[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 631 seconds [**]
11/29-14:36:40.037184 192.168.100.28:32789 -> 210.94.0.7:53
UDP TTL:255 TOS:0x0 ID:42421 IpLen:20 DgmLen:73 DF
Len: 45

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 21 targets 21 ports in 5009 seconds [**]
11/29-15:49:38.530858 192.168.100.28:32789 -> 192.26.92.30:53
UDP TTL:255 TOS:0x0 ID:29779 IpLen:20 DgmLen:60 DF
Len: 32

[**] [1:620:2] SCAN Proxy (8080) attempt [**]
[Classification: Attempted Information Leak] [Priority: 2] 
11/29-20:25:08.481119 61.144.145.243:3667 -> 192.168.100.28:8080
TCP TTL:47 TOS:0x0 ID:19890 IpLen:20 DgmLen:52 DF
******S* Seq: 0x15E082B1  Ack: 0x0  Win: 0xE640  TcpLen: 32
TCP Options (6) => MSS: 1452 NOP WS: 2 NOP NOP SackOK 

[**] [1:618:2] SCAN Squid Proxy attempt [**]
[Classification: Attempted Information Leak] [Priority: 2] 
11/29-20:25:08.481119 61.144.145.243:3677 -> 192.168.100.28:3128
TCP TTL:47 TOS:0x0 ID:19892 IpLen:20 DgmLen:52 DF
******S* Seq: 0x15E1F6DD  Ack: 0x0  Win: 0xE640  TcpLen: 32
TCP Options (6) => MSS: 1452 NOP WS: 2 NOP NOP SackOK 

[**] [1:620:2] SCAN Proxy (8080) attempt [**]
[Classification: Attempted Information Leak] [Priority: 2] 
11/29-20:25:09.381058 61.144.145.243:3667 -> 192.168.100.28:8080
TCP TTL:47 TOS:0x0 ID:20165 IpLen:20 DgmLen:52 DF
******S* Seq: 0x15E082B1  Ack: 0x0  Win: 0xE640  TcpLen: 32
TCP Options (6) => MSS: 1452 NOP WS: 2 NOP NOP SackOK 

[**] [1:618:2] SCAN Squid Proxy attempt [**]
[Classification: Attempted Information Leak] [Priority: 2] 
11/29-20:25:09.391058 61.144.145.243:3677 -> 192.168.100.28:3128
TCP TTL:47 TOS:0x0 ID:20167 IpLen:20 DgmLen:52 DF
******S* Seq: 0x15E1F6DD  Ack: 0x0  Win: 0xE640  TcpLen: 32
TCP Options (6) => MSS: 1452 NOP WS: 2 NOP NOP SackOK 

[**] [1:620:2] SCAN Proxy (8080) attempt [**]
[Classification: Attempted Information Leak] [Priority: 2] 
11/29-20:25:10.300996 61.144.145.243:3667 -> 192.168.100.28:8080
TCP TTL:47 TOS:0x0 ID:20686 IpLen:20 DgmLen:52 DF
******S* Seq: 0x15E082B1  Ack: 0x0  Win: 0xE640  TcpLen: 32
TCP Options (6) => MSS: 1452 NOP WS: 2 NOP NOP SackOK 

[**] [1:618:2] SCAN Squid Proxy attempt [**]
[Classification: Attempted Information Leak] [Priority: 2] 
11/29-20:25:10.310995 61.144.145.243:3677 -> 192.168.100.28:3128
TCP TTL:47 TOS:0x0 ID:20692 IpLen:20 DgmLen:52 DF
******S* Seq: 0x15E1F6DD  Ack: 0x0  Win: 0xE640  TcpLen: 32
TCP Options (6) => MSS: 1452 NOP WS: 2 NOP NOP SackOK 

[**] [1:645:3] SHELLCODE sparc NOOP [**]
[Classification: Executable code was detected] [Priority: 1] 
11/29-23:36:26.503382 61.219.90.180:56711 -> 192.168.100.28:6112
TCP TTL:44 TOS:0x0 ID:61373 IpLen:20 DgmLen:1500 DF
***A**** Seq: 0x7FC1DB88  Ack: 0xBA41EB06  Win: 0x16D0  TcpLen: 32
TCP Options (3) => NOP NOP TS: 48510034 113867474 
[Xref => http://www.whitehats.com/info/IDS353]

[**] [1:402:4] ICMP Destination Unreachable (Port Unreachable) [**]
[Classification: Misc activity] [Priority: 3] 
11/29-23:47:09.759808 148.244.153.69 -> 192.168.100.28
ICMP TTL:124 TOS:0x0 ID:2312 IpLen:20 DgmLen:56
Type:3  Code:3  DESTINATION UNREACHABLE: PORT UNREACHABLE
** ORIGINAL DATAGRAM DUMP:
192.168.100.28:53 -> 148.244.153.69:1124
UDP TTL:251 TOS:0x0 ID:40357 IpLen:20 DgmLen:163 DF
Len: 135
** END OF DUMP

[**] [1:402:4] ICMP Destination Unreachable (Port Unreachable) [**]
[Classification: Misc activity] [Priority: 3] 
11/29-23:49:57.258437 148.244.153.69 -> 192.168.100.28
ICMP TTL:124 TOS:0x0 ID:15888 IpLen:20 DgmLen:56
Type:3  Code:3  DESTINATION UNREACHABLE: PORT UNREACHABLE
** ORIGINAL DATAGRAM DUMP:
192.168.100.28:53 -> 148.244.153.69:1233
UDP TTL:251 TOS:0x0 ID:40358 IpLen:20 DgmLen:165 DF
Len: 137
** END OF DUMP

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/29-23:59:52.338046 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16475 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:00:01.777405 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25915 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:01:02.773265 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16476 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:01:12.772587 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25916 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:02:03.779125 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16477 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:02:13.788446 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25917 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:03:04.794984 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16478 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:03:14.794306 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25918 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:04:05.790845 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16479 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 0 seconds [**]
11/30-00:04:08.490662 192.168.100.28:32789 -> 151.99.125.138:53
UDP TTL:255 TOS:0x0 ID:10471 IpLen:20 DgmLen:82 DF
Len: 54

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:04:15.780167 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25919 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [116:56:1] (snort_decoder): T/TCP Detected [**]
11/30-00:04:46.418088 206.252.192.195:0 -> 192.168.100.28:0
TCP TTL:51 TOS:0x0 ID:10267 IpLen:20 DgmLen:68 DF
******S* Seq: 0xAD2A435D  Ack: 0x0  Win: 0x4000  TcpLen: 48
TCP Options (9) => MSS: 1460 NOP WS: 0 NOP NOP TS: 481191594 0 
TCP Options => NOP NOP CCNEW: 136032629 

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:05:06.786705 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16480 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:05:16.786027 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25920 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [116:56:1] (snort_decoder): T/TCP Detected [**]
11/30-00:05:38.424558 206.252.192.195:0 -> 192.168.100.28:0
TCP TTL:51 TOS:0x0 ID:50612 IpLen:20 DgmLen:68 DF
******S* Seq: 0xDFD73115  Ack: 0x0  Win: 0x4000  TcpLen: 48
TCP Options (9) => MSS: 1460 NOP WS: 0 NOP NOP TS: 481196794 0 
TCP Options => NOP NOP CCNEW: 136034206 

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:06:07.792565 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16481 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:06:17.791887 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25921 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [116:56:1] (snort_decoder): T/TCP Detected [**]
11/30-00:06:32.410895 206.252.192.195:0 -> 192.168.100.28:0
TCP TTL:51 TOS:0x0 ID:27572 IpLen:20 DgmLen:68 DF
******S* Seq: 0x151FB03A  Ack: 0x0  Win: 0x4000  TcpLen: 48
TCP Options (9) => MSS: 1460 NOP WS: 0 NOP NOP TS: 481202194 0 
TCP Options => NOP NOP CCNEW: 136035815 

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:07:08.788426 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16482 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:07:18.797747 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25922 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [116:56:1] (snort_decoder): T/TCP Detected [**]
11/30-00:07:26.817203 206.252.192.195:0 -> 192.168.100.28:0
TCP TTL:51 TOS:0x0 ID:3256 IpLen:20 DgmLen:68 DF
******S* Seq: 0xBD724D6C  Ack: 0x0  Win: 0x4000  TcpLen: 48
TCP Options (9) => MSS: 1460 NOP WS: 0 NOP NOP TS: 481207635 0 
TCP Options => NOP NOP CCNEW: 136037572 

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:08:09.794286 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16483 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:08:19.803607 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25923 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [116:56:1] (snort_decoder): T/TCP Detected [**]
11/30-00:08:22.423429 206.252.192.195:0 -> 192.168.100.28:0
TCP TTL:51 TOS:0x0 ID:47099 IpLen:20 DgmLen:68 DF
******S* Seq: 0x377F9805  Ack: 0x0  Win: 0x4000  TcpLen: 48
TCP Options (9) => MSS: 1460 NOP WS: 0 NOP NOP TS: 481213197 0 
TCP Options => NOP NOP CCNEW: 136039230 

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:09:10.810146 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16484 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [116:56:1] (snort_decoder): T/TCP Detected [**]
11/30-00:09:14.489896 206.252.192.195:0 -> 192.168.100.28:0
TCP TTL:51 TOS:0x0 ID:21281 IpLen:20 DgmLen:68 DF
******S* Seq: 0x96E0ED86  Ack: 0x0  Win: 0x4000  TcpLen: 48
TCP Options (9) => MSS: 1460 NOP WS: 0 NOP NOP TS: 481218404 0 
TCP Options => NOP NOP CCNEW: 136040783 

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:09:20.809467 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25924 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [116:56:1] (snort_decoder): T/TCP Detected [**]
11/30-00:09:49.427525 206.252.192.195:0 -> 192.168.100.28:0
TCP TTL:51 TOS:0x0 ID:48678 IpLen:20 DgmLen:68 DF
******S* Seq: 0xDCCF0832  Ack: 0x0  Win: 0x4000  TcpLen: 48
TCP Options (9) => MSS: 1460 NOP WS: 0 NOP NOP TS: 481221898 0 
TCP Options => NOP NOP CCNEW: 136041858 

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:10:11.816006 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16485 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:10:21.815328 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25925 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [116:56:1] (snort_decoder): T/TCP Detected [**]
11/30-00:10:26.834987 206.252.192.195:0 -> 192.168.100.28:0
TCP TTL:51 TOS:0x0 ID:13638 IpLen:20 DgmLen:68 DF
******S* Seq: 0x353FCB52  Ack: 0x0  Win: 0x4000  TcpLen: 48
TCP Options (9) => MSS: 1460 NOP WS: 0 NOP NOP TS: 481225639 0 
TCP Options => NOP NOP CCNEW: 136042943 

[**] [116:56:1] (snort_decoder): T/TCP Detected [**]
11/30-00:11:02.962535 206.252.192.195:0 -> 192.168.100.28:0
TCP TTL:51 TOS:0x0 ID:43093 IpLen:20 DgmLen:68 DF
******S* Seq: 0xC6A6B7F  Ack: 0x0  Win: 0x4000  TcpLen: 48
TCP Options (9) => MSS: 1460 NOP WS: 0 NOP NOP TS: 481229253 0 
TCP Options => NOP NOP CCNEW: 136044084 

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:11:12.801868 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16486 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:11:22.801189 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25926 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:12:13.807728 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16487 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:12:23.807050 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25927 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:13:14.813589 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16488 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:13:24.812910 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25928 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:14:15.819449 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16489 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:14:25.818771 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25929 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:15:16.815310 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16490 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:15:26.814632 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25930 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:16:17.821171 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16491 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:16:27.820493 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25931 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:17:18.837031 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16492 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:17:28.836353 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25932 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:18:19.832893 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16493 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:18:29.832214 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25933 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:19:20.838768 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16494 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:19:30.838092 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25934 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:20:21.844646 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:741 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:20:31.843970 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25935 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:21:22.850524 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:742 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:21:32.849848 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25936 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:22:23.846403 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:743 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:22:33.845727 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25937 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 5 seconds [**]
11/30-00:22:47.834782 192.168.100.28:32789 -> 206.98.114.20:53
UDP TTL:255 TOS:0x0 ID:15659 IpLen:20 DgmLen:72 DF
Len: 44

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:23:24.852280 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:744 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:23:34.851605 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25938 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:24:25.858158 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:745 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:24:35.857482 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25939 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:25:26.854036 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:746 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:25:36.853360 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25940 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:26:27.859913 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:747 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:26:37.859237 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25941 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:27:28.865790 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:748 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:27:38.865114 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25942 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:28:29.871667 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:749 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:28:39.870991 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25943 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:29:30.867544 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:750 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:29:40.866869 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25944 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:30:31.873421 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:751 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:30:41.872745 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25945 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:31:32.879297 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:752 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:31:42.878621 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25946 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:32:33.875174 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:753 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:32:43.874498 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25947 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:33:34.881050 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:754 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:33:44.880374 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25948 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:34:35.886926 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:755 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:34:45.886250 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25949 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:35:36.892801 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:756 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:35:46.892123 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25950 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:36:37.888667 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:757 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:36:47.887989 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25951 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:37:38.894532 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:758 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:37:48.893854 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25952 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:38:39.900397 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:759 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:38:49.899719 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25953 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:39:40.896263 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:760 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:39:50.895585 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25954 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:40:41.902128 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:761 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:40:51.901450 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51093 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:41:42.907993 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:762 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:41:52.907315 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51094 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:42:43.913858 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:763 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:42:53.913181 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51095 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:43:44.909724 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:764 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:43:54.909046 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51096 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:44:45.915589 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:765 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:44:55.914911 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51097 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:45:46.911455 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:766 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:45:56.910777 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51098 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:46:47.907321 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:767 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:46:57.916642 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51099 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:47:48.923185 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:768 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:47:58.922507 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51100 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:48:49.929050 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:769 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:48:59.928372 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51101 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:49:50.934915 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:770 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:50:00.934238 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51102 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:50:51.930781 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:771 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:51:01.930103 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51103 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:51:52.936646 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:772 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:52:02.935968 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51104 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:52:53.942508 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:773 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:53:03.941828 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51105 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:53:54.938362 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:774 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:54:04.937682 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51106 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:54:55.944215 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:775 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:55:05.943535 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51107 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:55:56.950068 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:776 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:56:06.949388 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51108 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:56:57.955921 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:777 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:57:07.955242 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51109 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:57:58.951776 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:778 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:58:08.951096 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51110 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:58:59.957629 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:779 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:59:09.956950 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51111 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:00:00.963483 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20445 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:00:10.962804 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51112 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:01:01.959338 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20446 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:01:11.968658 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51113 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:02:02.965192 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20447 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:02:12.964513 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51114 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:03:03.971046 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20448 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:03:13.970367 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51115 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:04:04.976901 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20449 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:04:14.976221 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51116 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:05:05.972756 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20450 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:05:15.972077 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51117 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:06:06.978611 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20451 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:06:16.977932 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51118 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:07:07.984466 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20452 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:07:17.983787 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51119 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:08:08.980322 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20453 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:08:18.989642 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51120 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:09:09.986177 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20454 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:09:19.985498 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51121 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:10:10.992036 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20455 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:10:20.991358 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51122 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:11:11.997898 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20456 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:11:21.997220 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51123 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:12:12.993762 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20457 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:12:22.993083 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51124 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:13:13.999624 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20458 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:13:23.998946 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51125 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:14:15.005487 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20459 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:14:25.004809 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51126 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:15:16.001350 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20460 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:15:26.010672 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51127 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 18 seconds [**]
11/30-01:15:26.730623 192.168.100.28:32789 -> 209.10.34.55:53
UDP TTL:255 TOS:0x0 ID:28661 IpLen:20 DgmLen:61 DF
Len: 33

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.070600 64.14.117.10 -> 192.168.100.28
ICMP TTL:53 TOS:0x0 ID:58830 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:46983  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.070600 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:45107 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:46759  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.090598 216.74.133.194 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:38121 IpLen:20 DgmLen:84
Type:8  Code:0  ID:64317   Seq:52596  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.090598 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:18170 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:33365  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.090598 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:19251 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:51450  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.100598 216.73.82.10 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:47239 IpLen:20 DgmLen:84
Type:8  Code:0  ID:10245   Seq:49995  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.100598 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:53244 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:9362  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.120596 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:13914 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:32264  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.120596 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:9929 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:4105  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.140595 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:9197 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:47603  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.150594 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:24138 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:4305  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.200591 211.14.0.99 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:59157 IpLen:20 DgmLen:84
Type:8  Code:0  ID:51816   Seq:49180  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.220590 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:32709 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:17291  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.280586 203.89.210.82 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:18080 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48197   Seq:35646  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:16:17.007213 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20461 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:16:27.006535 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51128 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:17:18.013076 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20462 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:17:28.012398 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51129 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:18:19.018939 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20463 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:18:29.018261 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51130 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:19:20.014802 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20464 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:19:30.014124 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51131 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:20:21.020665 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20465 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:20:31.019987 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5261 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:21:22.026528 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20466 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:21:32.025850 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5262 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:22:23.022392 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20467 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:22:33.031713 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5263 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:23:24.028255 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20468 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:23:34.027577 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5264 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:24:25.034118 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20469 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:24:35.033439 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5265 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:25:26.039981 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20470 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:25:36.039302 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5266 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:26:27.035844 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20471 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:26:37.035166 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5267 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:27:28.041709 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20472 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:27:38.041031 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5268 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:28:29.047574 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20473 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:28:39.046896 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5269 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 573 seconds [**]
11/30-01:28:40.006831 192.168.100.28:32789 -> 12.47.217.11:53
UDP TTL:255 TOS:0x0 ID:35469 IpLen:20 DgmLen:76 DF
Len: 48

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:29:30.043439 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20474 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:29:40.052761 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5270 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:30:31.049304 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20475 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:30:41.048626 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5271 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:31:32.055169 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20476 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:31:42.054491 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5272 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:32:33.061034 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20477 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:32:43.060356 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5273 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:33:34.056900 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20478 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:33:44.056222 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5274 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:34:35.062765 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20479 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:34:45.062087 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5275 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:35:36.058630 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20480 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:35:46.057952 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5276 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:36:37.054496 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20481 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:36:47.063817 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5277 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:37:38.070360 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20482 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:37:48.069682 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5278 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:38:39.076225 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20483 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:38:49.075547 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5279 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:39:40.082090 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20484 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:39:50.081412 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5280 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:40:41.077955 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35603 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:40:51.067278 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5281 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:41:42.083820 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35604 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:41:52.083142 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5282 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:42:43.089685 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35605 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:42:53.089007 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5283 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:43:44.085551 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35606 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:43:54.094871 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5284 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:44:45.091390 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35607 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:44:55.090707 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5285 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:45:46.097226 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35608 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:45:56.096544 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5286 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:46:03.166061 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:64827 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:33692  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:46:04.056000 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:1694 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:51990  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:46:04.105997 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:21269 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:62418  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:46:04.105997 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:488 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:9392  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:46:04.105997 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:39514 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:28976  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:46:04.105997 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:2572 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:43440  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:46:04.115996 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:48340 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:64524  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:46:04.175992 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:57626 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:46851  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:46:04.185991 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:24950 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:32123  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:46:47.103063 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35609 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:46:57.102380 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5287 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:47:48.098900 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35610 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:47:58.098218 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5288 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:48:49.104738 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35611 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:48:59.104055 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5289 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:49:50.110576 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35612 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:50:00.109893 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5290 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:50:51.106414 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35613 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:51:01.115732 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5291 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:51:52.112253 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35614 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:52:02.111571 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5292 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:52:53.118092 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35615 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:53:03.117410 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5293 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:53:54.123931 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35616 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:54:04.123249 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5294 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:54:55.119772 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35617 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:55:05.129089 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5295 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:55:56.115612 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35618 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:56:06.124930 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5296 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:56:57.131452 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35619 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:57:07.130770 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5297 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:57:58.127294 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35620 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:58:08.136611 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5298 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:58:59.133135 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35621 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:59:09.132453 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5299 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 90 seconds [**]
11/30-01:59:43.420116 192.168.100.28:32789 -> 168.95.192.14:53
UDP TTL:255 TOS:0x0 ID:63781 IpLen:20 DgmLen:73 DF
Len: 45

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:00:00.128977 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35622 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:00:10.128295 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24955 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:01:01.134820 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35623 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:01:11.134141 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24956 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:02:02.140680 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35624 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:02:12.140002 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24957 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 69 seconds [**]
11/30-02:02:43.447877 192.168.100.28:32789 -> 128.63.2.53:53
UDP TTL:255 TOS:0x0 ID:39308 IpLen:20 DgmLen:73 DF
Len: 45

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:03:03.146541 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35625 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:03:13.145862 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24958 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:04:04.152401 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35626 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:04:14.151723 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24959 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:05:05.158262 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35627 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:05:15.147584 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24960 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:06:06.144124 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35628 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:06:16.143446 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24961 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:07:07.149985 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35629 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 270 seconds [**]
11/30-02:07:13.489555 192.168.100.28:32789 -> 200.33.146.213:53
UDP TTL:255 TOS:0x0 ID:55079 IpLen:20 DgmLen:72 DF
Len: 44

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:07:17.149306 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24962 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:08:08.165845 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35630 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:08:18.165166 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24963 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:09:09.161706 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35631 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:09:19.161028 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24964 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:10:10.167567 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35632 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:10:20.166889 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24965 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:11:11.173428 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35633 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:11:21.172750 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24966 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:12:12.169290 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35634 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:12:22.178611 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24967 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:13:13.175151 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35635 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:13:23.174472 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24968 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:14:14.181012 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35636 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:14:24.180333 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24969 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:15:15.176873 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35637 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:15:25.176195 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24970 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-02:16:04.063557 216.73.82.10 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:53445 IpLen:20 DgmLen:84
Type:8  Code:0  ID:10245   Seq:19758  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-02:16:04.063557 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:27343 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:47013  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-02:16:04.143551 65.203.232.2 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:15143 IpLen:20 DgmLen:84
Type:8  Code:0  ID:18029   Seq:49312  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-02:16:04.163550 208.254.75.130 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:13491 IpLen:20 DgmLen:84
Type:8  Code:0  ID:59759   Seq:28790  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-02:16:04.163550 63.123.77.194 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:44852 IpLen:20 DgmLen:84
Type:8  Code:0  ID:11632   Seq:62483  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-02:16:04.423532 203.197.173.129 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:43864 IpLen:20 DgmLen:84
Type:8  Code:0  ID:51201   Seq:61544  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:16:16.172735 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35638 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:16:26.172057 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24971 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:17:17.188596 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35639 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:17:27.187917 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24972 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:18:18.194459 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35640 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:18:28.193782 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24973 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:19:19.190329 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35641 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:19:29.199651 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24974 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:20:20.196197 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55317 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:20:30.195520 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24975 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:21:21.202066 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55318 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:21:31.201389 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24976 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:22:22.207935 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55319 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:22:32.207258 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24977 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:23:23.203804 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55320 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:23:33.203127 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24978 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:24:24.209673 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55321 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:24:34.208996 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24979 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:25:25.205542 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55322 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:25:35.214864 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24980 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:26:26.201411 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55323 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:26:36.210733 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24981 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:27:27.207280 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55324 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:27:37.216602 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24982 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:28:28.223147 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55325 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:28:38.222470 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24983 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:29:29.229015 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55326 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:29:39.228338 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24984 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:30:30.224884 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55327 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:30:40.224207 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24985 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 12 seconds [**]
11/30-02:30:48.093674 192.168.100.28:32789 -> 64.215.170.28:53
UDP TTL:255 TOS:0x0 ID:27817 IpLen:20 DgmLen:61 DF
Len: 33

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:31:31.230752 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55328 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:31:41.230075 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24986 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:32:32.236621 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55329 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:32:42.235943 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24987 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:33:33.232489 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55330 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:33:43.241811 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24988 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:34:34.238357 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55331 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:34:44.237680 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24989 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:35:35.244221 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55332 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:35:45.243542 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24990 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:36:36.250080 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55333 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:36:46.249401 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24991 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:37:37.245939 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55334 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:37:47.245261 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24992 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:38:38.251799 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55335 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:38:48.251120 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24993 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:39:39.257658 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55336 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:39:49.256979 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24994 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:40:40.263517 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55337 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:40:50.262839 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40133 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:41:41.259377 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55338 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:41:51.258699 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40134 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:42:42.265237 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55339 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:42:52.264558 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40135 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:43:43.271096 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55340 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:43:53.270418 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40136 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:44:44.266957 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55341 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:44:54.266278 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40137 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:45:45.272816 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55342 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:45:55.272138 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40138 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:46:46.268677 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55343 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:46:56.267998 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40139 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:47:47.284536 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55344 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:47:57.283857 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40140 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:48:48.280396 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55345 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:48:58.279718 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40141 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:49:49.286256 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55346 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:49:59.285578 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40142 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:50:50.292116 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55347 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:51:00.291438 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40143 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:51:51.287977 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55348 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:52:01.287298 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40144 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:52:52.293843 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55349 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:53:02.283166 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40145 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:53:53.299711 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55350 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:54:03.299034 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40146 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:54:54.305580 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55351 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:55:04.304902 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40147 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:55:55.291449 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55352 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:56:05.300771 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40148 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:56:56.307317 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55353 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:57:06.306640 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40149 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:57:57.313185 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55354 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:58:07.312508 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40150 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:58:58.309054 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55355 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:59:08.318376 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40151 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:59:59.314922 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9485 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:00:09.314245 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40152 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:01:00.320790 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9486 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:01:10.320113 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40153 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:02:01.326658 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9487 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:02:11.325981 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40154 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:03:02.322527 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9488 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:03:12.321849 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40155 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:04:03.328395 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9489 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:04:13.327717 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40156 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:05:04.334262 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9490 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:05:14.333585 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40157 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:06:05.330131 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9491 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:06:15.339453 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40158 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:07:06.335998 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9492 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:07:16.335321 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40159 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:08:07.341866 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9493 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:08:17.341189 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40160 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:09:08.347734 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9494 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:09:18.347056 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40161 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:10:09.343600 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9495 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:10:19.342922 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40162 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:11:10.339465 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9496 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:11:20.338788 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40163 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:12:11.355330 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9497 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:12:21.354652 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40164 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:13:12.351195 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9498 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:13:22.360517 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40165 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:14:13.357060 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9499 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:14:23.356383 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40166 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:15:14.352926 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9500 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:15:24.352248 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40167 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-03:16:05.079488 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:41096 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:57346  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-03:16:05.139484 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:3033 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:49496  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-03:16:05.139484 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:725 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:53400  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-03:16:05.139484 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:14201 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:51539  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-03:16:05.149483 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:62082 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:26197  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-03:16:05.149483 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:24376 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:5147  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-03:16:05.149483 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:9588 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:22425  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-03:16:05.159482 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:37957 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:36444  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-03:16:05.249476 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:37032 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:40501  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:16:15.368790 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9501 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:16:25.368112 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40168 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:17:16.364656 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9502 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:17:26.363978 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40169 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:18:17.370521 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9503 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:18:27.369843 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40170 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:19:18.376386 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9504 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:19:28.375708 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40171 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:20:19.372251 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9505 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:20:29.381573 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59837 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:21:20.378116 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9506 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:21:30.377438 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59838 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:22:21.383981 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9507 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:22:31.383303 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59839 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:23:22.389846 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9508 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:23:32.389168 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59840 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:24:23.385711 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9509 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:24:33.385034 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59841 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:25:24.381577 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9510 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:25:34.380899 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59842 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:26:25.387441 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9511 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:26:35.396762 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59843 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:27:26.393302 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9512 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:27:36.402623 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59844 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:28:27.399163 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9513 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:28:37.398485 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59845 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:29:28.405025 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9514 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:29:38.404346 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59846 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:30:29.410886 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9515 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:30:39.410207 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59847 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:31:30.406747 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9516 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:31:40.406069 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59848 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:32:31.412609 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9517 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:32:41.411930 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59849 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:33:32.418470 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9518 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:33:42.417792 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59850 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:34:33.414332 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9519 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:34:43.423653 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59851 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:35:34.410194 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9520 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:35:44.409515 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59852 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:36:35.426055 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9521 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:36:45.425376 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59853 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:37:36.431916 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9522 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:37:46.431238 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59854 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:38:37.417779 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9523 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:38:47.417100 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59855 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:39:38.433640 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9524 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:39:48.432961 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59856 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:40:39.439501 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24653 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:40:49.438823 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59857 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:41:40.435363 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24654 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:41:50.444684 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59858 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:42:41.441225 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24655 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:42:51.440547 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59859 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:43:42.447083 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24656 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:43:52.446403 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59860 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:44:43.452933 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24657 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:44:53.452253 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59861 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:45:44.438785 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24658 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:45:54.438105 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59862 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:46:45.454634 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24659 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:46:55.453954 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59863 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:47:46.460485 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24660 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:47:56.459805 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59864 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:48:47.456336 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24661 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:48:57.465656 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59865 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:49:48.462187 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24662 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:49:58.461507 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59866 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:50:49.468039 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24663 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:50:59.467359 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59867 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:51:50.473890 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24664 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:52:00.473210 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59868 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:52:51.469742 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24665 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:53:01.469062 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59869 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:53:52.475594 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24666 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 103 seconds [**]
11/30-03:53:53.935494 192.168.100.28:32789 -> 192.168.100.196:53
UDP TTL:255 TOS:0x0 ID:32681 IpLen:20 DgmLen:64 DF
Len: 36

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:54:02.474914 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59870 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:54:53.481446 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24667 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:55:03.480766 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59871 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:55:54.467299 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24668 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:56:04.476618 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59872 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:56:55.483151 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24669 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:57:05.482471 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59873 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:57:56.489003 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24670 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:58:06.488323 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59874 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:58:57.494856 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24671 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:59:07.494176 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59875 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:59:58.490709 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24672 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:00:08.490029 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14005 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:00:59.486566 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24673 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:01:09.485888 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14006 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:02:00.502427 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24674 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:02:10.501748 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14007 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:03:01.498288 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24675 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:03:11.507609 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14008 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:04:02.504149 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24676 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:04:12.503471 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14009 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:05:03.510010 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24677 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:05:13.499333 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14010 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:06:04.505872 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24678 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:06:14.505194 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14011 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:07:05.511733 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24679 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:07:15.511055 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14012 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:08:06.517595 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24680 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:08:16.516916 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14013 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:09:07.523456 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24681 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:09:17.522778 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14014 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:10:08.519318 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24682 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:10:18.528639 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14015 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:11:09.525179 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24683 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:11:19.524501 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14016 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:12:10.531041 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24684 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:12:20.530362 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14017 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:13:11.536902 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24685 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:13:21.536224 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14018 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:14:12.532764 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24686 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:14:22.532086 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14019 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:15:13.538625 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24687 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:15:23.537947 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14020 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.035200 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:47979 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:35171  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.065198 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:9441 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:59133  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.085196 216.73.82.10 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:50822 IpLen:20 DgmLen:84
Type:8  Code:0  ID:10245   Seq:38350  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.085196 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:16171 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:10137  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.105195 65.214.50.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:44811 IpLen:20 DgmLen:84
Type:8  Code:0  ID:32624   Seq:34585  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.115194 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:12274 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:50140  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.115194 63.123.77.194 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:7571 IpLen:20 DgmLen:84
Type:8  Code:0  ID:11632   Seq:56420  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.115194 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:57541 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:17449  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.115194 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:42590 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:65416  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.125194 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:45133 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:31781  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.135193 206.65.191.194 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:64625 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56347   Seq:23470  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.145192 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:8741 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:17587  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.145192 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:31847 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:1276  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.205188 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:3939 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:39006  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.295182 202.130.158.130 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:6432 IpLen:20 DgmLen:84
Type:8  Code:0  ID:19058   Seq:60464  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:16:14.534488 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24688 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:16:24.533809 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14021 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:17:15.550348 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24689 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:17:25.549670 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14022 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:18:16.546211 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24690 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:18:26.545532 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14023 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:19:17.552072 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24691 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:19:27.551393 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14024 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:20:18.557933 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44357 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:20:28.557255 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14025 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:21:19.543796 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44358 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:21:29.543118 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14026 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:22:20.559657 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44359 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:22:30.558978 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14027 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:23:21.565518 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44360 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:23:31.564840 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14028 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:24:22.561380 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44361 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:24:32.570701 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14029 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:25:23.567242 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44362 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:25:33.566563 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14030 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:26:24.573103 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44363 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:26:34.572425 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14031 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:27:25.578965 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44364 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:27:35.578286 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14032 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:28:26.574827 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44365 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:28:36.574149 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14033 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:29:27.580689 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44366 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:29:37.580010 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14034 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:30:28.586550 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44367 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:30:38.585872 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14035 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:31:29.582413 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44368 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:31:39.591734 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14036 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:32:30.588275 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44369 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:32:40.587596 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14037 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:33:31.594136 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44370 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:33:41.593458 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14038 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:34:32.599998 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44371 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:34:42.599320 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14039 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:35:33.595858 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44372 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:35:43.595179 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14040 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:36:34.601716 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44373 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:36:44.601038 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14041 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:37:35.607575 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44374 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:37:45.606896 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14042 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:38:36.613434 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44375 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:38:46.612755 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14043 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:39:37.609294 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44376 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:39:47.608615 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14044 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:40:38.615153 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44377 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:40:48.614474 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29173 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:41:39.621012 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44378 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:41:49.620333 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29174 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:42:40.616872 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44379 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:42:50.626192 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29175 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:43:41.622731 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44380 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:43:51.622052 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29176 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:44:42.628590 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44381 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:44:52.627911 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29177 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:45:43.634449 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44382 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:45:53.633771 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29178 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:46:04.673022 211.13.227.66 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:42614 IpLen:20 DgmLen:84
Type:8  Code:0  ID:7227   Seq:35297  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:46:05.082994 64.124.186.66 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:6335 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63787   Seq:39736  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:46:05.092993 63.219.179.130 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:33063 IpLen:20 DgmLen:84
Type:8  Code:0  ID:16391   Seq:31999  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:46:05.162988 208.184.139.82 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:45149 IpLen:20 DgmLen:84
Type:8  Code:0  ID:2932   Seq:17763  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:46:44.630310 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44383 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:46:54.629631 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29179 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:47:45.636169 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44384 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:47:55.635490 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29180 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:48:46.642029 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44385 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:48:56.641350 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29181 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:49:47.637889 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44386 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:49:57.637210 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29182 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:50:48.643749 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44387 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:50:58.643070 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29183 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:51:49.649608 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44388 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:51:59.648929 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29184 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:52:50.655465 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44389 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:53:00.654786 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29185 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:53:51.651323 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44390 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:54:01.650644 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29186 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:54:52.657181 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44391 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:55:02.656502 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29187 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:55:53.653039 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44392 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:56:03.652360 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29188 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:56:54.648897 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44393 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:57:04.658218 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29189 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:57:55.664755 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44394 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:58:05.664076 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29190 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:58:56.670612 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44395 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:59:06.669933 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29191 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:59:57.676470 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64061 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:00:07.675791 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29192 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:00:58.672329 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64062 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:01:08.671650 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29193 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:01:59.678187 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64063 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:02:09.677508 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29194 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:03:00.684045 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64064 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:03:10.683366 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29195 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:04:01.679904 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64065 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:04:11.689225 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29196 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:05:02.685763 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64066 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:05:12.685084 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29197 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:06:03.681622 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64067 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:06:13.680943 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29198 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:07:04.687480 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64068 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:07:14.696801 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29199 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:08:05.693339 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64069 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:08:15.692660 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29200 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:09:06.699197 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64070 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:09:16.698519 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29201 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:10:07.705056 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64071 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:10:17.704377 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29202 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:11:08.700916 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64072 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:11:18.710236 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29203 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:12:09.706774 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64073 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:12:19.706096 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29204 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:13:10.712633 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64074 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:13:20.711954 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29205 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:14:11.718492 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64075 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:14:21.717813 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29206 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:15:12.714352 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64076 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:15:22.703674 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29207 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:16:13.710212 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64077 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:16:23.709533 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29208 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:17:14.726070 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64078 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:17:24.725391 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29209 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:18:15.721930 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64079 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:18:25.731251 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29210 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:19:16.727789 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64080 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:19:26.727111 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29211 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:20:17.733649 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64081 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:20:27.732970 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48877 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:21:18.739508 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64082 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:21:28.738829 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48878 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:22:19.735368 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64083 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:22:29.734690 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48879 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:23:20.741228 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64084 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:23:30.740549 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48880 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:24:21.747087 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64085 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:24:31.746409 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48881 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:25:22.732948 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64086 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:25:32.742269 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48882 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:26:23.738806 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64087 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:26:33.738126 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48883 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:27:24.744661 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64088 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:27:34.743981 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48884 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:28:25.760515 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64089 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:28:35.759836 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48885 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:29:26.756372 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64090 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 267 seconds [**]
11/30-05:29:27.176343 192.168.100.28:32789 -> 63.150.183.46:53
UDP TTL:255 TOS:0x0 ID:63999 IpLen:20 DgmLen:81 DF
Len: 53

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:29:36.755692 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48886 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:30:27.762227 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64091 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:30:37.761548 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48887 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:31:28.768083 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64092 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:31:38.767404 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48888 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:32:29.763939 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64093 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:32:39.773259 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48889 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:33:30.769795 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64094 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:33:40.769116 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48890 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:34:31.775651 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64095 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:34:41.774972 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48891 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:35:32.771508 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64096 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:35:42.770829 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48892 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:36:33.767365 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64097 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:36:43.776685 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48893 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:37:34.783221 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64098 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:37:44.782541 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48894 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:38:35.789077 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64099 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:38:45.788398 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48895 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:39:36.784934 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64100 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:39:46.794254 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48896 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:40:37.790791 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13693 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:40:47.790112 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48897 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:41:38.796648 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13694 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:41:48.795969 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48898 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 33 seconds [**]
11/30-05:41:50.865828 192.168.100.28:32789 -> 192.31.80.30:53
UDP TTL:255 TOS:0x0 ID:21227 IpLen:20 DgmLen:77 DF
Len: 49

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:42:39.802505 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13695 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:42:49.801825 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48899 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:43:40.798360 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13696 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:43:50.797680 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48900 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:44:41.804213 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13697 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:44:51.803534 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48901 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:45:42.800068 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13698 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:45:52.799388 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48902 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:04.318605 216.73.82.10 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:53395 IpLen:20 DgmLen:84
Type:8  Code:0  ID:10245   Seq:21786  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:04.568588 165.193.217.2 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:56172 IpLen:20 DgmLen:84
Type:8  Code:0  ID:9270   Seq:6010  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.028557 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:9404 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:64265  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.058555 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:8532 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:33516  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.078554 64.28.86.226 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:43581 IpLen:20 DgmLen:84
Type:8  Code:0  ID:22903   Seq:47797  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.088553 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:62615 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:16792  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.088553 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:27576 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:39425  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.088553 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:5318 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:20003  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.088553 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:7836 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:61693  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.108551 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:36652 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:58475  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.138549 64.37.246.2 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:20626 IpLen:20 DgmLen:84
Type:8  Code:0  ID:23846   Seq:16204  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.158548 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:54498 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:9214  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.168547 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:24702 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:56975  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.198545 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:32611 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:31428  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:46:43.805922 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13699 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:46:53.815241 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48903 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:47:44.811776 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13700 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:47:54.811096 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48904 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 362 seconds [**]
11/30-05:48:25.549007 192.168.100.28:32789 -> 168.144.1.177:53
UDP TTL:255 TOS:0x0 ID:22671 IpLen:20 DgmLen:65 DF
Len: 37

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:48:45.817630 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13701 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:48:55.816950 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48905 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:49:46.823484 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13702 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:49:56.822805 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48906 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:50:47.809340 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13703 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:50:57.808660 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48907 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:51:48.825194 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13704 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:51:58.824514 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48908 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:52:49.831049 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13705 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:52:59.820370 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48909 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:53:50.826904 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13706 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:54:00.836224 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48910 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:54:51.832759 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13707 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:55:01.832080 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48911 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:55:52.828615 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13708 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:56:02.827935 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48912 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:56:53.844469 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13709 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:57:03.843790 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48913 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:57:54.840325 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13710 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:58:04.839646 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48914 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:58:55.846181 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13711 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:59:05.845501 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48915 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:59:56.852036 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13712 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:00:06.851357 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3045 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:00:57.847895 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13713 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:01:07.857215 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3046 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:01:58.853752 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13714 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:02:08.853073 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3047 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:02:59.859610 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13715 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:03:09.858931 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3048 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:04:00.865468 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13716 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:04:10.864789 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3049 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:05:01.861327 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13717 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:05:11.860648 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3050 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:06:02.857186 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13718 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:06:12.856507 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3051 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:07:03.863044 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13719 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:07:13.862365 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3052 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:08:04.868902 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13720 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:08:14.878223 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3053 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:09:05.874760 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13721 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:09:15.874082 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3054 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:10:06.880619 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13722 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:10:16.879940 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3055 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:11:07.886477 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13723 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:11:17.885799 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3056 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:12:08.882337 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13724 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:12:18.881658 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3057 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:13:09.888195 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13725 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:13:19.887516 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3058 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:14:10.894054 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13726 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:14:20.893375 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3059 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:15:11.889913 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13727 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:15:21.889234 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3060 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:16:04.526340 63.123.77.194 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:7726 IpLen:20 DgmLen:84
Type:8  Code:0  ID:11632   Seq:622  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:16:04.876316 203.197.173.129 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:64179 IpLen:20 DgmLen:84
Type:8  Code:0  ID:51201   Seq:50544  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:16:04.996308 208.254.75.130 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:11204 IpLen:20 DgmLen:84
Type:8  Code:0  ID:59759   Seq:51289  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:16:05.066304 65.203.232.2 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:51776 IpLen:20 DgmLen:84
Type:8  Code:0  ID:18029   Seq:20927  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:16:12.885773 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13728 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 90 seconds [**]
11/30-06:16:15.115621 192.168.100.28:32789 -> 193.0.0.193:53
UDP TTL:255 TOS:0x0 ID:53761 IpLen:20 DgmLen:59 DF
Len: 31

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:16:22.885094 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3061 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:17:13.901631 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13729 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:17:23.900952 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3062 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:18:14.907489 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13730 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:18:24.906810 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3063 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 90 seconds [**]
11/30-06:19:15.153398 192.168.100.28:32789 -> 211.216.50.160:53
UDP TTL:255 TOS:0x0 ID:37173 IpLen:20 DgmLen:72 DF
Len: 44

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:19:15.903347 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13731 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:19:25.902668 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3064 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:20:16.909205 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33397 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:20:26.908526 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3065 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:21:17.915063 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33398 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:21:27.914384 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3066 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:22:18.910922 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33399 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:22:28.920242 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3067 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:23:19.916780 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33400 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:23:29.916101 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3068 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:24:20.922638 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33401 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:24:30.921959 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3069 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:25:21.918497 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33402 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:25:31.917819 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3070 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:26:22.914356 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33403 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:26:32.913678 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3071 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:27:23.930214 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33404 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:27:33.929535 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3072 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:28:24.936073 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33405 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:28:34.935394 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3073 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:29:25.941931 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33406 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:29:35.941253 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3074 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:30:26.937791 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33407 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:30:36.937112 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3075 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:31:27.943649 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33408 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:31:37.942971 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3076 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 73 seconds [**]
11/30-06:32:28.949508 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33409 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:32:28.949508 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33409 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:32:38.948829 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3077 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:33:29.945368 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33410 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:33:39.944689 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3078 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:34:30.951226 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33411 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:34:40.950547 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3079 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:35:31.947085 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33412 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:35:41.946406 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3080 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:36:32.962942 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33413 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:36:42.962263 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3081 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:37:33.958800 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33414 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:37:43.958122 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3082 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:38:34.964658 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33415 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:38:44.963979 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3083 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:39:35.970516 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33416 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:39:45.969838 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3084 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:40:36.966375 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33417 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:40:46.965696 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18213 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:41:37.972233 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33418 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:41:47.971555 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18214 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:42:38.978092 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33419 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:42:48.977413 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18215 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:43:39.983950 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33420 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 25 seconds [**]
11/30-06:43:40.433920 192.168.100.28:32789 -> 12.129.72.181:53
UDP TTL:255 TOS:0x0 ID:60591 IpLen:20 DgmLen:64 DF
Len: 36

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:43:49.983271 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18216 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:44:40.979809 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33421 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:44:50.979130 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18217 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:45:41.975668 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33422 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:45:51.974990 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18218 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:07.353945 216.73.82.10 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:1522 IpLen:20 DgmLen:84
Type:8  Code:0  ID:10245   Seq:39195  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:07.603929 203.89.210.82 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:45256 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48197   Seq:35161  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.023900 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:15116 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:14768  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.063897 216.74.133.194 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:5203 IpLen:20 DgmLen:84
Type:8  Code:0  ID:64317   Seq:44910  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.063897 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:49198 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:63610  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.063897 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:64382 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:23630  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.073897 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:27315 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:42960  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.083896 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:43455 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:376  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.143892 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:59139 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:24101  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.143892 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:60919 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:23542  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.153891 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:30234 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:19126  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.153891 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:23390 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:27730  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.173890 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:30931 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:26378  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.203888 211.14.0.99 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:46356 IpLen:20 DgmLen:84
Type:8  Code:0  ID:51816   Seq:2762  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:46:42.981527 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33423 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:46:52.980848 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18219 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:47:43.987385 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33424 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:47:53.986707 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18220 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:48:44.993244 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33425 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:48:54.992565 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18221 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:49:45.999103 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33426 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:49:55.998424 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18222 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:50:47.004962 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33427 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:50:57.004283 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18223 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:51:48.000821 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33428 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:51:58.000142 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18224 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:52:49.006679 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33429 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:52:59.006001 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18225 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:53:50.012538 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33430 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:54:00.011859 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18226 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:54:51.008397 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33431 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:55:01.017718 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18227 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:55:52.004256 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33432 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:56:02.003578 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18228 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:56:53.020114 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33433 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:57:03.019436 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18229 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:57:54.025973 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33434 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:58:04.025294 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18230 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:58:55.021833 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33435 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:59:05.021154 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18231 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:59:56.027691 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53101 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:00:06.027013 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18232 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:00:57.033550 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53102 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:01:07.032872 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18233 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:01:58.029410 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53103 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:02:08.038731 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18234 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:02:59.035269 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53104 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:03:09.034590 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18235 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:04:00.041128 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53105 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:04:10.040449 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18236 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:04:26.059362 64.37.246.2 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:521 IpLen:20 DgmLen:84
Type:8  Code:0  ID:23846   Seq:33419  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:04:26.089360 64.28.86.226 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:35668 IpLen:20 DgmLen:84
Type:8  Code:0  ID:22903   Seq:17451  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:04:26.179354 209.68.217.194 -> 192.168.100.28
ICMP TTL:44 TOS:0x0 ID:23572 IpLen:20 DgmLen:84
Type:8  Code:0  ID:55811   Seq:34457  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:04:26.299346 165.193.217.2 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:2468 IpLen:20 DgmLen:84
Type:8  Code:0  ID:9270   Seq:37951  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:05:01.046987 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53106 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:05:11.046309 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18237 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:06:02.032848 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53107 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:06:12.032169 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18238 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:07:03.038707 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53108 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:07:13.048028 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18239 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:08:04.054566 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53109 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:08:14.053887 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18240 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:09:05.050426 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53110 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:09:15.059746 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18241 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:10:06.056285 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53111 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:10:16.055606 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18242 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:11:07.062145 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53112 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:11:17.061466 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18243 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:12:08.058005 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53113 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:12:18.057326 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18244 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:13:09.063864 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53114 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:13:19.063186 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18245 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:14:10.069724 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53115 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:14:20.069045 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18246 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:15:11.075584 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53116 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:15:21.074905 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18247 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:16:12.061445 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53117 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:16:22.070765 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18248 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:17:13.077304 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53118 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:17:23.076625 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18249 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:18:14.083164 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53119 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:18:24.082485 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18250 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:19:15.089023 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53120 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:19:25.088345 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18251 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:20:16.084884 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53121 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:20:26.084205 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37917 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:21:17.080745 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53122 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:21:27.080066 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37918 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:22:18.096604 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53123 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:22:28.095925 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37919 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:23:19.092465 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53124 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:23:29.101785 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37920 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:24:20.098325 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53125 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:24:30.097646 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37921 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:25:21.104185 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53126 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:25:31.093506 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37922 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:26:22.100031 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53127 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:26:32.099349 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37923 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:27:23.105874 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53128 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:27:33.105193 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37924 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:28:24.111718 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53129 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:28:34.111037 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37925 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:29:25.117563 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53130 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:29:35.116882 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37926 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:30:26.113408 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53131 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:30:36.122726 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37927 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:31:27.109254 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53132 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:31:37.108573 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37928 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:32:28.125098 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53133 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:32:38.124417 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37929 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:33:29.130944 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53134 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:33:39.130263 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37930 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:34:30.126790 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53135 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:34:40.126109 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37931 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.753887 208.254.75.130 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:31366 IpLen:20 DgmLen:84
Type:8  Code:0  ID:59759   Seq:41108  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.833882 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:35170 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:13263  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.843881 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:2937 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:52766  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.843881 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:404 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:1114  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.863880 63.123.77.194 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:24026 IpLen:20 DgmLen:84
Type:8  Code:0  ID:11632   Seq:18059  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.893878 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:34159 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:47439  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.893878 216.73.82.10 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:43716 IpLen:20 DgmLen:84
Type:8  Code:0  ID:10245   Seq:33996  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.893878 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:40126 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:13850  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.903877 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:40277 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:28737  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.913876 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:59114 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:57803  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:13.003870 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:44177 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:28677  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:13.023869 206.65.191.194 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:44948 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56347   Seq:4312  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:13.073866 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:48111 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:19188  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:13.123862 202.130.158.130 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:8903 IpLen:20 DgmLen:84
Type:8  Code:0  ID:19058   Seq:56084  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:13.153860 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:11718 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:2880  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:35:31.122637 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53136 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:35:41.121956 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37932 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:36:32.128483 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53137 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:36:42.127802 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37933 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:37:33.134329 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53138 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:37:43.143648 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37934 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:38:34.140176 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53139 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:38:44.139495 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37935 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:39:35.146023 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53140 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:39:45.145342 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37936 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:40:36.151870 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2733 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:40:46.151189 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37937 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:41:37.137719 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2734 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:41:47.137038 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37938 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:42:38.153566 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2735 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:42:48.152885 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37939 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:43:39.159415 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2736 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:43:49.158735 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37940 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:44:40.155266 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2737 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:44:50.164585 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37941 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:45:41.161116 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2738 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:45:51.160436 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37942 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:46:42.166967 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2739 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:46:52.166287 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37943 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:47:43.172818 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2740 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:47:53.172138 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37944 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:48:44.168670 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2741 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:48:54.167990 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37945 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:49:45.174521 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2742 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:49:55.173841 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37946 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:50:46.180373 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2743 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:50:56.179693 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37947 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 630 seconds [**]
11/30-07:51:45.786323 192.168.100.28:32789 -> 168.95.1.14:53
UDP TTL:255 TOS:0x0 ID:16973 IpLen:20 DgmLen:73 DF
Len: 45

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:51:47.176228 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2744 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:51:57.185548 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37948 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:52:48.182084 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2745 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:52:58.181404 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37949 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:53:49.187939 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2746 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:53:59.187260 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37950 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:54:50.193795 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2747 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:55:00.193116 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37951 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:55:51.189652 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2748 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:56:01.188972 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37952 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:56:52.195508 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2749 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:57:02.194829 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37953 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:57:53.201364 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2750 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:58:03.200685 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37954 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:58:54.197221 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2751 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:59:04.206542 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37955 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:59:55.203077 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2752 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:00:05.202397 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57621 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:00:56.208929 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2753 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:01:06.208250 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57622 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:01:57.214783 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2754 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:02:07.214103 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57623 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:02:58.210637 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2755 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:03:08.209957 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57624 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:03:59.216490 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2756 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:04:09.215811 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57625 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:05:00.222344 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2757 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:05:10.221665 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57626 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:06:01.218199 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2758 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:06:11.217520 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57627 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:07:02.214054 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2759 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:07:12.223374 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57628 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:08:03.219909 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2760 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:08:13.229229 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57629 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:09:04.235771 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2761 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:09:14.235093 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57630 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:10:05.231635 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2762 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:10:15.230957 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57631 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:11:06.237498 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2763 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:11:16.236820 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57632 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:12:07.243361 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2764 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:12:17.242683 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57633 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:13:08.239225 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2765 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:13:18.248547 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57634 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 73 seconds [**]
11/30-08:13:20.958363 192.168.100.28:32789 -> 207.46.138.20:53
UDP TTL:255 TOS:0x0 ID:1363 IpLen:20 DgmLen:58 DF
Len: 30

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:14:09.245089 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2766 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:14:19.244411 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57635 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:15:10.250952 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2767 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:15:20.250274 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57636 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:16:11.246816 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2768 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:16:21.246138 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57637 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:17:12.252680 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2769 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:17:22.252003 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57638 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:18:13.258546 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2770 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:18:23.257868 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57639 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:19:14.264412 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2771 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:19:24.263734 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57640 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:20:15.270277 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22437 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:20:25.269599 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57641 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:21:16.266143 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22438 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:21:26.265466 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57642 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:22:17.272009 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22439 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:22:27.271331 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57643 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:23:18.277874 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22440 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:23:28.277196 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57644 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:24:19.273740 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22441 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:24:29.273063 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57645 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:25:20.279605 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22442 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:25:30.268927 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57646 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:26:21.275464 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22443 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:26:31.274786 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57647 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:27:22.271324 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22444 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:27:32.280644 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57648 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:28:23.287182 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22445 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:28:33.286503 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57649 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:29:24.293041 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22446 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:29:34.292362 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57650 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:30:25.298900 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22447 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:30:35.298221 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57651 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:31:26.294760 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22448 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:31:36.294081 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57652 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:32:27.300619 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22449 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:32:37.299940 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57653 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:33:28.306478 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22450 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:33:38.305799 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57654 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:34:29.302338 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22451 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:34:39.311658 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57655 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.029370 193.214.57.194 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:32309 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48744   Seq:8881  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.029370 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:6359 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:56451  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.049369 216.73.82.10 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:38037 IpLen:20 DgmLen:84
Type:8  Code:0  ID:10245   Seq:41107  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.059368 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:32729 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:55272  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.079366 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:39301 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:60210  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.079366 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:19713 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:32333  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.079366 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:27624 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:25023  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.089366 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:6905 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:38446  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.099365 216.73.84.10 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:29778 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44301   Seq:6991  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.099365 208.225.197.194 -> 192.168.100.28
ICMP TTL:45 TOS:0x0 ID:38990 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:21905  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.099365 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:21743 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:58398  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.159361 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:65339 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:37063  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.159361 216.73.83.10 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:8877 IpLen:20 DgmLen:84
Type:8  Code:0  ID:21815   Seq:30570  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.169360 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:56169 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:28585  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.189359 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:16155 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:62426  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:35:30.298198 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22452 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:35:40.297519 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57656 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:36:31.304057 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22453 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:36:41.313378 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57657 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:37:32.319916 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22454 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:37:42.319237 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57658 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:38:33.315776 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22455 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:38:43.315097 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57659 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:39:34.321635 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22456 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:39:44.320956 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57660 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:40:35.327495 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22457 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:40:45.326816 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7253 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:41:36.323355 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22458 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:41:46.332675 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7254 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:42:37.329215 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22459 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:42:47.328537 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7255 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:43:38.335076 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22460 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:43:48.334398 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7256 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:44:39.340938 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22461 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:44:49.340260 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7257 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:45:40.336800 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22462 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:45:50.336122 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7258 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:46:41.332662 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22463 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:46:51.331984 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7259 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:47:42.348523 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22464 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:47:52.347845 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7260 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:48:43.344385 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22465 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:48:53.353706 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7261 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:49:44.350247 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22466 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:49:54.349569 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7262 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:50:45.356108 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22467 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:50:55.355430 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7263 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:51:46.361970 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22468 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:51:56.361292 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7264 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:52:47.357832 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22469 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:52:57.347155 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7265 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:53:48.363694 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22470 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:53:58.363015 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7266 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:54:49.369555 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22471 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:54:59.368877 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7267 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:55:50.355418 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22472 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:56:00.364739 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7268 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:56:51.361280 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22473 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:57:01.370601 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7269 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:57:52.377141 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22474 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:58:02.376463 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7270 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:58:53.383003 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22475 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:59:03.382324 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7271 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:59:54.378859 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22476 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:00:04.378179 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7272 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:00:55.384710 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37605 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:01:05.384029 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7273 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:01:56.390560 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37606 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:02:06.389880 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7274 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:02:57.386412 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37607 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:03:07.395731 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7275 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:03:58.392263 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37608 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:04:08.391583 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7276 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:04:59.398115 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37609 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:05:09.397435 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7277 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:06:00.393967 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37610 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:06:10.393287 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7278 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:07:01.399819 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37611 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:07:11.399139 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7279 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:08:02.405671 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37612 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:08:12.404991 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7280 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:09:03.411523 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37613 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:09:13.410843 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7281 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:10:04.407375 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37614 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:10:14.416695 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7282 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:11:05.413228 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37615 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:11:15.412548 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7283 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:12:06.419080 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37616 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:12:16.418400 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7284 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:13:07.424933 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37617 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:13:17.424253 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7285 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:14:08.420786 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37618 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:14:18.420106 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7286 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:15:09.426639 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37619 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:15:19.425959 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7287 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:16:10.422493 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37620 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:16:20.421813 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7288 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 360 seconds [**]
11/30-09:16:46.350050 192.168.100.28:32789 -> 193.0.0.193:53
UDP TTL:255 TOS:0x0 ID:5475 IpLen:20 DgmLen:72 DF
Len: 44

[**] [1:402:4] ICMP Destination Unreachable (Port Unreachable) [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:16:46.770022 193.205.245.8 -> 192.168.100.28
ICMP TTL:236 TOS:0x0 ID:61210 IpLen:20 DgmLen:56 DF
Type:3  Code:3  DESTINATION UNREACHABLE: PORT UNREACHABLE
** ORIGINAL DATAGRAM DUMP:
192.168.100.28:32789 -> 193.205.245.8:53
UDP TTL:234 TOS:0x0 ID:5655 IpLen:20 DgmLen:56 DF
Len: 28
** END OF DUMP

[**] [1:402:4] ICMP Destination Unreachable (Port Unreachable) [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:16:50.659758 193.205.245.8 -> 192.168.100.28
ICMP TTL:236 TOS:0x0 ID:62200 IpLen:20 DgmLen:56 DF
Type:3  Code:3  DESTINATION UNREACHABLE: PORT UNREACHABLE
** ORIGINAL DATAGRAM DUMP:
192.168.100.28:32789 -> 193.205.245.8:53
UDP TTL:234 TOS:0x0 ID:5656 IpLen:20 DgmLen:56 DF
Len: 28
** END OF DUMP

[**] [1:402:4] ICMP Destination Unreachable (Port Unreachable) [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:16:58.669213 193.205.245.8 -> 192.168.100.28
ICMP TTL:236 TOS:0x0 ID:64323 IpLen:20 DgmLen:56 DF
Type:3  Code:3  DESTINATION UNREACHABLE: PORT UNREACHABLE
** ORIGINAL DATAGRAM DUMP:
192.168.100.28:32789 -> 193.205.245.8:53
UDP TTL:234 TOS:0x0 ID:5657 IpLen:20 DgmLen:56 DF
Len: 28
** END OF DUMP

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:17:11.428346 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37621 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:17:21.427666 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7289 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:18:12.434199 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37622 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:18:22.433519 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7290 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:19:13.440052 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37623 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:19:23.439373 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7291 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:20:14.445906 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37624 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:20:24.445226 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26957 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:21:15.441760 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37625 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:21:25.441081 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26958 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:22:16.447614 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37626 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:22:26.446935 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26959 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:23:17.453468 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37627 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:23:27.452788 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26960 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:24:18.449323 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37628 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:24:28.458642 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26961 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 333 seconds [**]
11/30-09:25:19.455177 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37629 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:25:19.455177 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37629 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:25:29.454497 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26962 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:26:20.461031 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37630 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:26:30.460352 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26963 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:27:21.466885 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37631 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 5 seconds [**]
11/30-09:27:21.486884 192.168.100.28:32789 -> 200.33.146.217:53
UDP TTL:255 TOS:0x0 ID:50761 IpLen:20 DgmLen:78 DF
Len: 50

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:27:31.466206 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26964 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:28:22.462741 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37632 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:28:32.462061 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26965 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:29:23.468595 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37633 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:29:33.467916 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26966 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 3 seconds [**]
11/30-09:30:19.044819 192.168.100.28:32789 -> 192.12.94.30:53
UDP TTL:255 TOS:0x0 ID:59574 IpLen:20 DgmLen:61 DF
Len: 33

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:30:24.474450 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37634 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:30:34.473770 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26967 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:31:25.480305 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37635 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:31:35.479625 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26968 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 23 seconds [**]
11/30-09:32:09.817292 192.168.100.28:32789 -> 217.12.4.104:53
UDP TTL:255 TOS:0x0 ID:11391 IpLen:20 DgmLen:75 DF
Len: 47

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:32:26.476160 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37636 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:32:36.475481 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26969 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 20 targets 21 ports in 58 seconds [**]
11/30-09:32:44.894909 192.168.100.28:32789 -> 208.211.225.10:53
UDP TTL:255 TOS:0x0 ID:8138 IpLen:20 DgmLen:65 DF
Len: 37

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:33:27.482015 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37637 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 20 seconds [**]
11/30-09:33:36.181426 192.168.100.28:32789 -> 212.113.82.90:53
UDP TTL:255 TOS:0x0 ID:32225 IpLen:20 DgmLen:59 DF
Len: 31

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:33:37.481338 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26970 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:34:28.487884 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37638 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:34:38.487208 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26971 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 6 seconds [**]
11/30-09:34:45.016765 192.168.100.28:32789 -> 209.1.235.120:53
UDP TTL:255 TOS:0x0 ID:35509 IpLen:20 DgmLen:59 DF
Len: 31

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:12.914877 216.73.82.10 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:28022 IpLen:20 DgmLen:84
Type:8  Code:0  ID:10245   Seq:21838  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.104864 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:23564 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:8389  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.124863 209.164.7.66 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:2447 IpLen:20 DgmLen:84
Type:8  Code:0  ID:8709   Seq:46150  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.144861 203.199.107.187 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:46059 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:45990  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.154861 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:51264 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:27100  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.154861 66.236.129.66 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:33069 IpLen:20 DgmLen:84
Type:8  Code:0  ID:39175   Seq:50344  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.164860 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:18627 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:19800  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.164860 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:3859 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:47441  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.174859 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:48989 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:58197  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.174859 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:5281 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:9208  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.174859 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:58941 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:65371  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.174859 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:17016 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:27900  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.194858 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:15704 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:28828  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.274852 202.54.111.72 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:57561 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:54569  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:35:29.473756 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37639 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:35:39.473079 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26972 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 58 seconds [**]
11/30-09:36:10.280993 192.168.100.28:53 -> 148.244.153.91:3018
UDP TTL:255 TOS:0x0 ID:59745 IpLen:20 DgmLen:199 DF
Len: 171

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:36:30.479625 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37640 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:36:40.478948 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26973 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:37:31.485495 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37641 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:37:41.494817 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26974 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 7 ports in 67 seconds [**]
11/30-09:37:46.544476 192.168.100.28:32789 -> 192.168.100.72:53
UDP TTL:255 TOS:0x0 ID:29144 IpLen:20 DgmLen:87 DF
Len: 59

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:38:32.501364 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37642 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:38:42.500687 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26975 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:39:33.497234 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37643 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:39:43.496557 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26976 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:40:34.503103 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57309 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:40:44.502426 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26977 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 7 ports in 108 seconds [**]
11/30-09:40:58.981446 192.168.100.28:32789 -> 63.250.206.138:53
UDP TTL:255 TOS:0x0 ID:11536 IpLen:20 DgmLen:59 DF
Len: 31

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:41:35.508973 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57310 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:41:45.508296 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26978 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:42:36.514842 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57311 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:42:46.514165 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26979 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:43:37.510711 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57312 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 4 seconds [**]
11/30-09:43:39.360586 192.168.100.28:32789 -> 4.2.49.2:53
UDP TTL:255 TOS:0x0 ID:45541 IpLen:20 DgmLen:62 DF
Len: 34

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:43:47.510034 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26980 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:44:38.516580 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57313 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:44:48.515903 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26981 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:45:39.512450 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57314 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:45:49.511773 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26982 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 67 seconds [**]
11/30-09:45:59.921068 192.168.100.28:32789 -> 160.45.10.13:53
UDP TTL:255 TOS:0x0 ID:55029 IpLen:20 DgmLen:63 DF
Len: 35

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:46:40.508319 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57315 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:46:50.507642 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26983 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:47:41.524187 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57316 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:47:51.523510 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26984 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:48:42.530056 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57317 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:48:52.529378 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26985 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:49:43.525925 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57318 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:49:53.535247 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26986 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:50:44.531792 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57319 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:50:54.531115 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26987 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:51:45.537657 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57320 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:51:55.536979 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26988 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:52:46.543521 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57321 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:52:56.542843 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26989 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:53:47.539386 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57322 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:53:57.548708 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26990 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:54:48.545251 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57323 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:54:58.544573 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26991 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:55:49.541116 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57324 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:55:59.540438 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26992 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:56:50.546980 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57325 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:57:00.556301 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26993 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:57:51.552844 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57326 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:58:01.552166 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26994 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:58:52.558708 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57327 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:59:02.558030 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26995 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:59:53.564572 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57328 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:00:03.563894 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46661 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:00:54.550438 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57329 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:01:04.549760 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46662 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:01:55.556302 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57330 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:02:05.555624 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46663 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:02:56.572165 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57331 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:03:06.571487 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46664 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:03:57.568030 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57332 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:04:07.577351 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46665 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:04:58.573894 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57333 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:05:08.573216 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46666 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:12.872924 208.225.197.194 -> 192.168.100.28
ICMP TTL:45 TOS:0x0 ID:34767 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:10788  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:13.062912 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:53267 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:26072  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:13.082910 216.74.133.194 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:36958 IpLen:20 DgmLen:84
Type:8  Code:0  ID:64317   Seq:45000  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:13.192903 211.14.0.99 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:9380 IpLen:20 DgmLen:84
Type:8  Code:0  ID:51816   Seq:8832  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:13.292896 203.89.210.82 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:65265 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48197   Seq:56616  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:15.412752 64.124.186.66 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:24461 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63787   Seq:34165  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.112705 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:13570 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:62735  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.112705 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:2853 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:49402  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.122704 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:3860 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:97  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.132703 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:65091 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:22923  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.132703 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:8229 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:44891  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.132703 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:32680 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:16479  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.142703 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:59231 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:27352  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.192699 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:24789 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:2446  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.212698 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:29475 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:26109  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.222697 62.4.74.66 -> 192.168.100.28
ICMP TTL:46 TOS:0x0 ID:18134 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36110   Seq:63142  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:05:59.569759 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57334 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:06:09.569081 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46667 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:07:00.575622 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57335 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:07:10.574945 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46668 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:08:01.581486 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57336 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:08:11.580808 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46669 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:09:02.587349 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57337 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:09:12.586671 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46670 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:10:03.593211 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57338 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:10:13.592533 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46671 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:11:04.589075 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57339 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:11:14.598396 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46672 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:12:05.594937 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57340 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:12:15.594259 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46673 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:13:06.600800 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57341 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:13:16.600122 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46674 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:14:07.606663 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57342 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:14:17.605984 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46675 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:15:08.602526 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57343 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:15:18.601848 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46676 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:16:09.598389 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57344 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:16:19.597711 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46677 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:17:10.604252 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57345 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:17:20.603574 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46678 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:18:11.610114 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57346 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:18:21.609436 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46679 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:19:12.615977 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57347 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:19:22.615299 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46680 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:20:13.621840 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11477 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:20:23.621162 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46681 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:21:14.627702 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11478 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:21:24.627024 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46682 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:22:15.623566 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11479 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:22:25.622887 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46683 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:23:16.629428 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11480 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:23:26.628750 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46684 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:24:17.635291 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11481 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:24:27.634612 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46685 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:25:18.631149 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11482 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:25:28.640469 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46686 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:26:19.627004 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11483 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:26:29.626324 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46687 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 149 seconds [**]
11/30-10:26:46.765159 192.168.100.28:32789 -> 151.164.1.1:53
UDP TTL:255 TOS:0x0 ID:11381 IpLen:20 DgmLen:85 DF
Len: 57

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:27:20.632858 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11484 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:27:30.632178 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46688 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:28:21.648711 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11485 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:28:31.648032 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46689 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:29:22.644566 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11486 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:29:32.643887 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46690 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:30:23.650421 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11487 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:30:33.649741 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46691 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:31:24.646276 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11488 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:31:34.645597 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46692 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:32:25.652131 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11489 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:32:35.661451 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46693 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:33:26.657986 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11490 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:33:36.657306 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46694 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:34:27.663840 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11491 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:34:37.663161 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46695 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:35:13.000760 216.73.82.10 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:14678 IpLen:20 DgmLen:84
Type:8  Code:0  ID:10245   Seq:39167  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:35:13.180748 202.130.158.130 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:3083 IpLen:20 DgmLen:84
Type:8  Code:0  ID:19058   Seq:45944  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:35:13.850702 208.254.75.130 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:46996 IpLen:20 DgmLen:84
Type:8  Code:0  ID:59759   Seq:11515  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:35:13.920698 65.203.232.2 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:63827 IpLen:20 DgmLen:84
Type:8  Code:0  ID:18029   Seq:49561  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:35:13.960695 63.123.77.194 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:38263 IpLen:20 DgmLen:84
Type:8  Code:0  ID:11632   Seq:11964  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:35:28.669695 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11492 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:35:38.659017 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46696 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:36:29.655552 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11493 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:36:39.664872 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46697 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:37:30.671406 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11494 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:37:40.670727 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46698 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 173 seconds [**]
11/30-10:38:05.889014 192.168.100.28:32789 -> 192.31.80.30:53
UDP TTL:255 TOS:0x0 ID:35111 IpLen:20 DgmLen:65 DF
Len: 37

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:38:31.677262 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11495 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:38:41.676582 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46699 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:39:32.673118 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11496 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:39:42.682438 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46700 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:40:33.678973 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11497 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:40:43.678294 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61829 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:41:34.684829 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11498 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:41:44.684150 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61830 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:42:35.690690 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11499 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:42:45.690012 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61831 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:43:36.686554 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11500 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:43:46.685876 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61832 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 38 seconds [**]
11/30-10:43:56.805190 192.168.100.28:32789 -> 16.1.0.18:53
UDP TTL:255 TOS:0x0 ID:58331 IpLen:20 DgmLen:64 DF
Len: 36

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:44:37.692418 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11501 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:44:47.691740 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61833 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:45:38.698281 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11502 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:45:48.697603 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61834 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 1 seconds [**]
11/30-10:45:56.337085 192.168.100.28:32789 -> 208.211.225.10:53
UDP TTL:255 TOS:0x0 ID:46789 IpLen:20 DgmLen:64 DF
Len: 36

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:45:57.037038 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:7311 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:61992  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:45:57.087034 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:53085 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:25757  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:45:57.097033 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:32135 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:8866  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:45:57.097033 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:41266 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:45479  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:45:57.097033 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:2405 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:21926  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:45:57.107033 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:41664 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:46850  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:45:57.167029 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:9355 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:58146  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:45:57.177028 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:13443 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:54089  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:45:57.207026 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:3222 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:8255  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:46:39.694145 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11503 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:46:49.703466 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61835 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 2 seconds [**]
11/30-10:47:17.821560 192.168.100.28:32789 -> 194.246.96.79:53
UDP TTL:255 TOS:0x0 ID:62733 IpLen:20 DgmLen:60 DF
Len: 32

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:47:40.700008 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11504 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:47:50.699330 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61836 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 21 targets 21 ports in 46 seconds [**]
11/30-10:48:01.348608 192.168.100.28:32789 -> 192.35.51.30:53
UDP TTL:255 TOS:0x0 ID:58390 IpLen:20 DgmLen:65 DF
Len: 37

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:48:41.705871 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11505 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:48:51.705193 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61837 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:49:42.711735 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11506 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:49:52.711057 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61838 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:50:43.707599 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11507 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:50:53.706920 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61839 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:51:44.713462 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11508 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:51:54.712784 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61840 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:52:45.719325 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11509 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:52:55.718647 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61841 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:53:46.715189 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11510 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:53:56.724510 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61842 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 8 seconds [**]
11/30-10:54:13.883346 192.168.100.28:32789 -> 193.0.0.237:53
UDP TTL:255 TOS:0x0 ID:20021 IpLen:20 DgmLen:60 DF
Len: 32

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 20 targets 21 ports in 20 seconds [**]
11/30-10:54:25.322571 192.168.100.28:32789 -> 192.12.94.30:53
UDP TTL:255 TOS:0x0 ID:35005 IpLen:20 DgmLen:67 DF
Len: 39

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:54:47.721052 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11511 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:54:57.720374 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61843 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:55:48.716916 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11512 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:55:58.716237 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61844 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 90 seconds [**]
11/30-10:56:47.052960 192.168.100.28:32789 -> 140.135.18.25:53
UDP TTL:255 TOS:0x0 ID:42109 IpLen:20 DgmLen:67 DF
Len: 39

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:56:49.732778 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11513 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:56:59.732100 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61845 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:57:50.728642 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11514 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:58:00.727964 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61846 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:58:51.734505 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11515 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:59:01.733825 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61847 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:59:52.740358 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11516 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:00:02.739678 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61848 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:00:53.746211 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26645 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:01:03.745531 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61849 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:01:54.742065 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26646 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:02:04.741385 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61850 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:02:55.747918 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26647 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:03:05.747238 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61851 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:03:56.753771 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26648 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:04:06.753091 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61852 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:04:57.749625 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26649 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:05:07.158986 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61853 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:05:13.078583 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:44693 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:5234  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:05:13.108581 66.236.129.66 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:28769 IpLen:20 DgmLen:84
Type:8  Code:0  ID:39175   Seq:7602  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:05:13.268570 202.54.111.72 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:3917 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:48570  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:05:13.318567 203.199.107.187 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:5376 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:30792  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:05:13.408561 203.197.173.129 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:42380 IpLen:20 DgmLen:84
Type:8  Code:0  ID:51201   Seq:9790  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:05:56.745615 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26650 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:06:06.744936 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61854 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:06:57.751469 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26651 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:07:07.750789 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61855 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:07:58.747323 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26652 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:08:08.766642 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61856 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:08:59.753177 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26653 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:09:09.762497 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61857 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:10:00.759031 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26654 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:10:10.768351 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61858 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:11:01.764885 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26655 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:11:11.764206 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61859 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:12:02.760740 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26656 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:12:12.770060 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61860 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:13:03.766595 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26657 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:13:13.775915 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61861 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:14:04.782449 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26658 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:14:14.781769 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61862 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:15:05.778304 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26659 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:15:15.787624 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61863 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:16:06.774161 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26660 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:16:16.773483 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61864 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:17:07.780027 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26661 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:17:17.779349 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61865 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:18:08.795892 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26662 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:18:18.795214 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61866 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:19:09.791759 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26663 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:19:19.791081 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61867 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:20:10.797625 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26664 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:20:20.796947 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:13997 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:21:11.803490 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26665 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:21:21.802813 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:13998 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:22:12.799357 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26666 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:22:22.808678 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:13999 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:23:13.805222 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26667 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:23:23.804545 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14000 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:24:14.811088 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26668 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:24:24.810410 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14001 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:25:15.816954 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26669 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:25:25.816276 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14002 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:26:16.812820 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26670 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:26:26.812142 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14003 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:27:17.818685 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26671 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:27:27.818007 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14004 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:28:18.824551 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26672 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:28:28.823873 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14005 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:29:19.830416 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26673 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:29:29.829738 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14006 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:30:20.826282 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26674 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:30:30.825604 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14007 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:31:21.832147 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26675 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:31:31.831469 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14008 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:32:22.838012 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26676 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:32:32.837335 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14009 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 1645 seconds [**]
11/30-11:32:37.816997 192.168.100.28:32789 -> 216.39.68.40:53
UDP TTL:255 TOS:0x0 ID:30081 IpLen:20 DgmLen:59 DF
Len: 31

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.066980 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:33596 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:43921  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.076979 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:55374 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:30131  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.096978 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:6642 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:57380  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.106977 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:48370 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:2597  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.116977 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:48233 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:11250  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.136975 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:62911 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:26628  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.136975 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:34016 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:22925  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.166973 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:40886 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:30646  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.206971 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:26092 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:21881  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:384:4] ICMP PING [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.206971 216.34.88.17 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:19862 IpLen:20 DgmLen:64
Type:8  Code:0  ID:38671   Seq:0  ECHO

[**] [1:384:4] ICMP PING [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.226969 64.14.42.16 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:9608 IpLen:20 DgmLen:64
Type:8  Code:0  ID:18665   Seq:0  ECHO

[**] [1:384:4] ICMP PING [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.246968 216.39.69.65 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:2381 IpLen:20 DgmLen:64
Type:8  Code:0  ID:62267   Seq:0  ECHO

[**] [1:384:4] ICMP PING [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.276966 216.34.88.17 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:19864 IpLen:20 DgmLen:64
Type:8  Code:0  ID:38671   Seq:256  ECHO

[**] [1:384:4] ICMP PING [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.316963 216.39.69.65 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:2385 IpLen:20 DgmLen:64
Type:8  Code:0  ID:62267   Seq:256  ECHO

[**] [1:384:4] ICMP PING [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.316963 64.14.42.16 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:9609 IpLen:20 DgmLen:64
Type:8  Code:0  ID:18665   Seq:256  ECHO

[**] [1:384:4] ICMP PING [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.346961 216.34.88.17 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:19868 IpLen:20 DgmLen:64
Type:8  Code:0  ID:38671   Seq:512  ECHO

[**] [1:384:4] ICMP PING [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.396958 216.39.69.65 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:2391 IpLen:20 DgmLen:64
Type:8  Code:0  ID:62267   Seq:512  ECHO

[**] [1:384:4] ICMP PING [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.416956 64.14.42.16 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:9611 IpLen:20 DgmLen:64
Type:8  Code:0  ID:18665   Seq:512  ECHO

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:33:23.833880 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26677 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:33:33.833203 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14010 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:34:24.839750 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26678 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:34:34.839073 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14011 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:35:25.845619 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26679 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:35:35.844942 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14012 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:36:26.851489 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26680 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:36:36.850812 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14013 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:37:27.847359 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26681 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:37:37.846682 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14014 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:38:28.853228 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26682 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:38:38.852551 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14015 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:39:29.859097 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26683 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:39:39.858420 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14016 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:40:30.864966 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44349 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:40:40.854290 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14017 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:41:31.860836 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44350 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:41:41.860159 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14018 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:42:32.866705 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44351 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:42:42.866028 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14019 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:43:33.872573 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44352 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:43:43.871896 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14020 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:44:34.868443 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44353 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:44:41.088022 216.73.83.10 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:12665 IpLen:20 DgmLen:84
Type:8  Code:0  ID:21815   Seq:35440  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:44:41.108020 216.73.84.10 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:64442 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44301   Seq:11539  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:44:41.118020 64.124.186.66 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:325 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63787   Seq:15105  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:44:41.138018 202.160.241.130 -> 192.168.100.28
ICMP TTL:46 TOS:0x0 ID:60413 IpLen:20 DgmLen:84
Type:8  Code:0  ID:28162   Seq:3224  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:44:41.437998 202.144.78.2 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:27430 IpLen:20 DgmLen:84
Type:8  Code:0  ID:35167   Seq:11158  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:44:44.867766 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14021 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:45:35.874311 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44354 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:45:45.873634 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14022 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:46:36.880180 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44355 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:46:46.879503 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14023 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:47:37.876049 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44356 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:47:47.885371 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14024 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:48:38.881917 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44357 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:48:48.881240 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14025 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:49:39.887785 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44358 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:49:49.887108 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14026 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:50:40.893652 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44359 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:50:50.892974 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14027 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:51:41.899517 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44360 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:51:51.888840 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14028 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:52:42.895383 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44361 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:52:52.894705 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14029 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:53:43.901248 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44362 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:53:53.900570 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14030 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 11 seconds [**]
11/30-11:54:25.298442 192.168.100.28:32789 -> 216.52.244.144:53
UDP TTL:255 TOS:0x0 ID:26771 IpLen:20 DgmLen:64 DF
Len: 36

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:54:44.897113 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44363 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:54:54.906435 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14031 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:55:45.902978 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44364 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:55:55.902301 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14032 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:56:46.898844 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44365 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:56:56.898166 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14033 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:57:47.914708 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44366 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:57:57.914030 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14034 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:58:09.083273 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:9334 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:34036  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:58:09.103272 209.164.7.66 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:50483 IpLen:20 DgmLen:84
Type:8  Code:0  ID:8709   Seq:46396  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:58:09.143269 66.28.34.130 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:20955 IpLen:20 DgmLen:84
Type:8  Code:0  ID:52481   Seq:38286  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:58:09.163268 66.236.129.66 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:6849 IpLen:20 DgmLen:84
Type:8  Code:0  ID:39175   Seq:34628  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:58:09.343256 203.199.107.187 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:31538 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:35752  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:58:09.363254 202.54.111.72 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:21966 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:30991  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:58:48.910574 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44367 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:58:58.909896 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14035 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:59:49.916438 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44368 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:59:59.915761 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33701 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:00:50.922303 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44369 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:01:00.921625 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33702 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:01:51.918168 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44370 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:02:01.927490 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33703 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:02:52.924033 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44371 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:03:02.923355 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33704 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:03:53.929898 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44372 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:04:03.929220 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33705 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:04:54.935762 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44373 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:05:04.935085 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33706 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:05:55.931628 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44374 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:06:05.930950 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33707 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:06:56.937492 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44375 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:07:06.936814 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33708 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:07:57.943359 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44376 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:08:07.942681 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33709 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:08:58.939226 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44377 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:09:08.948548 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33710 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:09:59.945093 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44378 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:10:09.944416 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33711 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 250 seconds [**]
11/30-12:10:57.311207 192.168.100.28:32789 -> 205.188.132.235:53
UDP TTL:255 TOS:0x0 ID:35701 IpLen:20 DgmLen:59 DF
Len: 31

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:11:00.950960 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44379 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:11:10.950283 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33712 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:12:01.956827 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44380 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:12:11.956150 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33713 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:13:02.952695 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44381 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:13:12.952017 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33714 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:14:03.958561 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44382 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:14:13.957884 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33715 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:15:04.964428 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44383 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:15:14.963751 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33716 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 7 ports in 180 seconds [**]
11/30-12:15:47.551543 192.168.100.28:32789 -> 192.112.36.4:53
UDP TTL:255 TOS:0x0 ID:63787 IpLen:20 DgmLen:73 DF
Len: 45

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 1 seconds [**]
11/30-12:15:51.221294 192.168.100.28:32789 -> 192.83.166.11:53
UDP TTL:255 TOS:0x0 ID:1921 IpLen:20 DgmLen:60 DF
Len: 32

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:16:05.960295 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44384 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:16:15.969617 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33717 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:17:06.966162 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44385 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:17:16.965484 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33718 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:18:07.972028 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44386 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:18:17.971351 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33719 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:19:08.977895 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44387 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:19:18.977217 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33720 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:20:09.983761 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64053 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:20:19.973084 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33721 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:21:10.979628 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64054 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:21:20.978950 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33722 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:22:11.985494 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64055 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:22:21.984817 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33723 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:23:12.981361 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64056 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:23:22.990683 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33724 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:24:13.987227 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64057 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:24:23.986551 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33725 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:25:14.993102 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64058 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:25:24.992426 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33726 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:26:15.988979 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64059 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:26:25.988302 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33727 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:27:16.984854 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64060 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:27:26.984178 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33728 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:28:18.000729 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64061 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:28:28.000053 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33729 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:29:19.006604 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64062 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:29:29.005927 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33730 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:30:20.002479 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64063 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:30:30.011802 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33731 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:31:20.998354 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64064 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:31:30.997678 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33732 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:32:22.014228 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64065 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:32:32.013551 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33733 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:33:23.020102 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64066 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:33:33.019425 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33734 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:34:24.015976 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64067 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:34:34.015300 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33735 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:35:25.021850 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64068 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:35:35.021174 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33736 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:36:26.027724 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64069 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:36:36.027047 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33737 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:37:27.033597 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64070 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 538 seconds [**]
11/30-12:37:34.903065 192.168.100.28:53 -> 148.244.153.91:3052
UDP TTL:255 TOS:0x0 ID:26443 IpLen:20 DgmLen:398 DF
Len: 370

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:37:37.032921 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33738 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:38:28.029471 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64071 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:38:38.028795 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33739 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:39:29.035344 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64072 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:39:39.034668 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33740 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:40:30.041217 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64073 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:40:40.040541 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48869 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:41:31.037090 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64074 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:41:41.036414 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48870 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 49 seconds [**]
11/30-12:41:57.665288 192.168.100.28:32789 -> 192.94.163.152:53
UDP TTL:255 TOS:0x0 ID:60953 IpLen:20 DgmLen:56 DF
Len: 28

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:42:32.042961 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64075 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:42:42.052284 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48871 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:43:33.048832 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64076 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:43:43.048156 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48872 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 90 seconds [**]
11/30-12:43:55.707299 192.168.100.28:32789 -> 216.239.38.10:53
UDP TTL:255 TOS:0x0 ID:47921 IpLen:20 DgmLen:60 DF
Len: 32

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:44:34.044704 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64077 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:44:44.054027 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48873 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:45:35.050575 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64078 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:45:45.049898 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48874 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 31 seconds [**]
11/30-12:46:09.338254 192.168.100.28:32789 -> 212.53.64.30:53
UDP TTL:255 TOS:0x0 ID:50469 IpLen:20 DgmLen:64 DF
Len: 36

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:46:36.056445 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64079 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:46:46.055769 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48875 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-12:47:00.104818 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:42364 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:58896  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-12:47:00.154814 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:52939 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:48034  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-12:47:00.174813 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:12951 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:10865  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-12:47:00.174813 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:10271 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:41721  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-12:47:00.174813 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:19066 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:14152  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-12:47:00.184812 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:32906 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:58482  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-12:47:00.184812 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:12394 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:38959  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-12:47:00.194812 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:1030 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:13283  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-12:47:00.204811 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:44088 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:18563  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:47:37.062316 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64080 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:47:47.061639 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48876 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:48:38.058187 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64081 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:48:48.057510 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48877 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:49:39.064057 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64082 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:49:49.063380 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48878 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:50:40.069928 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64083 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:50:50.069251 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48879 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:51:41.065798 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64084 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:51:51.075121 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48880 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 131 seconds [**]
11/30-12:52:19.983164 192.168.100.28:32789 -> 192.41.162.30:53
UDP TTL:255 TOS:0x0 ID:23528 IpLen:20 DgmLen:59 DF
Len: 31

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:52:42.071668 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64085 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:52:52.070991 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48881 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:53:43.077538 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64086 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:53:53.076861 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48882 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:54:44.083408 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64087 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:54:54.082731 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48883 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:55:45.079278 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64088 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:55:55.078601 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48884 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:56:46.075148 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64089 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:56:56.074471 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48885 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:57:47.091017 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64090 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:57:57.090340 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48886 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:58:48.086881 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64091 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:58:58.096201 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48887 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:59:49.092735 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64092 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:59:59.092055 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48888 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:00:50.098588 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13685 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:01:00.097909 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48889 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:01:51.104442 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13686 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:02:01.103763 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48890 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:02:52.100297 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13687 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:03:02.099617 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48891 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:03:53.106151 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13688 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:04:03.105471 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48892 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:04:54.112005 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13689 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:05:04.111326 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48893 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 175 seconds [**]
11/30-13:05:42.488718 192.168.100.28:32789 -> 216.239.34.10:53
UDP TTL:255 TOS:0x0 ID:43921 IpLen:20 DgmLen:60 DF
Len: 32

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:05:55.117859 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13690 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:06:05.117180 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48894 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 1 seconds [**]
11/30-13:06:45.044467 192.168.100.28:32789 -> 206.65.183.71:53
UDP TTL:255 TOS:0x0 ID:40935 IpLen:20 DgmLen:66 DF
Len: 38

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:06:56.113714 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13691 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:07:06.113035 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48895 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:07:57.119569 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13692 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:08:07.118890 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48896 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:08:58.125424 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13693 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:09:08.124744 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48897 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:09:59.121279 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13694 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:10:09.120600 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48898 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:11:00.127134 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13695 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:11:10.126455 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48899 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:12:01.122990 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13696 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:12:11.132310 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48900 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:13:02.128845 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13697 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:13:12.138165 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48901 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:14:03.134700 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13698 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 7 ports in 151 seconds [**]
11/30-13:14:12.374072 192.168.100.28:32789 -> 152.163.159.232:53
UDP TTL:255 TOS:0x0 ID:29493 IpLen:20 DgmLen:68 DF
Len: 40

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:14:13.134021 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48902 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:15:04.130556 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13699 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:15:14.139876 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48903 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:16:05.146411 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13700 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:16:15.145731 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48904 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:17:06.142267 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13701 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:17:16.151587 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48905 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:18:07.148123 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13702 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:18:17.147443 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48906 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 108 seconds [**]
11/30-13:18:24.426949 192.168.100.28:32789 -> 65.206.228.71:53
UDP TTL:255 TOS:0x0 ID:19389 IpLen:20 DgmLen:63 DF
Len: 35

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:19:08.153978 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13703 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:19:18.153299 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48907 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:20:09.159834 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13704 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:20:19.159155 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3037 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:21:10.155691 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13705 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:21:20.155012 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3038 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:22:11.161547 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13706 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:22:21.160868 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3039 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:23:12.167403 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13707 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:23:22.166724 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3040 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:24:13.163260 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13708 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:24:23.172580 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3041 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:25:14.169116 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13709 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:25:24.168437 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3042 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:26:15.174973 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13710 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:26:25.174293 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3043 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:27:16.180829 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13711 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:27:26.180150 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3044 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:28:17.176686 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13712 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:28:27.176007 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3045 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:29:18.182543 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13713 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:29:28.181864 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3046 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:30:19.188400 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13714 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:30:29.187721 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3047 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:31:20.184257 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13715 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:31:30.193577 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3048 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:32:21.190114 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13716 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:32:31.189435 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3049 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:33:22.195982 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13717 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:33:32.195306 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3050 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:34:23.201854 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13718 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:34:33.201177 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3051 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:35:24.197726 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13719 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:35:34.197049 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3052 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:36:25.203597 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13720 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:36:35.202921 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3053 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:37:26.209469 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13721 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:37:36.208792 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3054 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:38:27.205340 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13722 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:38:37.214663 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3055 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:39:28.211211 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13723 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:39:38.210535 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3056 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:40:29.217082 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33389 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:40:39.216405 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3057 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:41:30.222953 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33390 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:41:40.222276 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3058 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:42:31.218824 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33391 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:42:41.218147 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3059 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:43:32.224695 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33392 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:43:42.224018 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3060 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:44:33.230565 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33393 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:44:43.229888 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3061 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:45:34.226436 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33394 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:45:44.235758 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3062 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:46:35.232306 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33395 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:46:45.231629 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3063 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:47:36.238176 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33396 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:47:46.237499 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3064 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:48:37.244046 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33397 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:48:47.243369 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3065 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:49:38.239916 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33398 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:49:48.239237 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3066 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:50:39.245771 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33399 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:50:49.245092 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3067 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:51:40.251626 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33400 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:51:50.250947 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3068 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:52:41.247481 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33401 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:52:51.256801 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3069 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:53:42.253336 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33402 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:53:52.252657 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3070 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:54:43.259191 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33403 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:54:53.258512 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3071 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:55:44.265047 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33404 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:55:54.264367 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3072 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:56:45.260903 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33405 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:56:55.260223 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3073 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:57:46.256759 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33406 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:57:56.256079 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3074 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:58:47.272613 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33407 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:58:57.271934 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3075 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:59:48.268470 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33408 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:59:58.277790 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22741 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:00:49.274325 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33409 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:00:59.273646 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22742 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:01:50.280181 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33410 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:02:00.279502 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22743 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:02:51.286037 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33411 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:03:01.285358 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22744 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:03:52.281894 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33412 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:04:02.281214 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22745 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:04:53.287750 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33413 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:05:03.287070 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22746 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:05:54.293606 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33414 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:06:04.292926 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22747 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:06:55.289462 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33415 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:07:05.298781 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22748 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:07:56.285313 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33416 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:08:06.294633 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22749 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:08:57.311163 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33417 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:09:07.300484 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22750 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:09:58.307015 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33418 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:10:08.306335 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22751 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:10:59.302868 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33419 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:11:09.302188 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22752 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:12:00.308719 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33420 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:12:10.308040 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22753 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:13:01.314571 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33421 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:13:11.313892 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22754 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:618:2] SCAN Squid Proxy attempt [**]
[Classification: Attempted Information Leak] [Priority: 2] 
11/30-14:13:26.282874 64.24.196.50:0 -> 192.168.100.28:3128
TCP TTL:115 TOS:0x0 ID:1368 IpLen:20 DgmLen:40 DF
******S* Seq: 0x188A4  Ack: 0x0  Win: 0x200  TcpLen: 20

[**] [1:620:2] SCAN Proxy (8080) attempt [**]
[Classification: Attempted Information Leak] [Priority: 2] 
11/30-14:13:26.352869 64.24.196.50:0 -> 192.168.100.28:8080
TCP TTL:115 TOS:0x0 ID:1368 IpLen:20 DgmLen:40 DF
******S* Seq: 0x188A6  Ack: 0x0  Win: 0x200  TcpLen: 20

[**] [1:615:3] SCAN SOCKS Proxy attempt [**]
[Classification: Attempted Information Leak] [Priority: 2] 
11/30-14:13:26.372868 64.24.196.50:0 -> 192.168.100.28:1080
TCP TTL:115 TOS:0x0 ID:1368 IpLen:20 DgmLen:40 DF
******S* Seq: 0x188A7  Ack: 0x0  Win: 0x200  TcpLen: 20
[Xref => http://help.undernet.org/proxyscan/]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:14:02.310424 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33422 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:14:12.319744 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22755 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:15:03.316276 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33423 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:15:13.315596 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22756 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:16:04.322129 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33424 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:16:14.321449 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22757 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:17:05.327981 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33425 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:17:15.327301 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22758 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:18:06.323834 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33426 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:18:16.323155 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22759 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:19:07.329687 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33427 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:19:17.329008 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22760 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 631 seconds [**]
11/29-14:36:40.037184 192.168.100.28:32789 -> 210.94.0.7:53
UDP TTL:255 TOS:0x0 ID:42421 IpLen:20 DgmLen:73 DF
Len: 45

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 21 targets 21 ports in 5009 seconds [**]
11/29-15:49:38.530858 192.168.100.28:32789 -> 192.26.92.30:53
UDP TTL:255 TOS:0x0 ID:29779 IpLen:20 DgmLen:60 DF
Len: 32

[**] [1:620:2] SCAN Proxy (8080) attempt [**]
[Classification: Attempted Information Leak] [Priority: 2] 
11/29-20:25:08.481119 61.144.145.243:3667 -> 192.168.100.28:8080
TCP TTL:47 TOS:0x0 ID:19890 IpLen:20 DgmLen:52 DF
******S* Seq: 0x15E082B1  Ack: 0x0  Win: 0xE640  TcpLen: 32
TCP Options (6) => MSS: 1452 NOP WS: 2 NOP NOP SackOK 

[**] [1:618:2] SCAN Squid Proxy attempt [**]
[Classification: Attempted Information Leak] [Priority: 2] 
11/29-20:25:08.481119 61.144.145.243:3677 -> 192.168.100.28:3128
TCP TTL:47 TOS:0x0 ID:19892 IpLen:20 DgmLen:52 DF
******S* Seq: 0x15E1F6DD  Ack: 0x0  Win: 0xE640  TcpLen: 32
TCP Options (6) => MSS: 1452 NOP WS: 2 NOP NOP SackOK 

[**] [1:620:2] SCAN Proxy (8080) attempt [**]
[Classification: Attempted Information Leak] [Priority: 2] 
11/29-20:25:09.381058 61.144.145.243:3667 -> 192.168.100.28:8080
TCP TTL:47 TOS:0x0 ID:20165 IpLen:20 DgmLen:52 DF
******S* Seq: 0x15E082B1  Ack: 0x0  Win: 0xE640  TcpLen: 32
TCP Options (6) => MSS: 1452 NOP WS: 2 NOP NOP SackOK 

[**] [1:618:2] SCAN Squid Proxy attempt [**]
[Classification: Attempted Information Leak] [Priority: 2] 
11/29-20:25:09.391058 61.144.145.243:3677 -> 192.168.100.28:3128
TCP TTL:47 TOS:0x0 ID:20167 IpLen:20 DgmLen:52 DF
******S* Seq: 0x15E1F6DD  Ack: 0x0  Win: 0xE640  TcpLen: 32
TCP Options (6) => MSS: 1452 NOP WS: 2 NOP NOP SackOK 

[**] [1:620:2] SCAN Proxy (8080) attempt [**]
[Classification: Attempted Information Leak] [Priority: 2] 
11/29-20:25:10.300996 61.144.145.243:3667 -> 192.168.100.28:8080
TCP TTL:47 TOS:0x0 ID:20686 IpLen:20 DgmLen:52 DF
******S* Seq: 0x15E082B1  Ack: 0x0  Win: 0xE640  TcpLen: 32
TCP Options (6) => MSS: 1452 NOP WS: 2 NOP NOP SackOK 

[**] [1:618:2] SCAN Squid Proxy attempt [**]
[Classification: Attempted Information Leak] [Priority: 2] 
11/29-20:25:10.310995 61.144.145.243:3677 -> 192.168.100.28:3128
TCP TTL:47 TOS:0x0 ID:20692 IpLen:20 DgmLen:52 DF
******S* Seq: 0x15E1F6DD  Ack: 0x0  Win: 0xE640  TcpLen: 32
TCP Options (6) => MSS: 1452 NOP WS: 2 NOP NOP SackOK 

[**] [1:645:3] SHELLCODE sparc NOOP [**]
[Classification: Executable code was detected] [Priority: 1] 
11/29-23:36:26.503382 61.219.90.180:56711 -> 192.168.100.28:6112
TCP TTL:44 TOS:0x0 ID:61373 IpLen:20 DgmLen:1500 DF
***A**** Seq: 0x7FC1DB88  Ack: 0xBA41EB06  Win: 0x16D0  TcpLen: 32
TCP Options (3) => NOP NOP TS: 48510034 113867474 
[Xref => http://www.whitehats.com/info/IDS353]

[**] [1:402:4] ICMP Destination Unreachable (Port Unreachable) [**]
[Classification: Misc activity] [Priority: 3] 
11/29-23:47:09.759808 148.244.153.69 -> 192.168.100.28
ICMP TTL:124 TOS:0x0 ID:2312 IpLen:20 DgmLen:56
Type:3  Code:3  DESTINATION UNREACHABLE: PORT UNREACHABLE
** ORIGINAL DATAGRAM DUMP:
192.168.100.28:53 -> 148.244.153.69:1124
UDP TTL:251 TOS:0x0 ID:40357 IpLen:20 DgmLen:163 DF
Len: 135
** END OF DUMP

[**] [1:402:4] ICMP Destination Unreachable (Port Unreachable) [**]
[Classification: Misc activity] [Priority: 3] 
11/29-23:49:57.258437 148.244.153.69 -> 192.168.100.28
ICMP TTL:124 TOS:0x0 ID:15888 IpLen:20 DgmLen:56
Type:3  Code:3  DESTINATION UNREACHABLE: PORT UNREACHABLE
** ORIGINAL DATAGRAM DUMP:
192.168.100.28:53 -> 148.244.153.69:1233
UDP TTL:251 TOS:0x0 ID:40358 IpLen:20 DgmLen:165 DF
Len: 137
** END OF DUMP

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/29-23:59:52.338046 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16475 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:00:01.777405 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25915 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:01:02.773265 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16476 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:01:12.772587 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25916 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:02:03.779125 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16477 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:02:13.788446 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25917 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:03:04.794984 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16478 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:03:14.794306 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25918 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:04:05.790845 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16479 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 0 seconds [**]
11/30-00:04:08.490662 192.168.100.28:32789 -> 151.99.125.138:53
UDP TTL:255 TOS:0x0 ID:10471 IpLen:20 DgmLen:82 DF
Len: 54

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:04:15.780167 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25919 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [116:56:1] (snort_decoder): T/TCP Detected [**]
11/30-00:04:46.418088 206.252.192.195:0 -> 192.168.100.28:0
TCP TTL:51 TOS:0x0 ID:10267 IpLen:20 DgmLen:68 DF
******S* Seq: 0xAD2A435D  Ack: 0x0  Win: 0x4000  TcpLen: 48
TCP Options (9) => MSS: 1460 NOP WS: 0 NOP NOP TS: 481191594 0 
TCP Options => NOP NOP CCNEW: 136032629 

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:05:06.786705 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16480 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:05:16.786027 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25920 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [116:56:1] (snort_decoder): T/TCP Detected [**]
11/30-00:05:38.424558 206.252.192.195:0 -> 192.168.100.28:0
TCP TTL:51 TOS:0x0 ID:50612 IpLen:20 DgmLen:68 DF
******S* Seq: 0xDFD73115  Ack: 0x0  Win: 0x4000  TcpLen: 48
TCP Options (9) => MSS: 1460 NOP WS: 0 NOP NOP TS: 481196794 0 
TCP Options => NOP NOP CCNEW: 136034206 

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:06:07.792565 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16481 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:06:17.791887 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25921 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [116:56:1] (snort_decoder): T/TCP Detected [**]
11/30-00:06:32.410895 206.252.192.195:0 -> 192.168.100.28:0
TCP TTL:51 TOS:0x0 ID:27572 IpLen:20 DgmLen:68 DF
******S* Seq: 0x151FB03A  Ack: 0x0  Win: 0x4000  TcpLen: 48
TCP Options (9) => MSS: 1460 NOP WS: 0 NOP NOP TS: 481202194 0 
TCP Options => NOP NOP CCNEW: 136035815 

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:07:08.788426 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16482 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:07:18.797747 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25922 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [116:56:1] (snort_decoder): T/TCP Detected [**]
11/30-00:07:26.817203 206.252.192.195:0 -> 192.168.100.28:0
TCP TTL:51 TOS:0x0 ID:3256 IpLen:20 DgmLen:68 DF
******S* Seq: 0xBD724D6C  Ack: 0x0  Win: 0x4000  TcpLen: 48
TCP Options (9) => MSS: 1460 NOP WS: 0 NOP NOP TS: 481207635 0 
TCP Options => NOP NOP CCNEW: 136037572 

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:08:09.794286 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16483 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:08:19.803607 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25923 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [116:56:1] (snort_decoder): T/TCP Detected [**]
11/30-00:08:22.423429 206.252.192.195:0 -> 192.168.100.28:0
TCP TTL:51 TOS:0x0 ID:47099 IpLen:20 DgmLen:68 DF
******S* Seq: 0x377F9805  Ack: 0x0  Win: 0x4000  TcpLen: 48
TCP Options (9) => MSS: 1460 NOP WS: 0 NOP NOP TS: 481213197 0 
TCP Options => NOP NOP CCNEW: 136039230 

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:09:10.810146 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16484 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [116:56:1] (snort_decoder): T/TCP Detected [**]
11/30-00:09:14.489896 206.252.192.195:0 -> 192.168.100.28:0
TCP TTL:51 TOS:0x0 ID:21281 IpLen:20 DgmLen:68 DF
******S* Seq: 0x96E0ED86  Ack: 0x0  Win: 0x4000  TcpLen: 48
TCP Options (9) => MSS: 1460 NOP WS: 0 NOP NOP TS: 481218404 0 
TCP Options => NOP NOP CCNEW: 136040783 

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:09:20.809467 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25924 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [116:56:1] (snort_decoder): T/TCP Detected [**]
11/30-00:09:49.427525 206.252.192.195:0 -> 192.168.100.28:0
TCP TTL:51 TOS:0x0 ID:48678 IpLen:20 DgmLen:68 DF
******S* Seq: 0xDCCF0832  Ack: 0x0  Win: 0x4000  TcpLen: 48
TCP Options (9) => MSS: 1460 NOP WS: 0 NOP NOP TS: 481221898 0 
TCP Options => NOP NOP CCNEW: 136041858 

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:10:11.816006 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16485 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:10:21.815328 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25925 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [116:56:1] (snort_decoder): T/TCP Detected [**]
11/30-00:10:26.834987 206.252.192.195:0 -> 192.168.100.28:0
TCP TTL:51 TOS:0x0 ID:13638 IpLen:20 DgmLen:68 DF
******S* Seq: 0x353FCB52  Ack: 0x0  Win: 0x4000  TcpLen: 48
TCP Options (9) => MSS: 1460 NOP WS: 0 NOP NOP TS: 481225639 0 
TCP Options => NOP NOP CCNEW: 136042943 

[**] [116:56:1] (snort_decoder): T/TCP Detected [**]
11/30-00:11:02.962535 206.252.192.195:0 -> 192.168.100.28:0
TCP TTL:51 TOS:0x0 ID:43093 IpLen:20 DgmLen:68 DF
******S* Seq: 0xC6A6B7F  Ack: 0x0  Win: 0x4000  TcpLen: 48
TCP Options (9) => MSS: 1460 NOP WS: 0 NOP NOP TS: 481229253 0 
TCP Options => NOP NOP CCNEW: 136044084 

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:11:12.801868 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16486 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:11:22.801189 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25926 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:12:13.807728 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16487 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:12:23.807050 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25927 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:13:14.813589 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16488 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:13:24.812910 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25928 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:14:15.819449 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16489 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:14:25.818771 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25929 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:15:16.815310 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16490 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:15:26.814632 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25930 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:16:17.821171 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16491 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:16:27.820493 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25931 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:17:18.837031 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16492 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:17:28.836353 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25932 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:18:19.832893 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16493 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:18:29.832214 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25933 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:19:20.838768 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:16494 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:19:30.838092 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25934 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:20:21.844646 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:741 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:20:31.843970 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25935 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:21:22.850524 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:742 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:21:32.849848 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25936 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:22:23.846403 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:743 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:22:33.845727 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25937 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 5 seconds [**]
11/30-00:22:47.834782 192.168.100.28:32789 -> 206.98.114.20:53
UDP TTL:255 TOS:0x0 ID:15659 IpLen:20 DgmLen:72 DF
Len: 44

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:23:24.852280 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:744 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:23:34.851605 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25938 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:24:25.858158 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:745 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:24:35.857482 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25939 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:25:26.854036 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:746 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:25:36.853360 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25940 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:26:27.859913 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:747 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:26:37.859237 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25941 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:27:28.865790 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:748 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:27:38.865114 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25942 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:28:29.871667 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:749 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:28:39.870991 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25943 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:29:30.867544 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:750 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:29:40.866869 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25944 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:30:31.873421 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:751 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:30:41.872745 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25945 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:31:32.879297 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:752 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:31:42.878621 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25946 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:32:33.875174 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:753 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:32:43.874498 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25947 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:33:34.881050 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:754 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:33:44.880374 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25948 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:34:35.886926 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:755 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:34:45.886250 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25949 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:35:36.892801 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:756 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:35:46.892123 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25950 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:36:37.888667 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:757 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:36:47.887989 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25951 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:37:38.894532 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:758 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:37:48.893854 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25952 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:38:39.900397 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:759 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:38:49.899719 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25953 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:39:40.896263 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:760 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:39:50.895585 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:25954 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:40:41.902128 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:761 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:40:51.901450 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51093 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:41:42.907993 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:762 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:41:52.907315 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51094 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:42:43.913858 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:763 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:42:53.913181 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51095 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:43:44.909724 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:764 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:43:54.909046 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51096 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:44:45.915589 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:765 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:44:55.914911 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51097 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:45:46.911455 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:766 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:45:56.910777 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51098 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:46:47.907321 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:767 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:46:57.916642 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51099 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:47:48.923185 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:768 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:47:58.922507 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51100 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:48:49.929050 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:769 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:48:59.928372 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51101 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:49:50.934915 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:770 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:50:00.934238 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51102 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:50:51.930781 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:771 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:51:01.930103 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51103 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:51:52.936646 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:772 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:52:02.935968 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51104 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:52:53.942508 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:773 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:53:03.941828 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51105 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:53:54.938362 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:774 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:54:04.937682 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51106 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:54:55.944215 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:775 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:55:05.943535 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51107 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:55:56.950068 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:776 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:56:06.949388 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51108 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:56:57.955921 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:777 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:57:07.955242 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51109 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:57:58.951776 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:778 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:58:08.951096 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51110 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:58:59.957629 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:779 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-00:59:09.956950 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51111 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:00:00.963483 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20445 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:00:10.962804 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51112 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:01:01.959338 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20446 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:01:11.968658 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51113 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:02:02.965192 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20447 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:02:12.964513 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51114 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:03:03.971046 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20448 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:03:13.970367 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51115 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:04:04.976901 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20449 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:04:14.976221 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51116 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:05:05.972756 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20450 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:05:15.972077 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51117 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:06:06.978611 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20451 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:06:16.977932 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51118 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:07:07.984466 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20452 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:07:17.983787 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51119 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:08:08.980322 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20453 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:08:18.989642 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51120 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:09:09.986177 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20454 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:09:19.985498 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51121 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:10:10.992036 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20455 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:10:20.991358 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51122 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:11:11.997898 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20456 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:11:21.997220 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51123 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:12:12.993762 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20457 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:12:22.993083 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51124 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:13:13.999624 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20458 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:13:23.998946 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51125 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:14:15.005487 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20459 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:14:25.004809 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51126 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:15:16.001350 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20460 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:15:26.010672 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51127 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 18 seconds [**]
11/30-01:15:26.730623 192.168.100.28:32789 -> 209.10.34.55:53
UDP TTL:255 TOS:0x0 ID:28661 IpLen:20 DgmLen:61 DF
Len: 33

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.070600 64.14.117.10 -> 192.168.100.28
ICMP TTL:53 TOS:0x0 ID:58830 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:46983  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.070600 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:45107 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:46759  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.090598 216.74.133.194 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:38121 IpLen:20 DgmLen:84
Type:8  Code:0  ID:64317   Seq:52596  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.090598 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:18170 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:33365  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.090598 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:19251 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:51450  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.100598 216.73.82.10 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:47239 IpLen:20 DgmLen:84
Type:8  Code:0  ID:10245   Seq:49995  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.100598 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:53244 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:9362  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.120596 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:13914 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:32264  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.120596 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:9929 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:4105  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.140595 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:9197 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:47603  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.150594 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:24138 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:4305  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.200591 211.14.0.99 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:59157 IpLen:20 DgmLen:84
Type:8  Code:0  ID:51816   Seq:49180  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.220590 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:32709 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:17291  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:15:27.280586 203.89.210.82 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:18080 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48197   Seq:35646  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:16:17.007213 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20461 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:16:27.006535 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51128 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:17:18.013076 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20462 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:17:28.012398 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51129 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:18:19.018939 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20463 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:18:29.018261 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51130 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:19:20.014802 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20464 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:19:30.014124 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:51131 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:20:21.020665 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20465 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:20:31.019987 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5261 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:21:22.026528 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20466 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:21:32.025850 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5262 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:22:23.022392 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20467 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:22:33.031713 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5263 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:23:24.028255 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20468 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:23:34.027577 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5264 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:24:25.034118 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20469 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:24:35.033439 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5265 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:25:26.039981 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20470 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:25:36.039302 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5266 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:26:27.035844 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20471 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:26:37.035166 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5267 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:27:28.041709 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20472 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:27:38.041031 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5268 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:28:29.047574 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20473 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:28:39.046896 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5269 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 573 seconds [**]
11/30-01:28:40.006831 192.168.100.28:32789 -> 12.47.217.11:53
UDP TTL:255 TOS:0x0 ID:35469 IpLen:20 DgmLen:76 DF
Len: 48

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:29:30.043439 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20474 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:29:40.052761 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5270 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:30:31.049304 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20475 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:30:41.048626 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5271 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:31:32.055169 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20476 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:31:42.054491 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5272 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:32:33.061034 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20477 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:32:43.060356 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5273 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:33:34.056900 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20478 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:33:44.056222 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5274 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:34:35.062765 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20479 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:34:45.062087 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5275 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:35:36.058630 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20480 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:35:46.057952 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5276 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:36:37.054496 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20481 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:36:47.063817 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5277 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:37:38.070360 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20482 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:37:48.069682 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5278 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:38:39.076225 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20483 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:38:49.075547 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5279 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:39:40.082090 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:20484 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:39:50.081412 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5280 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:40:41.077955 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35603 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:40:51.067278 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5281 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:41:42.083820 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35604 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:41:52.083142 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5282 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:42:43.089685 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35605 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:42:53.089007 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5283 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:43:44.085551 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35606 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:43:54.094871 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5284 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:44:45.091390 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35607 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:44:55.090707 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5285 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:45:46.097226 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35608 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:45:56.096544 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5286 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:46:03.166061 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:64827 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:33692  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:46:04.056000 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:1694 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:51990  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:46:04.105997 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:21269 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:62418  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:46:04.105997 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:488 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:9392  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:46:04.105997 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:39514 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:28976  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:46:04.105997 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:2572 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:43440  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:46:04.115996 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:48340 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:64524  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:46:04.175992 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:57626 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:46851  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-01:46:04.185991 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:24950 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:32123  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:46:47.103063 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35609 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:46:57.102380 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5287 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:47:48.098900 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35610 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:47:58.098218 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5288 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:48:49.104738 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35611 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:48:59.104055 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5289 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:49:50.110576 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35612 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:50:00.109893 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5290 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:50:51.106414 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35613 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:51:01.115732 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5291 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:51:52.112253 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35614 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:52:02.111571 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5292 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:52:53.118092 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35615 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:53:03.117410 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5293 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:53:54.123931 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35616 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:54:04.123249 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5294 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:54:55.119772 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35617 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:55:05.129089 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5295 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:55:56.115612 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35618 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:56:06.124930 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5296 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:56:57.131452 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35619 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:57:07.130770 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5297 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:57:58.127294 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35620 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:58:08.136611 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5298 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:58:59.133135 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35621 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-01:59:09.132453 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:5299 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 90 seconds [**]
11/30-01:59:43.420116 192.168.100.28:32789 -> 168.95.192.14:53
UDP TTL:255 TOS:0x0 ID:63781 IpLen:20 DgmLen:73 DF
Len: 45

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:00:00.128977 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35622 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:00:10.128295 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24955 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:01:01.134820 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35623 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:01:11.134141 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24956 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:02:02.140680 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35624 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:02:12.140002 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24957 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 69 seconds [**]
11/30-02:02:43.447877 192.168.100.28:32789 -> 128.63.2.53:53
UDP TTL:255 TOS:0x0 ID:39308 IpLen:20 DgmLen:73 DF
Len: 45

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:03:03.146541 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35625 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:03:13.145862 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24958 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:04:04.152401 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35626 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:04:14.151723 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24959 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:05:05.158262 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35627 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:05:15.147584 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24960 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:06:06.144124 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35628 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:06:16.143446 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24961 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:07:07.149985 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35629 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 270 seconds [**]
11/30-02:07:13.489555 192.168.100.28:32789 -> 200.33.146.213:53
UDP TTL:255 TOS:0x0 ID:55079 IpLen:20 DgmLen:72 DF
Len: 44

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:07:17.149306 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24962 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:08:08.165845 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35630 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:08:18.165166 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24963 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:09:09.161706 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35631 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:09:19.161028 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24964 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:10:10.167567 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35632 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:10:20.166889 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24965 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:11:11.173428 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35633 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:11:21.172750 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24966 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:12:12.169290 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35634 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:12:22.178611 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24967 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:13:13.175151 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35635 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:13:23.174472 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24968 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:14:14.181012 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35636 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:14:24.180333 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24969 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:15:15.176873 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35637 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:15:25.176195 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24970 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-02:16:04.063557 216.73.82.10 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:53445 IpLen:20 DgmLen:84
Type:8  Code:0  ID:10245   Seq:19758  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-02:16:04.063557 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:27343 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:47013  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-02:16:04.143551 65.203.232.2 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:15143 IpLen:20 DgmLen:84
Type:8  Code:0  ID:18029   Seq:49312  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-02:16:04.163550 208.254.75.130 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:13491 IpLen:20 DgmLen:84
Type:8  Code:0  ID:59759   Seq:28790  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-02:16:04.163550 63.123.77.194 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:44852 IpLen:20 DgmLen:84
Type:8  Code:0  ID:11632   Seq:62483  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-02:16:04.423532 203.197.173.129 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:43864 IpLen:20 DgmLen:84
Type:8  Code:0  ID:51201   Seq:61544  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:16:16.172735 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35638 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:16:26.172057 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24971 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:17:17.188596 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35639 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:17:27.187917 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24972 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:18:18.194459 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35640 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:18:28.193782 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24973 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:19:19.190329 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:35641 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:19:29.199651 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24974 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:20:20.196197 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55317 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:20:30.195520 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24975 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:21:21.202066 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55318 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:21:31.201389 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24976 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:22:22.207935 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55319 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:22:32.207258 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24977 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:23:23.203804 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55320 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:23:33.203127 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24978 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:24:24.209673 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55321 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:24:34.208996 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24979 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:25:25.205542 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55322 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:25:35.214864 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24980 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:26:26.201411 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55323 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:26:36.210733 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24981 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:27:27.207280 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55324 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:27:37.216602 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24982 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:28:28.223147 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55325 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:28:38.222470 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24983 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:29:29.229015 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55326 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:29:39.228338 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24984 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:30:30.224884 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55327 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:30:40.224207 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24985 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 12 seconds [**]
11/30-02:30:48.093674 192.168.100.28:32789 -> 64.215.170.28:53
UDP TTL:255 TOS:0x0 ID:27817 IpLen:20 DgmLen:61 DF
Len: 33

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:31:31.230752 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55328 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:31:41.230075 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24986 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:32:32.236621 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55329 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:32:42.235943 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24987 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:33:33.232489 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55330 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:33:43.241811 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24988 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:34:34.238357 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55331 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:34:44.237680 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24989 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:35:35.244221 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55332 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:35:45.243542 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24990 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:36:36.250080 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55333 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:36:46.249401 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24991 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:37:37.245939 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55334 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:37:47.245261 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24992 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:38:38.251799 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55335 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:38:48.251120 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24993 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:39:39.257658 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55336 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:39:49.256979 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:24994 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:40:40.263517 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55337 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:40:50.262839 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40133 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:41:41.259377 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55338 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:41:51.258699 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40134 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:42:42.265237 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55339 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:42:52.264558 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40135 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:43:43.271096 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55340 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:43:53.270418 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40136 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:44:44.266957 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55341 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:44:54.266278 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40137 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:45:45.272816 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55342 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:45:55.272138 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40138 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:46:46.268677 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55343 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:46:56.267998 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40139 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:47:47.284536 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55344 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:47:57.283857 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40140 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:48:48.280396 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55345 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:48:58.279718 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40141 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:49:49.286256 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55346 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:49:59.285578 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40142 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:50:50.292116 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55347 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:51:00.291438 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40143 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:51:51.287977 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55348 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:52:01.287298 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40144 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:52:52.293843 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55349 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:53:02.283166 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40145 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:53:53.299711 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55350 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:54:03.299034 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40146 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:54:54.305580 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55351 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:55:04.304902 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40147 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:55:55.291449 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55352 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:56:05.300771 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40148 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:56:56.307317 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55353 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:57:06.306640 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40149 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:57:57.313185 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55354 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:58:07.312508 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40150 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:58:58.309054 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:55355 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:59:08.318376 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40151 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-02:59:59.314922 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9485 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:00:09.314245 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40152 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:01:00.320790 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9486 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:01:10.320113 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40153 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:02:01.326658 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9487 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:02:11.325981 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40154 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:03:02.322527 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9488 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:03:12.321849 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40155 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:04:03.328395 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9489 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:04:13.327717 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40156 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:05:04.334262 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9490 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:05:14.333585 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40157 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:06:05.330131 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9491 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:06:15.339453 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40158 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:07:06.335998 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9492 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:07:16.335321 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40159 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:08:07.341866 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9493 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:08:17.341189 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40160 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:09:08.347734 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9494 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:09:18.347056 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40161 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:10:09.343600 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9495 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:10:19.342922 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40162 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:11:10.339465 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9496 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:11:20.338788 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40163 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:12:11.355330 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9497 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:12:21.354652 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40164 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:13:12.351195 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9498 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:13:22.360517 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40165 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:14:13.357060 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9499 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:14:23.356383 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40166 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:15:14.352926 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9500 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:15:24.352248 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40167 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-03:16:05.079488 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:41096 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:57346  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-03:16:05.139484 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:3033 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:49496  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-03:16:05.139484 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:725 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:53400  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-03:16:05.139484 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:14201 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:51539  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-03:16:05.149483 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:62082 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:26197  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-03:16:05.149483 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:24376 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:5147  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-03:16:05.149483 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:9588 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:22425  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-03:16:05.159482 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:37957 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:36444  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-03:16:05.249476 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:37032 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:40501  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:16:15.368790 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9501 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:16:25.368112 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40168 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:17:16.364656 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9502 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:17:26.363978 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40169 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:18:17.370521 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9503 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:18:27.369843 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40170 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:19:18.376386 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9504 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:19:28.375708 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:40171 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:20:19.372251 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9505 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:20:29.381573 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59837 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:21:20.378116 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9506 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:21:30.377438 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59838 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:22:21.383981 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9507 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:22:31.383303 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59839 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:23:22.389846 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9508 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:23:32.389168 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59840 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:24:23.385711 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9509 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:24:33.385034 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59841 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:25:24.381577 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9510 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:25:34.380899 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59842 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:26:25.387441 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9511 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:26:35.396762 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59843 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:27:26.393302 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9512 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:27:36.402623 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59844 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:28:27.399163 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9513 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:28:37.398485 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59845 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:29:28.405025 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9514 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:29:38.404346 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59846 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:30:29.410886 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9515 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:30:39.410207 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59847 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:31:30.406747 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9516 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:31:40.406069 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59848 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:32:31.412609 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9517 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:32:41.411930 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59849 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:33:32.418470 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9518 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:33:42.417792 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59850 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:34:33.414332 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9519 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:34:43.423653 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59851 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:35:34.410194 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9520 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:35:44.409515 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59852 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:36:35.426055 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9521 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:36:45.425376 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59853 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:37:36.431916 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9522 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:37:46.431238 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59854 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:38:37.417779 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9523 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:38:47.417100 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59855 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:39:38.433640 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:9524 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:39:48.432961 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59856 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:40:39.439501 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24653 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:40:49.438823 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59857 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:41:40.435363 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24654 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:41:50.444684 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59858 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:42:41.441225 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24655 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:42:51.440547 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59859 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:43:42.447083 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24656 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:43:52.446403 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59860 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:44:43.452933 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24657 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:44:53.452253 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59861 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:45:44.438785 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24658 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:45:54.438105 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59862 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:46:45.454634 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24659 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:46:55.453954 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59863 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:47:46.460485 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24660 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:47:56.459805 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59864 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:48:47.456336 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24661 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:48:57.465656 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59865 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:49:48.462187 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24662 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:49:58.461507 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59866 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:50:49.468039 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24663 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:50:59.467359 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59867 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:51:50.473890 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24664 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:52:00.473210 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59868 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:52:51.469742 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24665 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:53:01.469062 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59869 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:53:52.475594 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24666 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 103 seconds [**]
11/30-03:53:53.935494 192.168.100.28:32789 -> 192.168.100.196:53
UDP TTL:255 TOS:0x0 ID:32681 IpLen:20 DgmLen:64 DF
Len: 36

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:54:02.474914 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59870 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:54:53.481446 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24667 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:55:03.480766 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59871 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:55:54.467299 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24668 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:56:04.476618 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59872 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:56:55.483151 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24669 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:57:05.482471 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59873 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:57:56.489003 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24670 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:58:06.488323 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59874 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:58:57.494856 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24671 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:59:07.494176 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:59875 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-03:59:58.490709 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24672 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:00:08.490029 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14005 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:00:59.486566 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24673 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:01:09.485888 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14006 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:02:00.502427 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24674 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:02:10.501748 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14007 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:03:01.498288 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24675 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:03:11.507609 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14008 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:04:02.504149 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24676 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:04:12.503471 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14009 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:05:03.510010 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24677 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:05:13.499333 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14010 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:06:04.505872 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24678 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:06:14.505194 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14011 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:07:05.511733 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24679 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:07:15.511055 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14012 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:08:06.517595 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24680 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:08:16.516916 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14013 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:09:07.523456 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24681 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:09:17.522778 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14014 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:10:08.519318 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24682 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:10:18.528639 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14015 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:11:09.525179 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24683 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:11:19.524501 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14016 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:12:10.531041 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24684 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:12:20.530362 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14017 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:13:11.536902 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24685 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:13:21.536224 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14018 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:14:12.532764 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24686 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:14:22.532086 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14019 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:15:13.538625 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24687 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:15:23.537947 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14020 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.035200 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:47979 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:35171  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.065198 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:9441 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:59133  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.085196 216.73.82.10 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:50822 IpLen:20 DgmLen:84
Type:8  Code:0  ID:10245   Seq:38350  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.085196 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:16171 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:10137  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.105195 65.214.50.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:44811 IpLen:20 DgmLen:84
Type:8  Code:0  ID:32624   Seq:34585  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.115194 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:12274 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:50140  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.115194 63.123.77.194 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:7571 IpLen:20 DgmLen:84
Type:8  Code:0  ID:11632   Seq:56420  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.115194 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:57541 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:17449  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.115194 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:42590 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:65416  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.125194 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:45133 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:31781  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.135193 206.65.191.194 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:64625 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56347   Seq:23470  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.145192 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:8741 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:17587  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.145192 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:31847 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:1276  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.205188 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:3939 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:39006  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:16:04.295182 202.130.158.130 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:6432 IpLen:20 DgmLen:84
Type:8  Code:0  ID:19058   Seq:60464  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:16:14.534488 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24688 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:16:24.533809 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14021 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:17:15.550348 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24689 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:17:25.549670 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14022 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:18:16.546211 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24690 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:18:26.545532 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14023 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:19:17.552072 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:24691 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:19:27.551393 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14024 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:20:18.557933 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44357 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:20:28.557255 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14025 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:21:19.543796 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44358 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:21:29.543118 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14026 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:22:20.559657 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44359 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:22:30.558978 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14027 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:23:21.565518 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44360 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:23:31.564840 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14028 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:24:22.561380 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44361 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:24:32.570701 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14029 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:25:23.567242 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44362 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:25:33.566563 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14030 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:26:24.573103 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44363 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:26:34.572425 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14031 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:27:25.578965 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44364 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:27:35.578286 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14032 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:28:26.574827 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44365 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:28:36.574149 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14033 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:29:27.580689 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44366 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:29:37.580010 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14034 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:30:28.586550 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44367 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:30:38.585872 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14035 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:31:29.582413 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44368 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:31:39.591734 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14036 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:32:30.588275 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44369 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:32:40.587596 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14037 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:33:31.594136 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44370 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:33:41.593458 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14038 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:34:32.599998 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44371 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:34:42.599320 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14039 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:35:33.595858 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44372 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:35:43.595179 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14040 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:36:34.601716 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44373 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:36:44.601038 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14041 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:37:35.607575 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44374 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:37:45.606896 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14042 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:38:36.613434 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44375 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:38:46.612755 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14043 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:39:37.609294 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44376 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:39:47.608615 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14044 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:40:38.615153 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44377 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:40:48.614474 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29173 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:41:39.621012 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44378 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:41:49.620333 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29174 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:42:40.616872 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44379 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:42:50.626192 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29175 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:43:41.622731 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44380 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:43:51.622052 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29176 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:44:42.628590 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44381 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:44:52.627911 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29177 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:45:43.634449 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44382 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:45:53.633771 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29178 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:46:04.673022 211.13.227.66 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:42614 IpLen:20 DgmLen:84
Type:8  Code:0  ID:7227   Seq:35297  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:46:05.082994 64.124.186.66 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:6335 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63787   Seq:39736  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:46:05.092993 63.219.179.130 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:33063 IpLen:20 DgmLen:84
Type:8  Code:0  ID:16391   Seq:31999  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-04:46:05.162988 208.184.139.82 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:45149 IpLen:20 DgmLen:84
Type:8  Code:0  ID:2932   Seq:17763  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:46:44.630310 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44383 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:46:54.629631 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29179 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:47:45.636169 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44384 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:47:55.635490 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29180 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:48:46.642029 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44385 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:48:56.641350 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29181 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:49:47.637889 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44386 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:49:57.637210 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29182 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:50:48.643749 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44387 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:50:58.643070 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29183 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:51:49.649608 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44388 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:51:59.648929 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29184 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:52:50.655465 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44389 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:53:00.654786 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29185 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:53:51.651323 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44390 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:54:01.650644 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29186 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:54:52.657181 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44391 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:55:02.656502 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29187 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:55:53.653039 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44392 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:56:03.652360 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29188 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:56:54.648897 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44393 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:57:04.658218 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29189 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:57:55.664755 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44394 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:58:05.664076 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29190 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:58:56.670612 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44395 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:59:06.669933 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29191 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-04:59:57.676470 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64061 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:00:07.675791 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29192 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:00:58.672329 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64062 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:01:08.671650 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29193 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:01:59.678187 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64063 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:02:09.677508 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29194 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:03:00.684045 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64064 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:03:10.683366 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29195 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:04:01.679904 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64065 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:04:11.689225 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29196 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:05:02.685763 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64066 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:05:12.685084 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29197 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:06:03.681622 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64067 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:06:13.680943 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29198 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:07:04.687480 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64068 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:07:14.696801 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29199 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:08:05.693339 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64069 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:08:15.692660 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29200 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:09:06.699197 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64070 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:09:16.698519 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29201 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:10:07.705056 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64071 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:10:17.704377 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29202 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:11:08.700916 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64072 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:11:18.710236 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29203 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:12:09.706774 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64073 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:12:19.706096 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29204 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:13:10.712633 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64074 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:13:20.711954 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29205 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:14:11.718492 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64075 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:14:21.717813 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29206 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:15:12.714352 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64076 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:15:22.703674 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29207 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:16:13.710212 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64077 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:16:23.709533 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29208 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:17:14.726070 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64078 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:17:24.725391 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29209 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:18:15.721930 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64079 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:18:25.731251 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29210 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:19:16.727789 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64080 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:19:26.727111 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:29211 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:20:17.733649 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64081 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:20:27.732970 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48877 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:21:18.739508 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64082 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:21:28.738829 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48878 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:22:19.735368 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64083 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:22:29.734690 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48879 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:23:20.741228 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64084 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:23:30.740549 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48880 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:24:21.747087 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64085 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:24:31.746409 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48881 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:25:22.732948 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64086 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:25:32.742269 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48882 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:26:23.738806 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64087 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:26:33.738126 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48883 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:27:24.744661 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64088 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:27:34.743981 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48884 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:28:25.760515 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64089 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:28:35.759836 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48885 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:29:26.756372 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64090 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 267 seconds [**]
11/30-05:29:27.176343 192.168.100.28:32789 -> 63.150.183.46:53
UDP TTL:255 TOS:0x0 ID:63999 IpLen:20 DgmLen:81 DF
Len: 53

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:29:36.755692 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48886 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:30:27.762227 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64091 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:30:37.761548 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48887 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:31:28.768083 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64092 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:31:38.767404 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48888 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:32:29.763939 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64093 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:32:39.773259 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48889 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:33:30.769795 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64094 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:33:40.769116 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48890 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:34:31.775651 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64095 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:34:41.774972 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48891 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:35:32.771508 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64096 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:35:42.770829 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48892 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:36:33.767365 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64097 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:36:43.776685 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48893 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:37:34.783221 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64098 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:37:44.782541 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48894 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:38:35.789077 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64099 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:38:45.788398 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48895 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:39:36.784934 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64100 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:39:46.794254 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48896 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:40:37.790791 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13693 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:40:47.790112 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48897 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:41:38.796648 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13694 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:41:48.795969 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48898 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 33 seconds [**]
11/30-05:41:50.865828 192.168.100.28:32789 -> 192.31.80.30:53
UDP TTL:255 TOS:0x0 ID:21227 IpLen:20 DgmLen:77 DF
Len: 49

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:42:39.802505 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13695 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:42:49.801825 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48899 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:43:40.798360 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13696 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:43:50.797680 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48900 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:44:41.804213 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13697 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:44:51.803534 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48901 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:45:42.800068 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13698 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:45:52.799388 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48902 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:04.318605 216.73.82.10 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:53395 IpLen:20 DgmLen:84
Type:8  Code:0  ID:10245   Seq:21786  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:04.568588 165.193.217.2 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:56172 IpLen:20 DgmLen:84
Type:8  Code:0  ID:9270   Seq:6010  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.028557 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:9404 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:64265  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.058555 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:8532 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:33516  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.078554 64.28.86.226 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:43581 IpLen:20 DgmLen:84
Type:8  Code:0  ID:22903   Seq:47797  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.088553 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:62615 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:16792  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.088553 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:27576 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:39425  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.088553 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:5318 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:20003  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.088553 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:7836 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:61693  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.108551 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:36652 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:58475  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.138549 64.37.246.2 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:20626 IpLen:20 DgmLen:84
Type:8  Code:0  ID:23846   Seq:16204  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.158548 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:54498 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:9214  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.168547 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:24702 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:56975  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-05:46:05.198545 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:32611 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:31428  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:46:43.805922 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13699 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:46:53.815241 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48903 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:47:44.811776 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13700 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:47:54.811096 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48904 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 362 seconds [**]
11/30-05:48:25.549007 192.168.100.28:32789 -> 168.144.1.177:53
UDP TTL:255 TOS:0x0 ID:22671 IpLen:20 DgmLen:65 DF
Len: 37

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:48:45.817630 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13701 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:48:55.816950 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48905 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:49:46.823484 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13702 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:49:56.822805 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48906 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:50:47.809340 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13703 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:50:57.808660 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48907 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:51:48.825194 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13704 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:51:58.824514 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48908 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:52:49.831049 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13705 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:52:59.820370 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48909 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:53:50.826904 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13706 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:54:00.836224 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48910 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:54:51.832759 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13707 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:55:01.832080 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48911 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:55:52.828615 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13708 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:56:02.827935 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48912 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:56:53.844469 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13709 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:57:03.843790 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48913 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:57:54.840325 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13710 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:58:04.839646 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48914 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:58:55.846181 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13711 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:59:05.845501 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48915 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-05:59:56.852036 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13712 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:00:06.851357 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3045 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:00:57.847895 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13713 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:01:07.857215 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3046 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:01:58.853752 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13714 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:02:08.853073 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3047 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:02:59.859610 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13715 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:03:09.858931 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3048 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:04:00.865468 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13716 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:04:10.864789 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3049 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:05:01.861327 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13717 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:05:11.860648 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3050 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:06:02.857186 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13718 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:06:12.856507 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3051 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:07:03.863044 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13719 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:07:13.862365 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3052 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:08:04.868902 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13720 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:08:14.878223 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3053 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:09:05.874760 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13721 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:09:15.874082 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3054 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:10:06.880619 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13722 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:10:16.879940 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3055 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:11:07.886477 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13723 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:11:17.885799 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3056 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:12:08.882337 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13724 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:12:18.881658 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3057 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:13:09.888195 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13725 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:13:19.887516 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3058 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:14:10.894054 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13726 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:14:20.893375 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3059 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:15:11.889913 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13727 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:15:21.889234 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3060 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:16:04.526340 63.123.77.194 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:7726 IpLen:20 DgmLen:84
Type:8  Code:0  ID:11632   Seq:622  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:16:04.876316 203.197.173.129 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:64179 IpLen:20 DgmLen:84
Type:8  Code:0  ID:51201   Seq:50544  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:16:04.996308 208.254.75.130 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:11204 IpLen:20 DgmLen:84
Type:8  Code:0  ID:59759   Seq:51289  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:16:05.066304 65.203.232.2 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:51776 IpLen:20 DgmLen:84
Type:8  Code:0  ID:18029   Seq:20927  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:16:12.885773 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13728 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 90 seconds [**]
11/30-06:16:15.115621 192.168.100.28:32789 -> 193.0.0.193:53
UDP TTL:255 TOS:0x0 ID:53761 IpLen:20 DgmLen:59 DF
Len: 31

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:16:22.885094 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3061 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:17:13.901631 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13729 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:17:23.900952 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3062 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:18:14.907489 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13730 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:18:24.906810 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3063 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 90 seconds [**]
11/30-06:19:15.153398 192.168.100.28:32789 -> 211.216.50.160:53
UDP TTL:255 TOS:0x0 ID:37173 IpLen:20 DgmLen:72 DF
Len: 44

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:19:15.903347 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13731 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:19:25.902668 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3064 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:20:16.909205 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33397 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:20:26.908526 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3065 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:21:17.915063 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33398 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:21:27.914384 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3066 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:22:18.910922 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33399 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:22:28.920242 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3067 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:23:19.916780 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33400 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:23:29.916101 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3068 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:24:20.922638 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33401 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:24:30.921959 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3069 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:25:21.918497 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33402 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:25:31.917819 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3070 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:26:22.914356 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33403 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:26:32.913678 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3071 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:27:23.930214 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33404 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:27:33.929535 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3072 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:28:24.936073 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33405 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:28:34.935394 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3073 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:29:25.941931 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33406 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:29:35.941253 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3074 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:30:26.937791 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33407 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:30:36.937112 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3075 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:31:27.943649 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33408 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:31:37.942971 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3076 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 73 seconds [**]
11/30-06:32:28.949508 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33409 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:32:28.949508 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33409 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:32:38.948829 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3077 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:33:29.945368 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33410 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:33:39.944689 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3078 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:34:30.951226 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33411 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:34:40.950547 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3079 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:35:31.947085 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33412 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:35:41.946406 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3080 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:36:32.962942 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33413 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:36:42.962263 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3081 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:37:33.958800 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33414 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:37:43.958122 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3082 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:38:34.964658 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33415 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:38:44.963979 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3083 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:39:35.970516 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33416 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:39:45.969838 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3084 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:40:36.966375 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33417 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:40:46.965696 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18213 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:41:37.972233 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33418 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:41:47.971555 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18214 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:42:38.978092 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33419 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:42:48.977413 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18215 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:43:39.983950 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33420 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 25 seconds [**]
11/30-06:43:40.433920 192.168.100.28:32789 -> 12.129.72.181:53
UDP TTL:255 TOS:0x0 ID:60591 IpLen:20 DgmLen:64 DF
Len: 36

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:43:49.983271 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18216 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:44:40.979809 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33421 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:44:50.979130 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18217 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:45:41.975668 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33422 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:45:51.974990 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18218 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:07.353945 216.73.82.10 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:1522 IpLen:20 DgmLen:84
Type:8  Code:0  ID:10245   Seq:39195  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:07.603929 203.89.210.82 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:45256 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48197   Seq:35161  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.023900 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:15116 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:14768  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.063897 216.74.133.194 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:5203 IpLen:20 DgmLen:84
Type:8  Code:0  ID:64317   Seq:44910  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.063897 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:49198 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:63610  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.063897 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:64382 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:23630  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.073897 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:27315 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:42960  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.083896 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:43455 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:376  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.143892 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:59139 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:24101  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.143892 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:60919 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:23542  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.153891 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:30234 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:19126  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.153891 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:23390 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:27730  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.173890 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:30931 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:26378  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-06:46:08.203888 211.14.0.99 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:46356 IpLen:20 DgmLen:84
Type:8  Code:0  ID:51816   Seq:2762  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:46:42.981527 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33423 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:46:52.980848 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18219 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:47:43.987385 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33424 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:47:53.986707 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18220 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:48:44.993244 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33425 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:48:54.992565 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18221 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:49:45.999103 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33426 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:49:55.998424 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18222 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:50:47.004962 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33427 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:50:57.004283 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18223 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:51:48.000821 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33428 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:51:58.000142 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18224 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:52:49.006679 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33429 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:52:59.006001 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18225 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:53:50.012538 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33430 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:54:00.011859 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18226 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:54:51.008397 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33431 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:55:01.017718 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18227 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:55:52.004256 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33432 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:56:02.003578 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18228 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:56:53.020114 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33433 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:57:03.019436 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18229 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:57:54.025973 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33434 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:58:04.025294 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18230 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:58:55.021833 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33435 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:59:05.021154 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18231 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-06:59:56.027691 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53101 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:00:06.027013 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18232 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:00:57.033550 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53102 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:01:07.032872 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18233 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:01:58.029410 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53103 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:02:08.038731 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18234 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:02:59.035269 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53104 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:03:09.034590 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18235 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:04:00.041128 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53105 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:04:10.040449 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18236 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:04:26.059362 64.37.246.2 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:521 IpLen:20 DgmLen:84
Type:8  Code:0  ID:23846   Seq:33419  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:04:26.089360 64.28.86.226 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:35668 IpLen:20 DgmLen:84
Type:8  Code:0  ID:22903   Seq:17451  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:04:26.179354 209.68.217.194 -> 192.168.100.28
ICMP TTL:44 TOS:0x0 ID:23572 IpLen:20 DgmLen:84
Type:8  Code:0  ID:55811   Seq:34457  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:04:26.299346 165.193.217.2 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:2468 IpLen:20 DgmLen:84
Type:8  Code:0  ID:9270   Seq:37951  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:05:01.046987 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53106 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:05:11.046309 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18237 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:06:02.032848 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53107 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:06:12.032169 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18238 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:07:03.038707 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53108 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:07:13.048028 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18239 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:08:04.054566 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53109 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:08:14.053887 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18240 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:09:05.050426 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53110 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:09:15.059746 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18241 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:10:06.056285 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53111 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:10:16.055606 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18242 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:11:07.062145 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53112 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:11:17.061466 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18243 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:12:08.058005 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53113 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:12:18.057326 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18244 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:13:09.063864 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53114 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:13:19.063186 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18245 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:14:10.069724 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53115 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:14:20.069045 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18246 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:15:11.075584 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53116 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:15:21.074905 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18247 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:16:12.061445 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53117 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:16:22.070765 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18248 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:17:13.077304 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53118 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:17:23.076625 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18249 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:18:14.083164 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53119 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:18:24.082485 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18250 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:19:15.089023 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53120 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:19:25.088345 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:18251 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:20:16.084884 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53121 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:20:26.084205 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37917 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:21:17.080745 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53122 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:21:27.080066 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37918 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:22:18.096604 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53123 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:22:28.095925 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37919 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:23:19.092465 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53124 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:23:29.101785 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37920 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:24:20.098325 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53125 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:24:30.097646 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37921 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:25:21.104185 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53126 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:25:31.093506 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37922 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:26:22.100031 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53127 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:26:32.099349 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37923 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:27:23.105874 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53128 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:27:33.105193 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37924 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:28:24.111718 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53129 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:28:34.111037 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37925 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:29:25.117563 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53130 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:29:35.116882 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37926 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:30:26.113408 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53131 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:30:36.122726 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37927 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:31:27.109254 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53132 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:31:37.108573 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37928 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:32:28.125098 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53133 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:32:38.124417 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37929 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:33:29.130944 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53134 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:33:39.130263 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37930 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:34:30.126790 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53135 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:34:40.126109 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37931 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.753887 208.254.75.130 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:31366 IpLen:20 DgmLen:84
Type:8  Code:0  ID:59759   Seq:41108  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.833882 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:35170 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:13263  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.843881 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:2937 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:52766  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.843881 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:404 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:1114  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.863880 63.123.77.194 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:24026 IpLen:20 DgmLen:84
Type:8  Code:0  ID:11632   Seq:18059  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.893878 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:34159 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:47439  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.893878 216.73.82.10 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:43716 IpLen:20 DgmLen:84
Type:8  Code:0  ID:10245   Seq:33996  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.893878 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:40126 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:13850  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.903877 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:40277 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:28737  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:12.913876 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:59114 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:57803  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:13.003870 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:44177 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:28677  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:13.023869 206.65.191.194 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:44948 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56347   Seq:4312  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:13.073866 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:48111 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:19188  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:13.123862 202.130.158.130 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:8903 IpLen:20 DgmLen:84
Type:8  Code:0  ID:19058   Seq:56084  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-07:35:13.153860 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:11718 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:2880  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:35:31.122637 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53136 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:35:41.121956 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37932 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:36:32.128483 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53137 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:36:42.127802 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37933 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:37:33.134329 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53138 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:37:43.143648 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37934 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:38:34.140176 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53139 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:38:44.139495 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37935 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:39:35.146023 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:53140 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:39:45.145342 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37936 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:40:36.151870 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2733 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:40:46.151189 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37937 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:41:37.137719 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2734 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:41:47.137038 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37938 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:42:38.153566 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2735 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:42:48.152885 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37939 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:43:39.159415 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2736 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:43:49.158735 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37940 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:44:40.155266 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2737 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:44:50.164585 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37941 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:45:41.161116 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2738 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:45:51.160436 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37942 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:46:42.166967 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2739 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:46:52.166287 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37943 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:47:43.172818 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2740 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:47:53.172138 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37944 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:48:44.168670 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2741 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:48:54.167990 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37945 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:49:45.174521 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2742 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:49:55.173841 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37946 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:50:46.180373 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2743 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:50:56.179693 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37947 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 630 seconds [**]
11/30-07:51:45.786323 192.168.100.28:32789 -> 168.95.1.14:53
UDP TTL:255 TOS:0x0 ID:16973 IpLen:20 DgmLen:73 DF
Len: 45

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:51:47.176228 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2744 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:51:57.185548 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37948 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:52:48.182084 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2745 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:52:58.181404 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37949 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:53:49.187939 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2746 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:53:59.187260 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37950 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:54:50.193795 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2747 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:55:00.193116 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37951 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:55:51.189652 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2748 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:56:01.188972 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37952 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:56:52.195508 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2749 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:57:02.194829 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37953 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:57:53.201364 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2750 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:58:03.200685 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37954 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:58:54.197221 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2751 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:59:04.206542 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:37955 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-07:59:55.203077 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2752 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:00:05.202397 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57621 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:00:56.208929 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2753 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:01:06.208250 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57622 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:01:57.214783 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2754 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:02:07.214103 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57623 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:02:58.210637 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2755 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:03:08.209957 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57624 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:03:59.216490 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2756 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:04:09.215811 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57625 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:05:00.222344 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2757 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:05:10.221665 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57626 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:06:01.218199 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2758 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:06:11.217520 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57627 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:07:02.214054 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2759 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:07:12.223374 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57628 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:08:03.219909 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2760 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:08:13.229229 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57629 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:09:04.235771 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2761 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:09:14.235093 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57630 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:10:05.231635 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2762 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:10:15.230957 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57631 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:11:06.237498 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2763 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:11:16.236820 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57632 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:12:07.243361 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2764 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:12:17.242683 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57633 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:13:08.239225 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2765 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:13:18.248547 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57634 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 73 seconds [**]
11/30-08:13:20.958363 192.168.100.28:32789 -> 207.46.138.20:53
UDP TTL:255 TOS:0x0 ID:1363 IpLen:20 DgmLen:58 DF
Len: 30

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:14:09.245089 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2766 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:14:19.244411 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57635 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:15:10.250952 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2767 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:15:20.250274 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57636 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:16:11.246816 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2768 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:16:21.246138 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57637 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:17:12.252680 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2769 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:17:22.252003 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57638 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:18:13.258546 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2770 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:18:23.257868 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57639 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:19:14.264412 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:2771 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:19:24.263734 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57640 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:20:15.270277 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22437 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:20:25.269599 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57641 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:21:16.266143 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22438 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:21:26.265466 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57642 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:22:17.272009 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22439 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:22:27.271331 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57643 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:23:18.277874 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22440 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:23:28.277196 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57644 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:24:19.273740 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22441 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:24:29.273063 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57645 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:25:20.279605 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22442 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:25:30.268927 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57646 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:26:21.275464 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22443 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:26:31.274786 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57647 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:27:22.271324 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22444 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:27:32.280644 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57648 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:28:23.287182 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22445 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:28:33.286503 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57649 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:29:24.293041 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22446 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:29:34.292362 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57650 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:30:25.298900 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22447 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:30:35.298221 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57651 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:31:26.294760 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22448 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:31:36.294081 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57652 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:32:27.300619 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22449 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:32:37.299940 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57653 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:33:28.306478 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22450 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:33:38.305799 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57654 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:34:29.302338 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22451 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:34:39.311658 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57655 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.029370 193.214.57.194 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:32309 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48744   Seq:8881  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.029370 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:6359 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:56451  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.049369 216.73.82.10 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:38037 IpLen:20 DgmLen:84
Type:8  Code:0  ID:10245   Seq:41107  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.059368 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:32729 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:55272  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.079366 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:39301 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:60210  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.079366 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:19713 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:32333  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.079366 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:27624 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:25023  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.089366 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:6905 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:38446  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.099365 216.73.84.10 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:29778 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44301   Seq:6991  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.099365 208.225.197.194 -> 192.168.100.28
ICMP TTL:45 TOS:0x0 ID:38990 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:21905  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.099365 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:21743 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:58398  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.159361 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:65339 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:37063  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.159361 216.73.83.10 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:8877 IpLen:20 DgmLen:84
Type:8  Code:0  ID:21815   Seq:30570  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.169360 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:56169 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:28585  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-08:35:13.189359 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:16155 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:62426  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:35:30.298198 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22452 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:35:40.297519 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57656 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:36:31.304057 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22453 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:36:41.313378 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57657 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:37:32.319916 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22454 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:37:42.319237 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57658 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:38:33.315776 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22455 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:38:43.315097 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57659 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:39:34.321635 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22456 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:39:44.320956 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:57660 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:40:35.327495 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22457 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:40:45.326816 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7253 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:41:36.323355 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22458 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:41:46.332675 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7254 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:42:37.329215 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22459 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:42:47.328537 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7255 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:43:38.335076 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22460 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:43:48.334398 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7256 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:44:39.340938 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22461 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:44:49.340260 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7257 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:45:40.336800 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22462 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:45:50.336122 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7258 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:46:41.332662 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22463 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:46:51.331984 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7259 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:47:42.348523 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22464 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:47:52.347845 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7260 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:48:43.344385 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22465 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:48:53.353706 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7261 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:49:44.350247 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22466 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:49:54.349569 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7262 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:50:45.356108 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22467 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:50:55.355430 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7263 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:51:46.361970 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22468 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:51:56.361292 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7264 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:52:47.357832 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22469 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:52:57.347155 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7265 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:53:48.363694 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22470 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:53:58.363015 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7266 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:54:49.369555 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22471 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:54:59.368877 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7267 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:55:50.355418 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22472 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:56:00.364739 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7268 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:56:51.361280 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22473 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:57:01.370601 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7269 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:57:52.377141 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22474 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:58:02.376463 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7270 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:58:53.383003 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22475 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:59:03.382324 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7271 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-08:59:54.378859 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:22476 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:00:04.378179 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7272 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:00:55.384710 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37605 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:01:05.384029 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7273 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:01:56.390560 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37606 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:02:06.389880 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7274 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:02:57.386412 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37607 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:03:07.395731 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7275 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:03:58.392263 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37608 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:04:08.391583 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7276 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:04:59.398115 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37609 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:05:09.397435 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7277 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:06:00.393967 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37610 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:06:10.393287 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7278 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:07:01.399819 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37611 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:07:11.399139 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7279 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:08:02.405671 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37612 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:08:12.404991 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7280 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:09:03.411523 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37613 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:09:13.410843 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7281 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:10:04.407375 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37614 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:10:14.416695 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7282 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:11:05.413228 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37615 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:11:15.412548 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7283 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:12:06.419080 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37616 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:12:16.418400 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7284 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:13:07.424933 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37617 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:13:17.424253 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7285 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:14:08.420786 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37618 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:14:18.420106 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7286 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:15:09.426639 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37619 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:15:19.425959 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7287 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:16:10.422493 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37620 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:16:20.421813 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7288 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 360 seconds [**]
11/30-09:16:46.350050 192.168.100.28:32789 -> 193.0.0.193:53
UDP TTL:255 TOS:0x0 ID:5475 IpLen:20 DgmLen:72 DF
Len: 44

[**] [1:402:4] ICMP Destination Unreachable (Port Unreachable) [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:16:46.770022 193.205.245.8 -> 192.168.100.28
ICMP TTL:236 TOS:0x0 ID:61210 IpLen:20 DgmLen:56 DF
Type:3  Code:3  DESTINATION UNREACHABLE: PORT UNREACHABLE
** ORIGINAL DATAGRAM DUMP:
192.168.100.28:32789 -> 193.205.245.8:53
UDP TTL:234 TOS:0x0 ID:5655 IpLen:20 DgmLen:56 DF
Len: 28
** END OF DUMP

[**] [1:402:4] ICMP Destination Unreachable (Port Unreachable) [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:16:50.659758 193.205.245.8 -> 192.168.100.28
ICMP TTL:236 TOS:0x0 ID:62200 IpLen:20 DgmLen:56 DF
Type:3  Code:3  DESTINATION UNREACHABLE: PORT UNREACHABLE
** ORIGINAL DATAGRAM DUMP:
192.168.100.28:32789 -> 193.205.245.8:53
UDP TTL:234 TOS:0x0 ID:5656 IpLen:20 DgmLen:56 DF
Len: 28
** END OF DUMP

[**] [1:402:4] ICMP Destination Unreachable (Port Unreachable) [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:16:58.669213 193.205.245.8 -> 192.168.100.28
ICMP TTL:236 TOS:0x0 ID:64323 IpLen:20 DgmLen:56 DF
Type:3  Code:3  DESTINATION UNREACHABLE: PORT UNREACHABLE
** ORIGINAL DATAGRAM DUMP:
192.168.100.28:32789 -> 193.205.245.8:53
UDP TTL:234 TOS:0x0 ID:5657 IpLen:20 DgmLen:56 DF
Len: 28
** END OF DUMP

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:17:11.428346 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37621 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:17:21.427666 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7289 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:18:12.434199 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37622 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:18:22.433519 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7290 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:19:13.440052 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37623 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:19:23.439373 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:7291 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:20:14.445906 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37624 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:20:24.445226 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26957 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:21:15.441760 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37625 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:21:25.441081 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26958 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:22:16.447614 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37626 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:22:26.446935 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26959 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:23:17.453468 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37627 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:23:27.452788 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26960 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:24:18.449323 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37628 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:24:28.458642 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26961 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 333 seconds [**]
11/30-09:25:19.455177 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37629 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:25:19.455177 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37629 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:25:29.454497 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26962 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:26:20.461031 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37630 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:26:30.460352 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26963 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:27:21.466885 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37631 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 5 seconds [**]
11/30-09:27:21.486884 192.168.100.28:32789 -> 200.33.146.217:53
UDP TTL:255 TOS:0x0 ID:50761 IpLen:20 DgmLen:78 DF
Len: 50

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:27:31.466206 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26964 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:28:22.462741 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37632 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:28:32.462061 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26965 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:29:23.468595 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37633 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:29:33.467916 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26966 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 3 seconds [**]
11/30-09:30:19.044819 192.168.100.28:32789 -> 192.12.94.30:53
UDP TTL:255 TOS:0x0 ID:59574 IpLen:20 DgmLen:61 DF
Len: 33

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:30:24.474450 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37634 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:30:34.473770 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26967 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:31:25.480305 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37635 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:31:35.479625 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26968 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 23 seconds [**]
11/30-09:32:09.817292 192.168.100.28:32789 -> 217.12.4.104:53
UDP TTL:255 TOS:0x0 ID:11391 IpLen:20 DgmLen:75 DF
Len: 47

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:32:26.476160 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37636 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:32:36.475481 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26969 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 20 targets 21 ports in 58 seconds [**]
11/30-09:32:44.894909 192.168.100.28:32789 -> 208.211.225.10:53
UDP TTL:255 TOS:0x0 ID:8138 IpLen:20 DgmLen:65 DF
Len: 37

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:33:27.482015 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37637 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 20 seconds [**]
11/30-09:33:36.181426 192.168.100.28:32789 -> 212.113.82.90:53
UDP TTL:255 TOS:0x0 ID:32225 IpLen:20 DgmLen:59 DF
Len: 31

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:33:37.481338 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26970 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:34:28.487884 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37638 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:34:38.487208 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26971 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 6 seconds [**]
11/30-09:34:45.016765 192.168.100.28:32789 -> 209.1.235.120:53
UDP TTL:255 TOS:0x0 ID:35509 IpLen:20 DgmLen:59 DF
Len: 31

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:12.914877 216.73.82.10 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:28022 IpLen:20 DgmLen:84
Type:8  Code:0  ID:10245   Seq:21838  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.104864 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:23564 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:8389  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.124863 209.164.7.66 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:2447 IpLen:20 DgmLen:84
Type:8  Code:0  ID:8709   Seq:46150  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.144861 203.199.107.187 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:46059 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:45990  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.154861 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:51264 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:27100  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.154861 66.236.129.66 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:33069 IpLen:20 DgmLen:84
Type:8  Code:0  ID:39175   Seq:50344  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.164860 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:18627 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:19800  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.164860 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:3859 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:47441  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.174859 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:48989 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:58197  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.174859 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:5281 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:9208  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.174859 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:58941 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:65371  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.174859 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:17016 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:27900  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.194858 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:15704 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:28828  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-09:35:13.274852 202.54.111.72 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:57561 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:54569  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:35:29.473756 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37639 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:35:39.473079 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26972 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 58 seconds [**]
11/30-09:36:10.280993 192.168.100.28:53 -> 148.244.153.91:3018
UDP TTL:255 TOS:0x0 ID:59745 IpLen:20 DgmLen:199 DF
Len: 171

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:36:30.479625 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37640 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:36:40.478948 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26973 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:37:31.485495 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37641 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:37:41.494817 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26974 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 7 ports in 67 seconds [**]
11/30-09:37:46.544476 192.168.100.28:32789 -> 192.168.100.72:53
UDP TTL:255 TOS:0x0 ID:29144 IpLen:20 DgmLen:87 DF
Len: 59

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:38:32.501364 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37642 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:38:42.500687 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26975 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:39:33.497234 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:37643 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:39:43.496557 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26976 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:40:34.503103 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57309 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:40:44.502426 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26977 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 7 ports in 108 seconds [**]
11/30-09:40:58.981446 192.168.100.28:32789 -> 63.250.206.138:53
UDP TTL:255 TOS:0x0 ID:11536 IpLen:20 DgmLen:59 DF
Len: 31

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:41:35.508973 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57310 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:41:45.508296 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26978 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:42:36.514842 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57311 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:42:46.514165 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26979 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:43:37.510711 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57312 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 4 seconds [**]
11/30-09:43:39.360586 192.168.100.28:32789 -> 4.2.49.2:53
UDP TTL:255 TOS:0x0 ID:45541 IpLen:20 DgmLen:62 DF
Len: 34

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:43:47.510034 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26980 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:44:38.516580 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57313 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:44:48.515903 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26981 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:45:39.512450 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57314 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:45:49.511773 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26982 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 67 seconds [**]
11/30-09:45:59.921068 192.168.100.28:32789 -> 160.45.10.13:53
UDP TTL:255 TOS:0x0 ID:55029 IpLen:20 DgmLen:63 DF
Len: 35

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:46:40.508319 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57315 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:46:50.507642 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26983 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:47:41.524187 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57316 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:47:51.523510 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26984 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:48:42.530056 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57317 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:48:52.529378 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26985 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:49:43.525925 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57318 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:49:53.535247 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26986 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:50:44.531792 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57319 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:50:54.531115 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26987 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:51:45.537657 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57320 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:51:55.536979 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26988 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:52:46.543521 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57321 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:52:56.542843 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26989 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:53:47.539386 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57322 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:53:57.548708 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26990 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:54:48.545251 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57323 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:54:58.544573 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26991 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:55:49.541116 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57324 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:55:59.540438 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26992 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:56:50.546980 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57325 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:57:00.556301 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26993 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:57:51.552844 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57326 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:58:01.552166 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26994 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:58:52.558708 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57327 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:59:02.558030 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:26995 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-09:59:53.564572 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57328 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:00:03.563894 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46661 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:00:54.550438 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57329 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:01:04.549760 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46662 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:01:55.556302 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57330 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:02:05.555624 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46663 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:02:56.572165 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57331 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:03:06.571487 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46664 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:03:57.568030 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57332 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:04:07.577351 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46665 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:04:58.573894 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57333 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:05:08.573216 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46666 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:12.872924 208.225.197.194 -> 192.168.100.28
ICMP TTL:45 TOS:0x0 ID:34767 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:10788  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:13.062912 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:53267 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:26072  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:13.082910 216.74.133.194 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:36958 IpLen:20 DgmLen:84
Type:8  Code:0  ID:64317   Seq:45000  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:13.192903 211.14.0.99 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:9380 IpLen:20 DgmLen:84
Type:8  Code:0  ID:51816   Seq:8832  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:13.292896 203.89.210.82 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:65265 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48197   Seq:56616  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:15.412752 64.124.186.66 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:24461 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63787   Seq:34165  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.112705 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:13570 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:62735  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.112705 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:2853 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:49402  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.122704 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:3860 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:97  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.132703 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:65091 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:22923  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.132703 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:8229 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:44891  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.132703 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:32680 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:16479  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.142703 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:59231 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:27352  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.192699 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:24789 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:2446  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.212698 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:29475 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:26109  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:05:16.222697 62.4.74.66 -> 192.168.100.28
ICMP TTL:46 TOS:0x0 ID:18134 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36110   Seq:63142  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:05:59.569759 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57334 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:06:09.569081 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46667 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:07:00.575622 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57335 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:07:10.574945 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46668 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:08:01.581486 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57336 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:08:11.580808 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46669 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:09:02.587349 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57337 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:09:12.586671 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46670 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:10:03.593211 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57338 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:10:13.592533 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46671 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:11:04.589075 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57339 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:11:14.598396 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46672 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:12:05.594937 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57340 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:12:15.594259 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46673 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:13:06.600800 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57341 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:13:16.600122 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46674 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:14:07.606663 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57342 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:14:17.605984 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46675 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:15:08.602526 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57343 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:15:18.601848 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46676 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:16:09.598389 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57344 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:16:19.597711 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46677 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:17:10.604252 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57345 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:17:20.603574 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46678 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:18:11.610114 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57346 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:18:21.609436 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46679 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:19:12.615977 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:57347 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:19:22.615299 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46680 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:20:13.621840 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11477 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:20:23.621162 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46681 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:21:14.627702 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11478 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:21:24.627024 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46682 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:22:15.623566 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11479 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:22:25.622887 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46683 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:23:16.629428 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11480 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:23:26.628750 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46684 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:24:17.635291 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11481 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:24:27.634612 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46685 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:25:18.631149 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11482 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:25:28.640469 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46686 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:26:19.627004 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11483 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:26:29.626324 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46687 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 149 seconds [**]
11/30-10:26:46.765159 192.168.100.28:32789 -> 151.164.1.1:53
UDP TTL:255 TOS:0x0 ID:11381 IpLen:20 DgmLen:85 DF
Len: 57

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:27:20.632858 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11484 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:27:30.632178 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46688 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:28:21.648711 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11485 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:28:31.648032 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46689 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:29:22.644566 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11486 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:29:32.643887 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46690 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:30:23.650421 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11487 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:30:33.649741 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46691 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:31:24.646276 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11488 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:31:34.645597 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46692 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:32:25.652131 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11489 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:32:35.661451 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46693 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:33:26.657986 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11490 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:33:36.657306 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46694 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:34:27.663840 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11491 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:34:37.663161 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46695 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:35:13.000760 216.73.82.10 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:14678 IpLen:20 DgmLen:84
Type:8  Code:0  ID:10245   Seq:39167  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:35:13.180748 202.130.158.130 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:3083 IpLen:20 DgmLen:84
Type:8  Code:0  ID:19058   Seq:45944  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:35:13.850702 208.254.75.130 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:46996 IpLen:20 DgmLen:84
Type:8  Code:0  ID:59759   Seq:11515  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:35:13.920698 65.203.232.2 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:63827 IpLen:20 DgmLen:84
Type:8  Code:0  ID:18029   Seq:49561  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:35:13.960695 63.123.77.194 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:38263 IpLen:20 DgmLen:84
Type:8  Code:0  ID:11632   Seq:11964  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:35:28.669695 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11492 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:35:38.659017 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46696 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:36:29.655552 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11493 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:36:39.664872 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46697 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:37:30.671406 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11494 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:37:40.670727 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46698 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 173 seconds [**]
11/30-10:38:05.889014 192.168.100.28:32789 -> 192.31.80.30:53
UDP TTL:255 TOS:0x0 ID:35111 IpLen:20 DgmLen:65 DF
Len: 37

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:38:31.677262 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11495 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:38:41.676582 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46699 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:39:32.673118 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11496 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:39:42.682438 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:46700 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:40:33.678973 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11497 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:40:43.678294 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61829 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:41:34.684829 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11498 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:41:44.684150 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61830 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:42:35.690690 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11499 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:42:45.690012 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61831 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:43:36.686554 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11500 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:43:46.685876 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61832 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 38 seconds [**]
11/30-10:43:56.805190 192.168.100.28:32789 -> 16.1.0.18:53
UDP TTL:255 TOS:0x0 ID:58331 IpLen:20 DgmLen:64 DF
Len: 36

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:44:37.692418 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11501 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:44:47.691740 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61833 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:45:38.698281 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11502 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:45:48.697603 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61834 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 1 seconds [**]
11/30-10:45:56.337085 192.168.100.28:32789 -> 208.211.225.10:53
UDP TTL:255 TOS:0x0 ID:46789 IpLen:20 DgmLen:64 DF
Len: 36

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:45:57.037038 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:7311 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:61992  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:45:57.087034 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:53085 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:25757  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:45:57.097033 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:32135 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:8866  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:45:57.097033 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:41266 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:45479  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:45:57.097033 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:2405 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:21926  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:45:57.107033 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:41664 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:46850  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:45:57.167029 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:9355 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:58146  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:45:57.177028 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:13443 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:54089  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-10:45:57.207026 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:3222 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:8255  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:46:39.694145 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11503 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:46:49.703466 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61835 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 2 seconds [**]
11/30-10:47:17.821560 192.168.100.28:32789 -> 194.246.96.79:53
UDP TTL:255 TOS:0x0 ID:62733 IpLen:20 DgmLen:60 DF
Len: 32

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:47:40.700008 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11504 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:47:50.699330 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61836 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 21 targets 21 ports in 46 seconds [**]
11/30-10:48:01.348608 192.168.100.28:32789 -> 192.35.51.30:53
UDP TTL:255 TOS:0x0 ID:58390 IpLen:20 DgmLen:65 DF
Len: 37

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:48:41.705871 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11505 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:48:51.705193 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61837 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:49:42.711735 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11506 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:49:52.711057 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61838 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:50:43.707599 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11507 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:50:53.706920 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61839 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:51:44.713462 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11508 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:51:54.712784 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61840 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:52:45.719325 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11509 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:52:55.718647 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61841 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:53:46.715189 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11510 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:53:56.724510 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61842 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 8 seconds [**]
11/30-10:54:13.883346 192.168.100.28:32789 -> 193.0.0.237:53
UDP TTL:255 TOS:0x0 ID:20021 IpLen:20 DgmLen:60 DF
Len: 32

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 20 targets 21 ports in 20 seconds [**]
11/30-10:54:25.322571 192.168.100.28:32789 -> 192.12.94.30:53
UDP TTL:255 TOS:0x0 ID:35005 IpLen:20 DgmLen:67 DF
Len: 39

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:54:47.721052 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11511 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:54:57.720374 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61843 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:55:48.716916 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11512 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:55:58.716237 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61844 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 90 seconds [**]
11/30-10:56:47.052960 192.168.100.28:32789 -> 140.135.18.25:53
UDP TTL:255 TOS:0x0 ID:42109 IpLen:20 DgmLen:67 DF
Len: 39

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:56:49.732778 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11513 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:56:59.732100 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61845 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:57:50.728642 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11514 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:58:00.727964 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61846 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:58:51.734505 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11515 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:59:01.733825 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61847 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-10:59:52.740358 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:11516 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:00:02.739678 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61848 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:00:53.746211 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26645 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:01:03.745531 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61849 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:01:54.742065 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26646 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:02:04.741385 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61850 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:02:55.747918 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26647 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:03:05.747238 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61851 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:03:56.753771 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26648 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:04:06.753091 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61852 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:04:57.749625 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26649 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:05:07.158986 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61853 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:05:13.078583 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:44693 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:5234  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:05:13.108581 66.236.129.66 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:28769 IpLen:20 DgmLen:84
Type:8  Code:0  ID:39175   Seq:7602  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:05:13.268570 202.54.111.72 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:3917 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:48570  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:05:13.318567 203.199.107.187 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:5376 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:30792  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:05:13.408561 203.197.173.129 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:42380 IpLen:20 DgmLen:84
Type:8  Code:0  ID:51201   Seq:9790  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:05:56.745615 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26650 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:06:06.744936 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61854 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:06:57.751469 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26651 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:07:07.750789 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61855 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:07:58.747323 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26652 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:08:08.766642 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61856 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:08:59.753177 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26653 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:09:09.762497 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61857 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:10:00.759031 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26654 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:10:10.768351 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61858 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:11:01.764885 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26655 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:11:11.764206 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61859 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:12:02.760740 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26656 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:12:12.770060 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61860 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:13:03.766595 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26657 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:13:13.775915 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61861 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:14:04.782449 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26658 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:14:14.781769 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61862 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:15:05.778304 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26659 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:15:15.787624 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61863 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:16:06.774161 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26660 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:16:16.773483 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61864 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:17:07.780027 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26661 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:17:17.779349 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61865 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:18:08.795892 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26662 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:18:18.795214 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61866 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:19:09.791759 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26663 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:19:19.791081 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:61867 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:20:10.797625 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26664 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:20:20.796947 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:13997 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:21:11.803490 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26665 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:21:21.802813 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:13998 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:22:12.799357 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26666 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:22:22.808678 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:13999 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:23:13.805222 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26667 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:23:23.804545 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14000 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:24:14.811088 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26668 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:24:24.810410 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14001 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:25:15.816954 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26669 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:25:25.816276 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14002 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:26:16.812820 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26670 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:26:26.812142 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14003 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:27:17.818685 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26671 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:27:27.818007 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14004 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:28:18.824551 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26672 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:28:28.823873 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14005 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:29:19.830416 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26673 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:29:29.829738 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14006 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:30:20.826282 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26674 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:30:30.825604 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14007 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:31:21.832147 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26675 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:31:31.831469 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14008 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:32:22.838012 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26676 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:32:32.837335 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14009 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 1645 seconds [**]
11/30-11:32:37.816997 192.168.100.28:32789 -> 216.39.68.40:53
UDP TTL:255 TOS:0x0 ID:30081 IpLen:20 DgmLen:59 DF
Len: 31

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.066980 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:33596 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:43921  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.076979 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:55374 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:30131  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.096978 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:6642 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:57380  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.106977 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:48370 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:2597  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.116977 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:48233 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:11250  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.136975 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:62911 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:26628  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.136975 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:34016 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:22925  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.166973 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:40886 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:30646  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.206971 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:26092 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:21881  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:384:4] ICMP PING [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.206971 216.34.88.17 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:19862 IpLen:20 DgmLen:64
Type:8  Code:0  ID:38671   Seq:0  ECHO

[**] [1:384:4] ICMP PING [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.226969 64.14.42.16 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:9608 IpLen:20 DgmLen:64
Type:8  Code:0  ID:18665   Seq:0  ECHO

[**] [1:384:4] ICMP PING [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.246968 216.39.69.65 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:2381 IpLen:20 DgmLen:64
Type:8  Code:0  ID:62267   Seq:0  ECHO

[**] [1:384:4] ICMP PING [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.276966 216.34.88.17 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:19864 IpLen:20 DgmLen:64
Type:8  Code:0  ID:38671   Seq:256  ECHO

[**] [1:384:4] ICMP PING [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.316963 216.39.69.65 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:2385 IpLen:20 DgmLen:64
Type:8  Code:0  ID:62267   Seq:256  ECHO

[**] [1:384:4] ICMP PING [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.316963 64.14.42.16 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:9609 IpLen:20 DgmLen:64
Type:8  Code:0  ID:18665   Seq:256  ECHO

[**] [1:384:4] ICMP PING [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.346961 216.34.88.17 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:19868 IpLen:20 DgmLen:64
Type:8  Code:0  ID:38671   Seq:512  ECHO

[**] [1:384:4] ICMP PING [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.396958 216.39.69.65 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:2391 IpLen:20 DgmLen:64
Type:8  Code:0  ID:62267   Seq:512  ECHO

[**] [1:384:4] ICMP PING [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:32:38.416956 64.14.42.16 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:9611 IpLen:20 DgmLen:64
Type:8  Code:0  ID:18665   Seq:512  ECHO

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:33:23.833880 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26677 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:33:33.833203 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14010 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:34:24.839750 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26678 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:34:34.839073 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14011 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:35:25.845619 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26679 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:35:35.844942 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14012 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:36:26.851489 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26680 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:36:36.850812 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14013 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:37:27.847359 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26681 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:37:37.846682 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14014 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:38:28.853228 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26682 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:38:38.852551 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14015 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:39:29.859097 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:26683 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:39:39.858420 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14016 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:40:30.864966 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44349 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:40:40.854290 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14017 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:41:31.860836 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44350 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:41:41.860159 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14018 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:42:32.866705 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44351 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:42:42.866028 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14019 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:43:33.872573 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44352 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:43:43.871896 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14020 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:44:34.868443 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44353 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:44:41.088022 216.73.83.10 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:12665 IpLen:20 DgmLen:84
Type:8  Code:0  ID:21815   Seq:35440  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:44:41.108020 216.73.84.10 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:64442 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44301   Seq:11539  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:44:41.118020 64.124.186.66 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:325 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63787   Seq:15105  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:44:41.138018 202.160.241.130 -> 192.168.100.28
ICMP TTL:46 TOS:0x0 ID:60413 IpLen:20 DgmLen:84
Type:8  Code:0  ID:28162   Seq:3224  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:44:41.437998 202.144.78.2 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:27430 IpLen:20 DgmLen:84
Type:8  Code:0  ID:35167   Seq:11158  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:44:44.867766 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14021 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:45:35.874311 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44354 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:45:45.873634 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14022 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:46:36.880180 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44355 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:46:46.879503 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14023 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:47:37.876049 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44356 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:47:47.885371 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14024 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:48:38.881917 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44357 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:48:48.881240 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14025 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:49:39.887785 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44358 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:49:49.887108 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14026 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:50:40.893652 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44359 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:50:50.892974 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14027 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:51:41.899517 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44360 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:51:51.888840 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14028 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:52:42.895383 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44361 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:52:52.894705 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14029 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:53:43.901248 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44362 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:53:53.900570 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14030 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 11 seconds [**]
11/30-11:54:25.298442 192.168.100.28:32789 -> 216.52.244.144:53
UDP TTL:255 TOS:0x0 ID:26771 IpLen:20 DgmLen:64 DF
Len: 36

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:54:44.897113 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44363 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:54:54.906435 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14031 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:55:45.902978 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44364 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:55:55.902301 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14032 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:56:46.898844 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44365 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:56:56.898166 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14033 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:57:47.914708 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44366 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:57:57.914030 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14034 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:58:09.083273 66.28.47.162 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:9334 IpLen:20 DgmLen:84
Type:8  Code:0  ID:44033   Seq:34036  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:58:09.103272 209.164.7.66 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:50483 IpLen:20 DgmLen:84
Type:8  Code:0  ID:8709   Seq:46396  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:58:09.143269 66.28.34.130 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:20955 IpLen:20 DgmLen:84
Type:8  Code:0  ID:52481   Seq:38286  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:58:09.163268 66.236.129.66 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:6849 IpLen:20 DgmLen:84
Type:8  Code:0  ID:39175   Seq:34628  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:58:09.343256 203.199.107.187 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:31538 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:35752  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-11:58:09.363254 202.54.111.72 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:21966 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:30991  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:58:48.910574 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44367 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:58:58.909896 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:14035 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:59:49.916438 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44368 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-11:59:59.915761 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33701 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:00:50.922303 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44369 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:01:00.921625 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33702 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:01:51.918168 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44370 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:02:01.927490 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33703 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:02:52.924033 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44371 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:03:02.923355 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33704 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:03:53.929898 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44372 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:04:03.929220 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33705 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:04:54.935762 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44373 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:05:04.935085 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33706 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:05:55.931628 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44374 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:06:05.930950 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33707 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:06:56.937492 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44375 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:07:06.936814 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33708 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:07:57.943359 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44376 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:08:07.942681 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33709 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:08:58.939226 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44377 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:09:08.948548 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33710 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:09:59.945093 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44378 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:10:09.944416 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33711 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 250 seconds [**]
11/30-12:10:57.311207 192.168.100.28:32789 -> 205.188.132.235:53
UDP TTL:255 TOS:0x0 ID:35701 IpLen:20 DgmLen:59 DF
Len: 31

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:11:00.950960 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44379 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:11:10.950283 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33712 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:12:01.956827 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44380 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:12:11.956150 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33713 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:13:02.952695 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44381 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:13:12.952017 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33714 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:14:03.958561 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44382 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:14:13.957884 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33715 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:15:04.964428 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44383 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:15:14.963751 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33716 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 7 ports in 180 seconds [**]
11/30-12:15:47.551543 192.168.100.28:32789 -> 192.112.36.4:53
UDP TTL:255 TOS:0x0 ID:63787 IpLen:20 DgmLen:73 DF
Len: 45

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 1 seconds [**]
11/30-12:15:51.221294 192.168.100.28:32789 -> 192.83.166.11:53
UDP TTL:255 TOS:0x0 ID:1921 IpLen:20 DgmLen:60 DF
Len: 32

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:16:05.960295 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44384 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:16:15.969617 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33717 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:17:06.966162 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44385 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:17:16.965484 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33718 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:18:07.972028 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44386 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:18:17.971351 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33719 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:19:08.977895 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:44387 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:19:18.977217 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33720 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:20:09.983761 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64053 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:20:19.973084 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33721 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:21:10.979628 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64054 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:21:20.978950 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33722 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:22:11.985494 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64055 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:22:21.984817 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33723 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:23:12.981361 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64056 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:23:22.990683 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33724 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:24:13.987227 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64057 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:24:23.986551 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33725 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:25:14.993102 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64058 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:25:24.992426 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33726 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:26:15.988979 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64059 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:26:25.988302 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33727 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:27:16.984854 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64060 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:27:26.984178 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33728 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:28:18.000729 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64061 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:28:28.000053 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33729 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:29:19.006604 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64062 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:29:29.005927 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33730 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:30:20.002479 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64063 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:30:30.011802 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33731 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:31:20.998354 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64064 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:31:30.997678 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33732 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:32:22.014228 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64065 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:32:32.013551 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33733 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:33:23.020102 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64066 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:33:33.019425 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33734 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:34:24.015976 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64067 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:34:34.015300 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33735 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:35:25.021850 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64068 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:35:35.021174 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33736 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:36:26.027724 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64069 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:36:36.027047 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33737 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:37:27.033597 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64070 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 538 seconds [**]
11/30-12:37:34.903065 192.168.100.28:53 -> 148.244.153.91:3052
UDP TTL:255 TOS:0x0 ID:26443 IpLen:20 DgmLen:398 DF
Len: 370

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:37:37.032921 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33738 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:38:28.029471 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64071 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:38:38.028795 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33739 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:39:29.035344 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64072 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:39:39.034668 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:33740 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:40:30.041217 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64073 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:40:40.040541 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48869 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:41:31.037090 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64074 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:41:41.036414 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48870 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 49 seconds [**]
11/30-12:41:57.665288 192.168.100.28:32789 -> 192.94.163.152:53
UDP TTL:255 TOS:0x0 ID:60953 IpLen:20 DgmLen:56 DF
Len: 28

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:42:32.042961 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64075 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:42:42.052284 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48871 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:43:33.048832 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64076 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:43:43.048156 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48872 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 90 seconds [**]
11/30-12:43:55.707299 192.168.100.28:32789 -> 216.239.38.10:53
UDP TTL:255 TOS:0x0 ID:47921 IpLen:20 DgmLen:60 DF
Len: 32

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:44:34.044704 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64077 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:44:44.054027 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48873 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:45:35.050575 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64078 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:45:45.049898 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48874 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 31 seconds [**]
11/30-12:46:09.338254 192.168.100.28:32789 -> 212.53.64.30:53
UDP TTL:255 TOS:0x0 ID:50469 IpLen:20 DgmLen:64 DF
Len: 36

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:46:36.056445 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64079 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:46:46.055769 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48875 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-12:47:00.104818 64.15.251.198 -> 192.168.100.28
ICMP TTL:47 TOS:0x0 ID:42364 IpLen:20 DgmLen:84
Type:8  Code:0  ID:48385   Seq:58896  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-12:47:00.154814 208.185.54.14 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:52939 IpLen:20 DgmLen:84
Type:8  Code:0  ID:36441   Seq:48034  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-12:47:00.174813 204.176.88.5 -> 192.168.100.28
ICMP TTL:50 TOS:0x0 ID:12951 IpLen:20 DgmLen:84
Type:8  Code:0  ID:49409   Seq:10865  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-12:47:00.174813 66.28.255.130 -> 192.168.100.28
ICMP TTL:42 TOS:0x0 ID:10271 IpLen:20 DgmLen:84
Type:8  Code:0  ID:53505   Seq:41721  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-12:47:00.174813 213.61.6.2 -> 192.168.100.28
ICMP TTL:49 TOS:0x0 ID:19066 IpLen:20 DgmLen:84
Type:8  Code:0  ID:56854   Seq:14152  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-12:47:00.184812 64.0.96.12 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:32906 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60224   Seq:58482  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-12:47:00.184812 212.62.17.145 -> 192.168.100.28
ICMP TTL:48 TOS:0x0 ID:12394 IpLen:20 DgmLen:84
Type:8  Code:0  ID:60435   Seq:38959  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-12:47:00.194812 63.218.7.130 -> 192.168.100.28
ICMP TTL:51 TOS:0x0 ID:1030 IpLen:20 DgmLen:84
Type:8  Code:0  ID:27909   Seq:13283  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:368:4] ICMP PING BSDtype [**]
[Classification: Misc activity] [Priority: 3] 
11/30-12:47:00.204811 64.14.117.10 -> 192.168.100.28
ICMP TTL:52 TOS:0x0 ID:44088 IpLen:20 DgmLen:84
Type:8  Code:0  ID:63564   Seq:18563  ECHO
[Xref => http://www.whitehats.com/info/IDS152]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:47:37.062316 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64080 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:47:47.061639 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48876 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:48:38.058187 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64081 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:48:48.057510 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48877 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:49:39.064057 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64082 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:49:49.063380 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48878 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:50:40.069928 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64083 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:50:50.069251 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48879 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:51:41.065798 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64084 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:51:51.075121 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48880 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 131 seconds [**]
11/30-12:52:19.983164 192.168.100.28:32789 -> 192.41.162.30:53
UDP TTL:255 TOS:0x0 ID:23528 IpLen:20 DgmLen:59 DF
Len: 31

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:52:42.071668 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64085 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:52:52.070991 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48881 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:53:43.077538 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64086 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:53:53.076861 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48882 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:54:44.083408 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64087 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:54:54.082731 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48883 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:55:45.079278 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64088 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:55:55.078601 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48884 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:56:46.075148 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64089 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:56:56.074471 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48885 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:57:47.091017 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64090 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:57:57.090340 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48886 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:58:48.086881 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64091 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:58:58.096201 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48887 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:59:49.092735 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:64092 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-12:59:59.092055 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48888 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:00:50.098588 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13685 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:01:00.097909 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48889 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:01:51.104442 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13686 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:02:01.103763 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48890 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:02:52.100297 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13687 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:03:02.099617 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48891 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:03:53.106151 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13688 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:04:03.105471 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48892 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:04:54.112005 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13689 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:05:04.111326 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48893 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 175 seconds [**]
11/30-13:05:42.488718 192.168.100.28:32789 -> 216.239.34.10:53
UDP TTL:255 TOS:0x0 ID:43921 IpLen:20 DgmLen:60 DF
Len: 32

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:05:55.117859 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13690 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:06:05.117180 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48894 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 1 seconds [**]
11/30-13:06:45.044467 192.168.100.28:32789 -> 206.65.183.71:53
UDP TTL:255 TOS:0x0 ID:40935 IpLen:20 DgmLen:66 DF
Len: 38

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:06:56.113714 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13691 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:07:06.113035 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48895 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:07:57.119569 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13692 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:08:07.118890 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48896 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:08:58.125424 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13693 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:09:08.124744 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48897 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:09:59.121279 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13694 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:10:09.120600 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48898 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:11:00.127134 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13695 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:11:10.126455 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48899 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:12:01.122990 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13696 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:12:11.132310 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48900 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:13:02.128845 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13697 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:13:12.138165 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48901 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:14:03.134700 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13698 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 7 ports in 151 seconds [**]
11/30-13:14:12.374072 192.168.100.28:32789 -> 152.163.159.232:53
UDP TTL:255 TOS:0x0 ID:29493 IpLen:20 DgmLen:68 DF
Len: 40

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:14:13.134021 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48902 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:15:04.130556 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13699 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:15:14.139876 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48903 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:16:05.146411 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13700 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:16:15.145731 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48904 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:17:06.142267 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13701 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:17:16.151587 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48905 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:18:07.148123 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13702 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:18:17.147443 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48906 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [117:1:1] (spp_portscan2) Portscan detected from 192.168.100.28: 6 targets 6 ports in 108 seconds [**]
11/30-13:18:24.426949 192.168.100.28:32789 -> 65.206.228.71:53
UDP TTL:255 TOS:0x0 ID:19389 IpLen:20 DgmLen:63 DF
Len: 35

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:19:08.153978 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13703 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:19:18.153299 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:48907 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:20:09.159834 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13704 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:20:19.159155 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3037 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:21:10.155691 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13705 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:21:20.155012 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3038 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:22:11.161547 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13706 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:22:21.160868 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3039 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:23:12.167403 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13707 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:23:22.166724 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3040 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:24:13.163260 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13708 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:24:23.172580 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3041 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:25:14.169116 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13709 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:25:24.168437 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3042 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:26:15.174973 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13710 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:26:25.174293 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3043 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:27:16.180829 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13711 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:27:26.180150 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3044 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:28:17.176686 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13712 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:28:27.176007 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3045 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:29:18.182543 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13713 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:29:28.181864 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3046 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:30:19.188400 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13714 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:30:29.187721 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3047 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:31:20.184257 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13715 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:31:30.193577 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3048 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:32:21.190114 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13716 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:32:31.189435 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3049 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:33:22.195982 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13717 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:33:32.195306 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3050 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:34:23.201854 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13718 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:34:33.201177 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3051 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:35:24.197726 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13719 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:35:34.197049 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3052 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:36:25.203597 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13720 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:36:35.202921 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3053 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:37:26.209469 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13721 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:37:36.208792 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3054 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:38:27.205340 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13722 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:38:37.214663 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3055 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:39:28.211211 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:13723 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:39:38.210535 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3056 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:40:29.217082 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33389 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:40:39.216405 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3057 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:41:30.222953 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33390 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:41:40.222276 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3058 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:42:31.218824 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33391 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:42:41.218147 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3059 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:43:32.224695 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33392 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:43:42.224018 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3060 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:44:33.230565 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33393 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:44:43.229888 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3061 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:45:34.226436 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33394 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:45:44.235758 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3062 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:46:35.232306 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33395 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:46:45.231629 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3063 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:47:36.238176 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33396 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:47:46.237499 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3064 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:48:37.244046 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33397 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:48:47.243369 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3065 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:49:38.239916 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33398 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:49:48.239237 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3066 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:50:39.245771 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33399 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:50:49.245092 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3067 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:51:40.251626 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33400 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:51:50.250947 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3068 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:52:41.247481 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33401 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:52:51.256801 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3069 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:53:42.253336 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33402 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:53:52.252657 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3070 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:54:43.259191 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33403 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:54:53.258512 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3071 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:55:44.265047 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33404 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:55:54.264367 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3072 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:56:45.260903 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33405 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:56:55.260223 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3073 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:57:46.256759 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33406 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:57:56.256079 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3074 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:58:47.272613 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33407 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:58:57.271934 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:3075 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:59:48.268470 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33408 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-13:59:58.277790 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22741 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:00:49.274325 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33409 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:00:59.273646 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22742 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:01:50.280181 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33410 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:02:00.279502 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22743 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:02:51.286037 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33411 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:03:01.285358 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22744 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:03:52.281894 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33412 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:04:02.281214 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22745 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:04:53.287750 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33413 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:05:03.287070 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22746 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:05:54.293606 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33414 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:06:04.292926 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22747 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:06:55.289462 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33415 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:07:05.298781 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22748 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:07:56.285313 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33416 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:08:06.294633 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22749 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:08:57.311163 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33417 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:09:07.300484 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22750 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:09:58.307015 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33418 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:10:08.306335 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22751 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:10:59.302868 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33419 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:11:09.302188 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22752 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:12:00.308719 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33420 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:12:10.308040 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22753 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:13:01.314571 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33421 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:13:11.313892 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22754 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:618:2] SCAN Squid Proxy attempt [**]
[Classification: Attempted Information Leak] [Priority: 2] 
11/30-14:13:26.282874 64.24.196.50:0 -> 192.168.100.28:3128
TCP TTL:115 TOS:0x0 ID:1368 IpLen:20 DgmLen:40 DF
******S* Seq: 0x188A4  Ack: 0x0  Win: 0x200  TcpLen: 20

[**] [1:620:2] SCAN Proxy (8080) attempt [**]
[Classification: Attempted Information Leak] [Priority: 2] 
11/30-14:13:26.352869 64.24.196.50:0 -> 192.168.100.28:8080
TCP TTL:115 TOS:0x0 ID:1368 IpLen:20 DgmLen:40 DF
******S* Seq: 0x188A6  Ack: 0x0  Win: 0x200  TcpLen: 20

[**] [1:615:3] SCAN SOCKS Proxy attempt [**]
[Classification: Attempted Information Leak] [Priority: 2] 
11/30-14:13:26.372868 64.24.196.50:0 -> 192.168.100.28:1080
TCP TTL:115 TOS:0x0 ID:1368 IpLen:20 DgmLen:40 DF
******S* Seq: 0x188A7  Ack: 0x0  Win: 0x200  TcpLen: 20
[Xref => http://help.undernet.org/proxyscan/]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:14:02.310424 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33422 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:14:12.319744 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22755 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:15:03.316276 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33423 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:15:13.315596 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22756 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:16:04.322129 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33424 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:16:14.321449 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22757 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:17:05.327981 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33425 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:17:15.327301 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22758 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:18:06.323834 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33426 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:18:16.323155 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22759 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:19:07.329687 192.168.100.28 -> 217.116.38.10
ICMP TTL:255 TOS:0x0 ID:33427 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]

[**] [1:1855:2] DDOS Stacheldraht agent->handler (skillz) [**]
[Classification: Attempted Denial of Service] [Priority: 2] 
11/30-14:19:17.329008 192.168.100.28 -> 61.134.3.11
ICMP TTL:255 TOS:0x0 ID:22760 IpLen:20 DgmLen:1044 DF
Type:0  Code:0  ID:6666  Seq:0  ECHO REPLY
[Xref => http://staff.washington.edu/dittrich/misc/stacheldraht.analysis]