18/13-13:15:50] Signatures: Total: 26; Enabled: 26
[12/18/13-13:15:50] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-13:15:50] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-13:27:07] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-13:27:07] --Signature list start-[12/18/13-13:27:07] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-13:27:07] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B


IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:27:07] --Signature list end-[12/18/13-13:27:07] Signatures: Total: 26; Enabled: 26
[12/18/13-13:27:07] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-13:27:07] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-13:33:19] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-13:33:19] --Signature list start-[12/18/13-13:33:19] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B

eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B


IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:33:19] --Signature list end-[12/18/13-13:33:19] Signatures: Total: 26; Enabled: 26
[12/18/13-13:33:19] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-13:33:19] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-13:49:08] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-13:49:08] --Signature list start--

[12/18/13-13:49:08] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B


eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:49:08] --Signature list end-[12/18/13-13:49:08] Signatures: Total: 26; Enabled: 26
[12/18/13-13:49:08] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-13:49:08] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-13:58:34] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0

[12/18/13-13:58:34] --Signature list start-[12/18/13-13:58:34] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B


eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-13:58:34] --Signature list end-[12/18/13-13:58:34] Signatures: Total: 26; Enabled: 26
[12/18/13-13:58:34] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-13:58:34] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-14:12:25] Signature update - files received: Engine version: 2.1.10003

.0; Signature version = 109.61.0.0


[12/18/13-14:12:25] --Signature list start-[12/18/13-14:12:25] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:12:25] --Signature list end-[12/18/13-14:12:25] Signatures: Total: 26; Enabled: 26
[12/18/13-14:12:25] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-14:12:25] New engine version=2.1.10003.0; New signature version=109.61
.0.0

[12/18/13-14:27:16] Signature update - files received: Engine version: 2.1.10003


.0; Signature version = 109.61.0.0
[12/18/13-14:27:16] --Signature list start-[12/18/13-14:27:16] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:27:16] --Signature list end-[12/18/13-14:27:16] Signatures: Total: 26; Enabled: 26
[12/18/13-14:27:16] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-14:27:16] New engine version=2.1.10003.0; New signature version=109.61

.0.0
[12/18/13-14:33:45] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-14:33:45] --Signature list start-[12/18/13-14:33:45] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:33:45] --Signature list end-[12/18/13-14:33:45] Signatures: Total: 26; Enabled: 26
[12/18/13-14:33:45] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0

[12/18/13-14:33:45] New engine version=2.1.10003.0; New signature version=109.61


.0.0
[12/18/13-14:44:55] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-14:44:55] --Signature list start-[12/18/13-14:44:55] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:44:55] --Signature list end-[12/18/13-14:44:55] Signatures: Total: 26; Enabled: 26
[12/18/13-14:44:55] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa

y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-14:44:55] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-14:58:39] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-14:58:40] --Signature list start-[12/18/13-14:58:40] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-14:58:40] --Signature list end-[12/18/13-14:58:40] Signatures: Total: 26; Enabled: 26

[12/18/13-14:58:40] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa


y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-14:58:40] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-15:18:41] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-15:18:41] --Signature list start-[12/18/13-15:18:41] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:18:41] --Signature list end--

[12/18/13-15:18:41] Signatures: Total: 26; Enabled: 26


[12/18/13-15:18:41] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-15:18:41] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-15:51:00] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-15:51:00] --Signature list start-[12/18/13-15:51:00] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-15:51:00] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-15:51:00] --Signature list end-[12/18/13-15:51:00] Signatures: Total: 26; Enabled: 26


[12/18/13-15:51:00] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-15:51:00] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-16:04:09] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-16:04:09] --Signature list start-[12/18/13-16:04:09] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z

WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-16:04:09] --Signature list end-[12/18/13-16:04:09] Signatures: Total: 26; Enabled: 26


[12/18/13-16:04:09] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-16:04:09] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-17:00:31] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-17:00:31] --Signature list start-[12/18/13-17:00:31] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-17:00:31] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z


WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:00:31] --Signature list end-[12/18/13-17:00:31] Signatures: Total: 26; Enabled: 26
[12/18/13-17:00:31] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-17:00:31] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-17:15:36] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-17:15:36] --Signature list start-[12/18/13-17:15:36] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z

EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z


WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:15:36] --Signature list end-[12/18/13-17:15:36] Signatures: Total: 26; Enabled: 26
[12/18/13-17:15:36] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-17:15:36] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-17:31:35] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-17:31:35] --Signature list start-[12/18/13-17:31:35] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-17:31:35] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z


EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:31:35] --Signature list end-[12/18/13-17:31:35] Signatures: Total: 26; Enabled: 26
[12/18/13-17:31:35] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-17:31:35] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-17:38:54] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-17:38:54] --Signature list start-[12/18/13-17:38:54] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z

BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z


EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:38:54] --Signature list end-[12/18/13-17:38:54] Signatures: Total: 26; Enabled: 26
[12/18/13-17:38:54] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-17:38:54] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-17:58:56] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-17:58:56] --Signature list start-[12/18/13-17:58:56] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-17:58:56] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z


BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-17:58:56] --Signature list end-[12/18/13-17:58:56] Signatures: Total: 26; Enabled: 26
[12/18/13-17:58:56] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-17:58:56] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-18:11:16] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-18:11:16] --Signature list start-[12/18/13-18:11:16] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X

TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z


BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:11:16] --Signature list end-[12/18/13-18:11:16] Signatures: Total: 26; Enabled: 26
[12/18/13-18:11:16] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-18:11:16] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-18:38:41] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-18:38:41] --Signature list start-[12/18/13-18:38:41] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-18:38:41] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X


TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:38:41] --Signature list end-[12/18/13-18:38:41] Signatures: Total: 26; Enabled: 26
[12/18/13-18:38:41] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-18:38:41] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-18:45:01] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-18:45:01] --Signature list start-[12/18/13-18:45:01] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W

uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X


TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:45:01] --Signature list end-[12/18/13-18:45:01] Signatures: Total: 26; Enabled: 26
[12/18/13-18:45:01] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-18:45:01] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-18:59:01] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-18:59:01] --Signature list start-[12/18/13-18:59:01] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-18:59:01] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W


uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-18:59:01] --Signature list end-[12/18/13-18:59:01] Signatures: Total: 26; Enabled: 26
[12/18/13-18:59:01] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-18:59:01] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-19:06:11] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-19:06:11] --Signature list start-[12/18/13-19:06:11] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W

INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W


uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:06:11] --Signature list end-[12/18/13-19:06:11] Signatures: Total: 26; Enabled: 26
[12/18/13-19:06:11] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-19:06:11] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-19:42:19] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-19:42:19] --Signature list start-[12/18/13-19:42:19] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-19:42:19] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W


INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:42:19] --Signature list end-[12/18/13-19:42:19] Signatures: Total: 26; Enabled: 26
[12/18/13-19:42:19] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-19:42:19] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-19:59:11] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-19:59:11] --Signature list start-[12/18/13-19:59:11] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W

ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W


INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-19:59:11] --Signature list end-[12/18/13-19:59:11] Signatures: Total: 26; Enabled: 26
[12/18/13-19:59:11] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-19:59:11] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-21:12:22] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/18/13-21:12:22] --Signature list start-[12/18/13-21:12:22] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 -

[12/18/13-21:12:22] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W


ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/18/13-21:12:22] --Signature list end-[12/18/13-21:12:22] Signatures: Total: 26; Enabled: 26
[12/18/13-21:12:22] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/18/13-21:12:22] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/18/13-21:23:18] System shutdown: networking block feature is disabled
[12/18/13-21:23:18] Service stopping
[12/18/13-21:23:18] Disengaging the driver
[12/18/13-21:23:18] Service stopped
[12/19/13-07:55:45] *********************************************
[12/19/13-07:55:45] Network Inspection System service starting.
[12/19/13-07:55:45] Version: 4.4.304.0
[12/19/13-07:55:45] *********************************************
[12/19/13-07:55:45] Service started by NisIpsPlugin
[12/19/13-07:55:45] Service started
[12/19/13-07:55:45] Loading Definitions: fZeroDayEnabled=1, fNetBmEnabled=1, pat
h=c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{471A218E-D2
1F-4C94-BC6F-B48B22C6F10F}
[12/19/13-07:55:45] Not FEP/SCEP: overriding fZeroDayEnabled to FALSE
[12/19/13-07:55:45] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/19/13-07:55:45] --Signature list start-[12/19/13-07:55:45] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P

AMESEG.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R


AMNIT.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/19/13-07:55:45] --Signature list end-[12/19/13-07:55:45] Signatures: Total: 26; Enabled: 26
[12/19/13-07:55:45] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/19/13-07:55:45] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/19/13-07:55:45] Successfully loaded new definitions, Any signature active (0
/1): ZeroDay=0, BM=1
[12/19/13-07:55:45] At least one signature is active
[12/19/13-07:55:45] Connecting to the driver
[12/19/13-07:55:45] NumberOfCompletionPortThreads: 2, NubmerOfInspectionThreads:
24
[12/19/13-07:55:45] Load Definitions completed successfully.
[12/19/13-08:09:23] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/19/13-08:09:23] --Signature list start-[12/19/13-08:09:23] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H

ARNIG.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H


OTBAR.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:09:23] --Signature list end-[12/19/13-08:09:23] Signatures: Total: 26; Enabled: 26
[12/19/13-08:09:23] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/19/13-08:09:23] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/19/13-08:43:13] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/19/13-08:43:13] --Signature list start-[12/19/13-08:43:13] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 -

[12/19/13-08:43:13] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H


ARNIG.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/19/13-08:43:13] --Signature list end-[12/19/13-08:43:13] Signatures: Total: 26; Enabled: 26
[12/19/13-08:43:13] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/19/13-08:43:13] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/19/13-09:13:47] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/19/13-09:13:47] --Signature list start-[12/19/13-09:13:47] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G

ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H


ARNIG.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:13:47] --Signature list end-[12/19/13-09:13:47] Signatures: Total: 26; Enabled: 26
[12/19/13-09:13:47] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/19/13-09:13:47] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/19/13-09:40:43] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/19/13-09:40:43] --Signature list start-[12/19/13-09:40:43] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F
AREIT.HTTP.HTTP!NIS-0000-0000 -

[12/19/13-09:40:43] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G


ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/19/13-09:40:43] --Signature list end-[12/19/13-09:40:43] Signatures: Total: 26; Enabled: 26
[12/19/13-09:40:43] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/19/13-09:40:43] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/19/13-10:51:49] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/19/13-10:51:49] --Signature list start-[12/19/13-10:51:49] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F

AREIT.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G


ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/19/13-10:51:49] --Signature list end-[12/19/13-10:51:49] Signatures: Total: 26; Enabled: 26
[12/19/13-10:51:49] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/19/13-10:51:49] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/19/13-11:09:44] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/19/13-11:09:44] --Signature list start-[12/19/13-11:09:44] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F
AKEPAV.HTTP.HTTP!NIS-0000-0000 -

[12/19/13-11:09:44] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F


AREIT.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {0751ede2-b4a7-41e0-8980-d253abbb665e} Other:Win/S
IREFEF.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {16e6088b-ab72-434d-8cc2-d51fdfe0dfa3} Other:Win/S
WIZZOR.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {672f7fe9-e909-4424-97dc-a4062f8b35bb} Other:Win/V
OBFUS.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {56a9c37d-c665-4d95-a1e4-4fb00afee93a} Other:Win/V
UNDO.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {f5a8ca50-4ba6-453c-9af0-c3cfac70bf1d} Other:Win/W
ALEDAC.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {ecfaaf2a-e527-4537-90de-32af3a723440} Other:Win/W
INWEBSEC.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {198df45f-dc5a-408d-b8e2-7671b67fa535} Other:Win/W
uCall.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {7819b4af-3b7d-47c4-999a-3e0254739da1} Other:Win/X
TRAT.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {17b5a0b2-7d7e-40a2-848b-c09a9a84c3b9} Other:Win/Z
BOT.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {7d299124-5ed1-4be4-942f-07b7aa8a9d7c} Other:Win/Z
EGOST.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] [On ] Sig {078d1c6d-456a-40c5-95ff-e710e0e67f22} Other:Win/Z
WANGI.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:09:44] --Signature list end-[12/19/13-11:09:44] Signatures: Total: 26; Enabled: 26
[12/19/13-11:09:44] Active signature breakdown: BM: 26; ZeroDay-Block: 0; ZeroDa
y-Detect: 0; ZeroDay-Detect-Inline: 0
[12/19/13-11:09:44] New engine version=2.1.10003.0; New signature version=109.61
.0.0
[12/19/13-11:58:52] Signature update - files received: Engine version: 2.1.10003
.0; Signature version = 109.61.0.0
[12/19/13-11:58:52] --Signature list start-[12/19/13-11:58:52] [On ] Sig {98fc2ed0-1a01-4940-8895-b782084dfc24} Other:Win/B
eebone.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:58:52] [On ] Sig {0ba185cf-007f-468f-b01e-e83c6f60a829} Other:Win/B
IFROSE.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:58:52] [On ] Sig {60a54817-6315-4ffa-aee4-a51eefb054a0} Other:Win/C
LEAMAN.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:58:52] [On ] Sig {c0af4a50-8911-436c-830f-797b419b55b0} Other:Win/C
YCBOT.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:58:52] [On ] Sig {530607d9-8e4d-44c2-91da-4951e9c11550} Other:Win/F

AKEPAV.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:58:52] [On ] Sig {e43c8ce3-4ab0-4c32-a59d-7a6f57a0e379} Other:Win/F


AREIT.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:58:52] [On ] Sig {f3c5a901-58f4-4357-b1f2-fa27b8080c0c} Other:Win/G
ROZLEX.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:58:52] [On ] Sig {fad62e2d-5c87-4294-b281-2f1a82ab1eea} Other:Win/H
ARNIG.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:58:52] [On ] Sig {ed4aa3ca-40fb-409a-9294-77699e69f349} Other:Win/H
OTBAR.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:58:52] [On ] Sig {829c21c6-0714-4edb-a5b5-386beca031fa} Other:Win/L
OLYDA.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:58:52] [On ] Sig {0d81f25a-0b4f-417f-b8f7-40a3d25fd943} Other:Win/M
YFWUS.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:58:52] [On ] Sig {64766320-0ca6-4173-a4dc-ca8d7eb81d0d} Other:Win/P
AMESEG.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:58:52] [On ] Sig {04cc148e-e83a-4569-a891-cc89318ccaf2} Other:Win/R
AMNIT.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:58:52] [On ] Sig {91bb65e2-2c89-4d35-ae78-8c9f189cdc57} Other:Win/R
ENOS.HTTP.HTTP!NIS-0000-0000 [12/19/13-11:58:52] [On ] Sig {db9aeca3-583f-466a-aafd-e2039bd3adfc} Other:Win/S
IMDA.HTTP.HTTP!NIS-0000-0000 [12/19/