Security → Weather bug access to "net" B4 ZA is loaded

Hello
I have a question for you all-I installed Weather Bug this weekend, and since then I have noticed that occasionally WB is able to access the internet before ZoneAlarm (PRO) is even loaded upon start up. The "bug" on the tool bar changes to the temperature and after that ZA asks if WB can access the internet. It is sporadic, sometimes it (WB) loads after ZA, and sometimes before. Is this anything to worry about? I just thought that nothing on my computer was supposed to be able to do this until ZA gave it permission (I have it set for everything to ask me first). Sorry if this is a stupid question-I'm still learning!
Thanks for any help.
Roxanne

Safest method is to wait until everything loads and then connect.

I understand that, but WeatherBug is connecting (white "bug" changes to the current temp on toolbar) before ZA even asks to give WeatherBug permission to access the internet?!?!?
Roxanne

I posted the link to this discussion on the ZA site, but no answer as of yet (thanks for the link). Does anyone have any suggestions on what to do about this?

Again, Not a stupid question - Sounds like you have a problem. There's a lively discussion in the security forum where some say this cannot happen, so your problem is enlightening.

However, I feel it's is not a significant security risk at this time as the timing problem has no reported exploits.

EDIT- What Just Basics says is a good tip - Thanks, JB!

Sorry I can't provide a definitive answer, I recommend you go to the ZA site and post the question in their forum also. Here's the link;

»forums.zonelabs.com/zonelabs

BTW love your common sense aproach to security. I bet you'll learn fast!

EG

said by RockyRMG:

---

I understand that, but WeatherBug is connecting (white "bug" changes to the current temp on toolbar) before ZA even asks to give WeatherBug permission to access the internet?!?!?
Roxanne

---

My guess is that Weather Bug is just attempting to connect, is there way to tell whether it really got out to the internet? I ask because at this stage ZA should be definitely loaded. The problematic time is before user logs on, when you see the desktop you are 100% safe. At least on WinXP.

The "bug is white" on the toolbar before it connects to the internet to obtain the current temperature for my city. Quite often the temperature (the white bug changes to the current temperature) before ZA asks for permission for weatherbug to access the internet. ?!?!?!

edit-I am using XP

I did the exact same test with just a different app week ago and ZA prevented the app from sneaking out after logon dialog. Only there was no info in logs until ZA GUI was loaded.

I am going to try it again with WeatherBug tonight. Could you post your ZA logs in the mean time, in case there is anything useful.

I will if you let me know how to I went to the logs and tried to copy and I couldn't.
Roxanne

Roxanne,

Look for a file called "zalog.txt" in the "internet logs" folder. Highlight and copy the text you wish to post and then paste it into a new Notepad document. Edit, if required, then highlight copy and paste into a reply box here.

Are you using autologon (i.e. do you select a user and/or enter a password at logon, or does it boot straight into windows)? There were a few reports with Kerio/Tiny a while back that, because of the way XP starts up, this might be possible:

»tiny start up order

»TPF appears to load late at startup

Unless you have given permission for the program to access the net before hand, it shouldn't access the net. Zone Alarm's vsmon service is loaded before anything else in windows is loaded, even if your desktop isn't visable yet, no icons in the taskbar, not even your start menu has appeared, the vsmon service is already loaded and is protecting your system.

quote:

---

I have it set for everything to ask me first

---

Although you have set it to ask, have you checked the box "Remember this answer next time I use this program?" without realizing it?

Don't forget to post your log too.

--
He that feeds a disease, feeds an enemy. Some diseases are starved. Starve your sins by fasting and humiliation. Either kill your sin, or your sin will kill you. - Thomas Watson Harmless as doves 131

It is verified, even with autologon off ZA lets a lot of packets through during booting on WinXP, even after login when desktop is already loading. Note that I disabled Broadcast packets in both zones in ZA, my providers LAN is in internet zone and both zones are set to HIGH and all programs had forbidden internet access both outbound and inbound in both zones. I connect through providers LAN 10.5.0.0 and that's the reason for the broadcast netbios packets. But still ZA should be stopping them with my settings.

Most importantly 2 out of three tries ZA let WeatherBug to connect during startup (IP range 63.175.146.xxx in the log).

vsmon.exe is not loaded before anything else on my system. My ntbtlog shows 96 drivers loaded before vsdatant more importantly tcpip.sys is loaded eighteen drivers before vsdatant.

I hope I did this right-I'm a newbie!

ZoneAlarm Logging Client v4.5.538.000
Windows XP-5.1.2600-Service Pack 1-SP
type,date,time,source,destination,transport
FWIN,2004/01/08,20:31:00 -6:00 GMT,203.132.201.2:64524,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,20:31:06 -6:00 GMT,220.24.93.11:33734,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,20:31:18 -6:00 GMT,24.165.161.70:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,20:31:32 -6:00 GMT,68.190.56.49:60235,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,20:31:36 -6:00 GMT,68.190.56.49:60236,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,20:31:38 -6:00 GMT,68.190.56.49:60237,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,20:37:34 -6:00 GMT,24.166.47.202:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,20:38:22 -6:00 GMT,24.166.126.139:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,20:39:24 -6:00 GMT,65.43.166.143:13921,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,20:41:20 -6:00 GMT,24.166.149.224:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,20:41:54 -6:00 GMT,24.169.224.60:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,20:42:06 -6:00 GMT,24.163.44.113:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,20:42:16 -6:00 GMT,202.174.35.153:3846,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,20:43:32 -6:00 GMT,24.166.120.154:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,20:43:54 -6:00 GMT,24.165.219.117:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,20:44:06 -6:00 GMT,202.174.35.153:3858,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,20:45:18 -6:00 GMT,24.167.120.179:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,20:45:30 -6:00 GMT,24.164.17.247:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,20:50:26 -6:00 GMT,24.165.22.206:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,20:52:14 -6:00 GMT,24.166.89.137:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,20:52:58 -6:00 GMT,24.164.25.109:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,20:53:38 -6:00 GMT,69.14.92.139:40791,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,20:53:40 -6:00 GMT,69.14.92.139:40792,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,20:53:42 -6:00 GMT,69.14.92.139:40793,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,20:55:26 -6:00 GMT,200.195.51.122:0,192.168.0.101:0,ICMP (type:3/subtype:1)
FWIN,2004/01/08,20:55:40 -6:00 GMT,24.166.83.193:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,20:56:36 -6:00 GMT,200.65.166.80:7150,192.168.0.101:53,UDP
FWIN,2004/01/08,20:56:54 -6:00 GMT,24.67.188.167:4036,192.168.0.101:17300,TCP (flags:S)
FWIN,2004/01/08,20:57:06 -6:00 GMT,24.165.162.79:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:03:00 -6:00 GMT,24.166.32.24:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:03:06 -6:00 GMT,24.166.51.192:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:04:06 -6:00 GMT,67.83.65.162:3131,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:04:22 -6:00 GMT,200.48.30.145:1324,192.168.0.101:1434,UDP
FWIN,2004/01/08,21:06:46 -6:00 GMT,24.166.104.244:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:07:16 -6:00 GMT,24.167.78.17:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:07:48 -6:00 GMT,24.167.119.181:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:08:52 -6:00 GMT,220.110.194.16:1949,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:09:50 -6:00 GMT,24.166.127.133:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:12:22 -6:00 GMT,68.88.13.80:4310,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:12:40 -6:00 GMT,24.166.82.64:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:13:22 -6:00 GMT,24.166.53.50:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:15:58 -6:00 GMT,24.164.27.225:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:16:30 -6:00 GMT,67.71.158.239:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:17:24 -6:00 GMT,200.195.51.122:0,192.168.0.101:0,ICMP (type:3/subtype:1)
FWIN,2004/01/08,21:17:54 -6:00 GMT,211.124.66.219:63202,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:19:08 -6:00 GMT,24.169.37.133:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:19:46 -6:00 GMT,24.165.198.15:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:20:46 -6:00 GMT,130.115.64.7:0,192.168.0.101:0,ICMP (type:3/subtype:13)
FWIN,2004/01/08,21:21:52 -6:00 GMT,217.42.242.210:4068,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:23:32 -6:00 GMT,68.221.134.84:50868,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:25:16 -6:00 GMT,24.164.103.211:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:25:34 -6:00 GMT,24.166.47.202:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:26:36 -6:00 GMT,24.166.23.68:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:27:08 -6:00 GMT,24.215.70.250:1669,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:27:48 -6:00 GMT,203.27.210.171:1870,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:28:40 -6:00 GMT,24.167.134.146:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:28:48 -6:00 GMT,24.166.38.83:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:29:28 -6:00 GMT,65.49.7.107:3293,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:29:28 -6:00 GMT,24.167.158.53:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:29:46 -6:00 GMT,68.82.183.12:4213,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:29:46 -6:00 GMT,24.165.93.22:4904,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:30:34 -6:00 GMT,24.164.84.248:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:32:04 -6:00 GMT,64.229.19.33:3723,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:33:34 -6:00 GMT,200.195.51.122:0,192.168.0.101:0,ICMP (type:3/subtype:1)
FWIN,2004/01/08,21:35:06 -6:00 GMT,24.209.181.247:60556,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:35:10 -6:00 GMT,24.209.181.247:60560,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:35:12 -6:00 GMT,24.209.181.247:60561,192.168.0.101:6699,TCP (flags:S)
PE,2004/01/08,21:35:30 -6:00 GMT,LiveUpdate Engine COM Module,192.168.0.1:53,N/A
FWIN,2004/01/08,21:36:00 -6:00 GMT,24.85.16.28:4813,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:36:28 -6:00 GMT,64.66.96.20:1634,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:47:22 -6:00 GMT,24.163.3.190:0,192.168.0.101:0,ICMP (type:8/subtype:0)
PE,2004/01/08,21:47:32 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
ACCESS,2004/01/08,21:47:34 -6:00 GMT,Generic Host Process for Win32 Services was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/08,21:47:34 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
FWIN,2004/01/08,21:48:00 -6:00 GMT,24.10.68.90:28576,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:48:02 -6:00 GMT,24.10.68.90:28577,192.168.0.101:6699,TCP (flags:S)
PE,2004/01/08,21:48:02 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
PE,2004/01/08,21:48:02 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
ACCESS,2004/01/08,21:48:02 -6:00 GMT,Generic Host Process for Win32 Services was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/08,21:48:02 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
PE,2004/01/08,21:48:02 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
PE,2004/01/08,21:48:02 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
PE,2004/01/08,21:48:02 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
PE,2004/01/08,21:48:06 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/08,21:48:06 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
FWIN,2004/01/08,21:48:06 -6:00 GMT,24.10.68.90:28578,192.168.0.101:6699,TCP (flags:S)
PE,2004/01/08,21:48:10 -6:00 GMT,Common Client CC App,127.0.0.1:3011,N/A
PE,2004/01/08,21:48:10 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:10 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:10 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/08,21:48:10 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/08,21:48:10 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:10 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:10 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:10 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:10 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/08,21:48:10 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/08,21:48:10 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:10 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/08,21:48:12 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/08,21:48:12 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/08,21:48:12 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/08,21:48:12 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/08,21:48:12 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/08,21:48:12 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
FWIN,2004/01/08,21:48:14 -6:00 GMT,68.221.134.84:50930,192.168.0.101:6699,TCP (flags:S)
PE,2004/01/08,21:48:22 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
FWIN,2004/01/08,21:48:22 -6:00 GMT,24.165.14.109:0,192.168.0.101:0,ICMP (type:8/subtype:0)
PE,2004/01/08,21:48:24 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
FWIN,2004/01/08,21:48:52 -6:00 GMT,24.167.18.130:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:48:52 -6:00 GMT,217.23.243.109:54336,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:49:04 -6:00 GMT,207.81.19.230:2268,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:53:44 -6:00 GMT,24.164.106.77:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:54:08 -6:00 GMT,168.209.29.186:0,192.168.0.101:0,ICMP (type:3/subtype:13)
FWIN,2004/01/08,21:54:32 -6:00 GMT,217.83.114.144:64157,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:55:10 -6:00 GMT,64.157.32.1:49077,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:55:40 -6:00 GMT,24.1.29.233:1565,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:56:54 -6:00 GMT,24.166.68.163:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:57:52 -6:00 GMT,24.175.251.137:3905,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:58:00 -6:00 GMT,67.122.219.57:29312,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,21:58:14 -6:00 GMT,24.164.197.87:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:58:52 -6:00 GMT,24.164.85.236:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:59:16 -6:00 GMT,24.166.210.61:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,21:59:58 -6:00 GMT,68.59.228.236:4439,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:00:22 -6:00 GMT,24.166.116.215:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:01:24 -6:00 GMT,167.142.57.86:40822,192.168.0.101:33442,UDP
FWIN,2004/01/08,22:01:24 -6:00 GMT,167.142.57.83:42456,192.168.0.101:33443,UDP
FWIN,2004/01/08,22:01:24 -6:00 GMT,167.142.57.85:40823,192.168.0.101:33442,UDP
FWIN,2004/01/08,22:01:24 -6:00 GMT,167.142.57.82:42457,192.168.0.101:33448,UDP
FWIN,2004/01/08,22:01:24 -6:00 GMT,167.142.57.84:58714,192.168.0.101:33446,UDP
FWIN,2004/01/08,22:02:00 -6:00 GMT,24.165.161.169:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:03:52 -6:00 GMT,24.167.101.141:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:04:36 -6:00 GMT,69.34.85.31:13050,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:04:54 -6:00 GMT,221.185.179.61:1376,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:05:16 -6:00 GMT,128.255.21.55:3659,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:05:28 -6:00 GMT,218.71.202.170:15819,192.168.0.101:27374,TCP (flags:S)
FWIN,2004/01/08,22:05:54 -6:00 GMT,167.142.57.86:46931,192.168.0.101:33442,UDP
FWIN,2004/01/08,22:05:54 -6:00 GMT,167.142.57.83:48591,192.168.0.101:33443,UDP
FWIN,2004/01/08,22:05:54 -6:00 GMT,167.142.57.85:46932,192.168.0.101:33442,UDP
FWIN,2004/01/08,22:05:54 -6:00 GMT,167.142.57.82:48592,192.168.0.101:33448,UDP
FWIN,2004/01/08,22:05:54 -6:00 GMT,167.142.57.84:61776,192.168.0.101:33446,UDP
FWIN,2004/01/08,22:06:04 -6:00 GMT,216.74.194.101:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/08,22:07:08 -6:00 GMT,24.166.78.243:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:07:10 -6:00 GMT,24.163.15.165:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:07:24 -6:00 GMT,212.40.242.87:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:09:02 -6:00 GMT,211.218.202.29:36719,192.168.0.101:27374,TCP (flags:S)
FWIN,2004/01/08,22:10:52 -6:00 GMT,219.112.91.131:55706,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:11:38 -6:00 GMT,205.240.132.112:4181,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:12:10 -6:00 GMT,69.139.14.144:1929,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:13:48 -6:00 GMT,24.169.216.109:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:13:48 -6:00 GMT,24.166.47.202:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:15:44 -6:00 GMT,219.95.44.58:4865,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:15:52 -6:00 GMT,199.84.241.54:0,192.168.0.101:0,ICMP (type:3/subtype:1)
FWIN,2004/01/08,22:17:26 -6:00 GMT,217.23.243.109:54500,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:18:12 -6:00 GMT,24.165.166.40:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:18:50 -6:00 GMT,24.166.107.99:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:18:58 -6:00 GMT,24.166.175.2:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:19:14 -6:00 GMT,213.105.101.65:3848,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:19:54 -6:00 GMT,24.167.125.47:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:21:46 -6:00 GMT,69.139.14.144:1293,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:21:58 -6:00 GMT,24.96.48.138:1411,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:21:58 -6:00 GMT,203.27.210.171:1896,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:22:04 -6:00 GMT,24.165.231.176:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:22:08 -6:00 GMT,217.209.139.126:1217,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:22:16 -6:00 GMT,24.167.105.62:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:22:42 -6:00 GMT,24.169.203.233:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:23:04 -6:00 GMT,24.169.30.150:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:23:10 -6:00 GMT,24.166.60.56:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:23:28 -6:00 GMT,24.166.38.75:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:23:56 -6:00 GMT,24.166.126.139:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:24:08 -6:00 GMT,24.167.1.78:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:24:50 -6:00 GMT,81.250.220.48:4829,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:27:06 -6:00 GMT,219.95.60.66:2308,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:27:42 -6:00 GMT,24.164.216.24:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:28:16 -6:00 GMT,24.166.117.5:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:30:46 -6:00 GMT,68.53.149.191:3572,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:31:14 -6:00 GMT,24.166.35.36:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:32:56 -6:00 GMT,24.83.160.131:1092,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:33:06 -6:00 GMT,24.165.182.196:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:34:02 -6:00 GMT,24.164.80.224:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:34:02 -6:00 GMT,24.164.26.133:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:34:12 -6:00 GMT,195.47.160.54:4913,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:34:12 -6:00 GMT,66.74.232.115:3276,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:34:24 -6:00 GMT,24.165.93.22:4922,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:35:00 -6:00 GMT,202.174.35.153:4093,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:36:40 -6:00 GMT,139.55.3.224:64543,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:37:42 -6:00 GMT,200.195.51.122:0,192.168.0.101:0,ICMP (type:3/subtype:1)
FWIN,2004/01/08,22:37:48 -6:00 GMT,202.174.35.153:4098,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:38:16 -6:00 GMT,68.221.134.84:50341,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:42:34 -6:00 GMT,151.37.118.99:61336,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:42:36 -6:00 GMT,151.37.118.99:61337,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:42:38 -6:00 GMT,151.37.118.99:61338,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:44:40 -6:00 GMT,82.36.49.234:4022,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:45:38 -6:00 GMT,209.196.230.64:1044,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:45:42 -6:00 GMT,24.164.78.106:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:46:40 -6:00 GMT,24.165.167.148:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:47:04 -6:00 GMT,220.104.10.236:38440,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:47:08 -6:00 GMT,24.167.104.1:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:48:42 -6:00 GMT,24.169.224.60:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:50:14 -6:00 GMT,203.27.210.171:1926,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:50:58 -6:00 GMT,218.102.144.24:1084,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:50:58 -6:00 GMT,217.187.81.67:11429,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:51:38 -6:00 GMT,24.166.149.224:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/08,22:53:06 -6:00 GMT,61.22.248.94:2731,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:54:08 -6:00 GMT,221.184.182.252:1955,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:55:46 -6:00 GMT,61.26.216.31:2976,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:55:46 -6:00 GMT,199.84.241.54:0,192.168.0.101:0,ICMP (type:3/subtype:1)
FWIN,2004/01/08,22:56:56 -6:00 GMT,68.118.176.223:2697,192.168.0.101:6699,TCP (flags:S)
FWIN,2004/01/08,22:57:16 -6:00 GMT,219.68.211.146:1340,192.168.0.101:17300,TCP (flags:S)
FWIN,2004/01/09,08:09:06 -6:00 GMT,24.166.175.250:0,192.168.0.101:0,ICMP (type:8/subtype:0)
PE,2004/01/09,08:10:00 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
ACCESS,2004/01/09,08:10:00 -6:00 GMT,Generic Host Process for Win32 Services was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,08:10:00 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
PE,2004/01/09,08:10:28 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
PE,2004/01/09,08:10:28 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
FWIN,2004/01/09,08:10:40 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
PE,2004/01/09,08:10:52 -6:00 GMT,Common Client CC App,192.168.0.1:53,N/A
ACCESS,2004/01/09,08:10:52 -6:00 GMT,Common Client CC App was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,08:10:56 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,08:10:56 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
ACCESS,2004/01/09,08:10:58 -6:00 GMT,Common Client CC App was denied Internet access because of one or more modules (192.168.0.1:DNS).,N/A,N/A
PE,2004/01/09,08:10:58 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:00 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:00 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:00 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,08:11:00 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,08:11:00 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:00 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:00 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:00 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:00 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,08:11:00 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,08:11:00 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,08:11:02 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,08:11:02 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,08:11:02 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,08:11:02 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:02 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,08:11:02 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,08:11:10 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,08:11:14 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
PE,2004/01/09,08:11:44 -6:00 GMT,Microsoft Word,192.168.0.1:53,N/A
PE,2004/01/09,08:11:50 -6:00 GMT,Microsoft Outlook,192.168.0.1:53,N/A
ACCESS,2004/01/09,08:11:52 -6:00 GMT,Common Client CC App was denied Internet access because of one or more modules (24.94.163.202:POP3).,N/A,N/A
PE,2004/01/09,08:12:06 -6:00 GMT,Internet Explorer,127.0.0.1:3057,N/A
FWIN,2004/01/09,08:13:10 -6:00 GMT,24.164.166.38:0,192.168.0.101:0,ICMP (type:8/subtype:0)
PE,2004/01/09,08:15:00 -6:00 GMT,Symantec NetDetect,192.168.0.1:53,N/A
PE,2004/01/09,08:15:16 -6:00 GMT,LiveUpdate Engine COM Module,192.168.0.1:53,N/A
FWIN,2004/01/09,08:16:16 -6:00 GMT,24.164.18.246:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:16:46 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,08:16:48 -6:00 GMT,24.166.32.24:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:18:02 -6:00 GMT,24.169.224.60:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:18:08 -6:00 GMT,24.166.15.160:4652,192.168.0.101:80,TCP (flags:S)
FWIN,2004/01/09,08:21:54 -6:00 GMT,24.166.51.192:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:21:58 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,08:23:42 -6:00 GMT,24.165.166.191:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:26:08 -6:00 GMT,24.166.231.74:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:26:24 -6:00 GMT,203.90.115.234:1842,192.168.0.101:80,TCP (flags:S)
FWIN,2004/01/09,08:26:50 -6:00 GMT,24.166.107.99:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:28:42 -6:00 GMT,24.167.125.47:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:31:22 -6:00 GMT,24.169.63.114:0,192.168.0.101:0,ICMP (type:8/subtype:0)
ACCESS,2004/01/09,08:32:28 -6:00 GMT,Common Client CC App was denied Internet access because of one or more modules (24.94.163.201:POP3).,N/A,N/A
FWIN,2004/01/09,08:32:40 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,08:32:42 -6:00 GMT,24.166.89.137:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:32:48 -6:00 GMT,24.166.38.75:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:33:28 -6:00 GMT,24.168.196.205:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:34:26 -6:00 GMT,24.167.105.62:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:38:48 -6:00 GMT,80.137.52.241:4538,192.168.0.101:17300,TCP (flags:S)
FWIN,2004/01/09,08:41:04 -6:00 GMT,24.166.116.215:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:42:18 -6:00 GMT,24.168.231.106:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:42:58 -6:00 GMT,24.166.117.5:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:43:02 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
ACCESS,2004/01/09,08:45:32 -6:00 GMT,Common Client CC App was denied Internet access because of one or more modules (24.94.163.201:POP3).,N/A,N/A
PE,2004/01/09,08:46:06 -6:00 GMT,Internet Explorer,127.0.0.1:3160,N/A
ACCESS,2004/01/09,08:46:12 -6:00 GMT,Internet Explorer was temporarily blocked from connecting to the Internet (127.0.0.1:Port 3160).,N/A,N/A
ACCESS,2004/01/09,08:46:12 -6:00 GMT,Internet Explorer was temporarily blocked from connecting to the Internet (192.168.0.1:DNS).,N/A,N/A
PE,2004/01/09,08:46:44 -6:00 GMT,Outlook Express,192.168.0.1:53,N/A
FWIN,2004/01/09,08:46:44 -6:00 GMT,216.250.143.110:1408,192.168.0.101:1434,UDP
ACCESS,2004/01/09,08:46:46 -6:00 GMT,Common Client CC App was denied Internet access because of one or more modules (24.94.163.201:POP3).,N/A,N/A
FWIN,2004/01/09,08:48:18 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
PE,2004/01/09,08:49:18 -6:00 GMT,Internet Explorer,127.0.0.1:3168,N/A
FWIN,2004/01/09,08:50:02 -6:00 GMT,24.164.164.64:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:50:02 -6:00 GMT,24.164.109.34:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:50:16 -6:00 GMT,24.167.75.72:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:54:08 -6:00 GMT,24.164.84.248:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:54:40 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,08:55:04 -6:00 GMT,24.169.203.233:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:55:30 -6:00 GMT,24.169.216.109:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:56:04 -6:00 GMT,24.166.35.36:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,08:57:42 -6:00 GMT,24.166.47.202:0,192.168.0.101:0,ICMP (type:8/subtype:0)
ACCESS,2004/01/09,08:58:18 -6:00 GMT,Common Client CC App was denied Internet access because of one or more modules (24.94.163.201:POP3).,N/A,N/A
PE,2004/01/09,08:58:48 -6:00 GMT,Microsoft Outlook,192.168.0.1:53,N/A
ACCESS,2004/01/09,08:58:50 -6:00 GMT,Common Client CC App was denied Internet access because of one or more modules (24.94.163.202:POP3).,N/A,N/A
FWIN,2004/01/09,08:59:50 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
PE,2004/01/09,09:01:34 -6:00 GMT,Internet Explorer,127.0.0.1:3262,N/A
PE,2004/01/09,09:04:26 -6:00 GMT,LiveUpdate Engine COM Module,209.8.166.178:80,N/A
PE,2004/01/09,09:04:28 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
PE,2004/01/09,09:04:30 -6:00 GMT,WeatherBug,209.8.166.137:80,N/A
FWIN,2004/01/09,09:05:00 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
PE,2004/01/09,09:05:20 -6:00 GMT,Microsoft Outlook,192.168.0.1:53,N/A
PE,2004/01/09,09:05:26 -6:00 GMT,Common Client CC App,24.94.163.202:110,N/A
FWIN,2004/01/09,09:06:52 -6:00 GMT,24.164.80.224:0,192.168.0.101:0,ICMP (type:8/subtype:0)
PE,2004/01/09,09:10:16 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
ACCESS,2004/01/09,09:10:16 -6:00 GMT,Generic Host Process for Win32 Services was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,09:10:16 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
FWIN,2004/01/09,09:10:30 -6:00 GMT,24.164.114.151:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:10:38 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
PE,2004/01/09,09:10:44 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,09:10:44 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,09:10:48 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:48 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:48 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:48 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:48 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,09:10:48 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,09:10:48 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:48 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:48 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:48 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:48 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,09:10:48 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,09:10:50 -6:00 GMT,Spooler SubSystem App,192.168.0.1:53,N/A
ACCESS,2004/01/09,09:10:50 -6:00 GMT,Spooler SubSystem App was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,Common Client CC App,192.168.0.1:53,N/A
ACCESS,2004/01/09,09:10:52 -6:00 GMT,Common Client CC App was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
ACCESS,2004/01/09,09:10:52 -6:00 GMT,Spooler SubSystem App was denied Internet access because of one or more modules (192.168.0.1:DNS).,N/A,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,09:10:52 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,09:10:52 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,09:10:52 -6:00 GMT,Spooler SubSystem App was denied Internet access because of one or more modules (192.168.0.1:DNS).,N/A,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,09:10:52 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,09:10:52 -6:00 GMT,Common Client CC App was denied Internet access because of one or more modules (192.168.0.1:DNS).,N/A,N/A
ACCESS,2004/01/09,09:10:52 -6:00 GMT,Spooler SubSystem App was denied Internet access because of one or more modules (192.168.0.1:DNS).,N/A,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,09:10:52 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,09:10:52 -6:00 GMT,WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1:DNS); access was denied.,N/A,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
ACCESS,2004/01/09,09:10:52 -6:00 GMT,Common Client CC App was denied Internet access because of one or more modules (192.168.0.1:DNS).,N/A,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,Spooler SubSystem App,0.0.0.0:0,N/A
PE,2004/01/09,09:10:52 -6:00 GMT,Spooler SubSystem App,0.0.0.0:0,N/A
PE,2004/01/09,09:10:54 -6:00 GMT,Spooler SubSystem App,0.0.0.0:0,N/A
PE,2004/01/09,09:10:54 -6:00 GMT,Spooler SubSystem App,0.0.0.0:0,N/A
PE,2004/01/09,09:10:54 -6:00 GMT,Spooler SubSystem App,0.0.0.0:0,N/A
ACCESS,2004/01/09,09:10:54 -6:00 GMT,Spooler SubSystem App was denied Internet access because of one or more modules (192.168.0.1:DNS).,N/A,N/A
PE,2004/01/09,09:10:54 -6:00 GMT,Spooler SubSystem App,0.0.0.0:0,N/A
PE,2004/01/09,09:10:54 -6:00 GMT,Spooler SubSystem App,0.0.0.0:0,N/A
PE,2004/01/09,09:11:00 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,09:11:02 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
PE,2004/01/09,09:11:32 -6:00 GMT,Microsoft Outlook,192.168.0.1:53,N/A
ACCESS,2004/01/09,09:11:34 -6:00 GMT,Common Client CC App was denied Internet access because of one or more modules (24.94.163.202:POP3).,N/A,N/A
FWIN,2004/01/09,09:12:30 -6:00 GMT,24.164.86.23:0,192.168.0.101:0,ICMP (type:8/subtype:0)
PE,2004/01/09,09:12:32 -6:00 GMT,Internet Explorer,127.0.0.1:3049,N/A
FWIN,2004/01/09,09:12:42 -6:00 GMT,24.166.120.154:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:15:14 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,09:15:18 -6:00 GMT,24.167.74.187:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:15:22 -6:00 GMT,24.165.166.40:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:15:30 -6:00 GMT,24.166.104.244:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:15:30 -6:00 GMT,24.166.68.163:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:15:50 -6:00 GMT,24.166.23.68:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:15:58 -6:00 GMT,24.164.95.78:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:17:50 -6:00 GMT,213.54.186.237:2091,192.168.0.101:1433,TCP (flags:S)
FWIN,2004/01/09,09:18:02 -6:00 GMT,24.167.158.53:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:21:06 -6:00 GMT,24.166.83.193:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:21:08 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,09:22:50 -6:00 GMT,24.165.22.206:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:22:56 -6:00 GMT,24.166.74.15:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:23:56 -6:00 GMT,24.166.210.61:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:24:10 -6:00 GMT,24.165.21.204:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:24:30 -6:00 GMT,142.161.5.6:0,192.168.0.101:0,ICMP (type:3/subtype:1)
FWIN,2004/01/09,09:24:38 -6:00 GMT,142.161.5.38:0,192.168.0.101:0,ICMP (type:3/subtype:1)
FWIN,2004/01/09,09:26:46 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,09:27:56 -6:00 GMT,24.165.199.80:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:31:02 -6:00 GMT,24.165.37.180:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:31:08 -6:00 GMT,24.166.60.56:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:32:52 -6:00 GMT,24.166.38.83:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:34:16 -6:00 GMT,24.167.166.152:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:36:16 -6:00 GMT,24.164.197.219:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:38:36 -6:00 GMT,24.166.78.243:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:40:52 -6:00 GMT,24.163.44.113:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:41:38 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,09:42:32 -6:00 GMT,61.198.62.243:4207,192.168.0.101:27374,TCP (flags:S)
FWIN,2004/01/09,09:45:06 -6:00 GMT,142.161.5.6:0,192.168.0.101:0,ICMP (type:3/subtype:1)
FWIN,2004/01/09,09:45:08 -6:00 GMT,142.161.5.38:0,192.168.0.101:0,ICMP (type:3/subtype:1)
FWIN,2004/01/09,09:46:58 -6:00 GMT,24.166.47.202:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:47:24 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,09:47:42 -6:00 GMT,4.11.4.132:3250,192.168.0.101:20168,TCP (flags:S)
FWIN,2004/01/09,09:53:20 -6:00 GMT,24.164.197.87:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,09:59:30 -6:00 GMT,24.166.175.2:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:00:24 -6:00 GMT,24.164.202.13:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:05:28 -6:00 GMT,24.169.37.133:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:05:34 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,10:05:54 -6:00 GMT,24.31.236.218:3786,192.168.0.101:80,TCP (flags:S)
FWIN,2004/01/09,10:06:44 -6:00 GMT,24.169.37.229:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:07:36 -6:00 GMT,24.164.29.206:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:09:02 -6:00 GMT,24.164.27.225:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:11:32 -6:00 GMT,24.166.127.133:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:11:54 -6:00 GMT,24.116.112.141:1406,192.168.0.101:80,TCP (flags:S)
FWIN,2004/01/09,10:12:22 -6:00 GMT,24.166.82.64:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:13:22 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,10:15:40 -6:00 GMT,24.98.134.251:2695,192.168.0.101:80,TCP (flags:S)
FWIN,2004/01/09,10:18:42 -6:00 GMT,24.165.14.109:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:18:44 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,10:21:16 -6:00 GMT,24.165.216.204:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:21:28 -6:00 GMT,24.169.224.60:0,192.168.0.101:0,ICMP (type:8/subtype:0)
ACCESS,2004/01/09,10:24:00 -6:00 GMT,Common Client CC App was denied Internet access because of one or more modules (24.94.163.202:POP3).,N/A,N/A
PE,2004/01/09,10:25:08 -6:00 GMT,Microsoft Outlook,192.168.0.1:53,N/A
ACCESS,2004/01/09,10:25:08 -6:00 GMT,Common Client CC App was denied Internet access because of one or more modules (24.94.163.201:POP3).,N/A,N/A
FWIN,2004/01/09,10:27:30 -6:00 GMT,24.167.101.141:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:28:38 -6:00 GMT,24.166.107.99:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:28:52 -6:00 GMT,24.165.166.191:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:29:34 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
PE,2004/01/09,10:31:24 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A
PE,2004/01/09,10:31:28 -6:00 GMT,Generic Host Process for Win32 Services,192.168.0.1:53,N/A
PE,2004/01/09,10:32:00 -6:00 GMT,Internet Explorer,192.168.0.1:53,N/A
FWIN,2004/01/09,10:32:30 -6:00 GMT,24.165.182.196:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:32:58 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,10:34:08 -6:00 GMT,24.166.89.137:0,192.168.0.101:0,ICMP (type:8/subtype:0)
PE,2004/01/09,10:35:26 -6:00 GMT,Microsoft Outlook,24.94.163.201:110,N/A
PE,2004/01/09,10:35:28 -6:00 GMT,Common Client CC App,24.94.163.201:110,N/A
FWIN,2004/01/09,10:35:46 -6:00 GMT,24.166.47.202:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:36:42 -6:00 GMT,24.166.32.24:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:37:18 -6:00 GMT,24.165.231.176:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:39:10 -6:00 GMT,24.168.196.205:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:39:20 -6:00 GMT,24.166.38.75:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:42:54 -6:00 GMT,24.166.126.139:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:43:04 -6:00 GMT,24.165.211.241:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:47:24 -6:00 GMT,24.168.231.106:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:47:44 -6:00 GMT,24.169.25.218:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:49:38 -6:00 GMT,24.166.117.5:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:51:00 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,10:56:04 -6:00 GMT,24.164.166.38:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:56:48 -6:00 GMT,24.167.104.1:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:57:18 -6:00 GMT,24.166.116.215:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:57:42 -6:00 GMT,24.169.216.109:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,10:59:44 -6:00 GMT,24.166.35.36:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:10:32 -6:00 GMT,24.166.254.32:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:10:40 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,11:11:26 -6:00 GMT,24.169.203.233:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:13:56 -6:00 GMT,24.163.3.190:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:15:24 -6:00 GMT,24.167.101.141:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:16:00 -6:00 GMT,24.166.53.50:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:16:34 -6:00 GMT,24.166.23.68:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:20:52 -6:00 GMT,24.164.85.236:0,192.168.0.101:0,ICMP (type:8/subtype:0)
PE,2004/01/09,11:20:56 -6:00 GMT,Internet Explorer,127.0.0.1:3444,N/A
FWIN,2004/01/09,11:21:20 -6:00 GMT,24.166.120.154:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:21:42 -6:00 GMT,142.161.5.6:0,192.168.0.101:0,ICMP (type:3/subtype:1)
FWIN,2004/01/09,11:21:44 -6:00 GMT,142.161.5.38:0,192.168.0.101:0,ICMP (type:3/subtype:1)
FWIN,2004/01/09,11:22:42 -6:00 GMT,24.164.79.122:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:23:44 -6:00 GMT,24.166.104.244:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:24:30 -6:00 GMT,24.164.106.77:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:24:46 -6:00 GMT,24.166.47.202:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:26:10 -6:00 GMT,24.165.96.197:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:26:18 -6:00 GMT,24.167.158.53:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:27:22 -6:00 GMT,24.164.17.247:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:30:24 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,11:32:34 -6:00 GMT,24.165.22.206:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:33:24 -6:00 GMT,24.166.83.193:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:34:34 -6:00 GMT,24.164.86.23:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:35:54 -6:00 GMT,24.166.68.163:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:35:58 -6:00 GMT,24.165.199.80:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:37:52 -6:00 GMT,24.167.74.187:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:39:28 -6:00 GMT,24.166.38.83:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:39:46 -6:00 GMT,24.164.103.211:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:40:26 -6:00 GMT,142.161.5.6:0,192.168.0.101:0,ICMP (type:3/subtype:1)
FWIN,2004/01/09,11:40:32 -6:00 GMT,142.161.5.38:0,192.168.0.101:0,ICMP (type:3/subtype:1)
FWIN,2004/01/09,11:44:04 -6:00 GMT,66.52.249.70:666,192.168.0.101:1026,UDP
FWIN,2004/01/09,11:44:28 -6:00 GMT,24.164.72.14:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:45:10 -6:00 GMT,24.168.220.0:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:48:52 -6:00 GMT,24.164.197.219:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:49:10 -6:00 GMT,4.60.136.197:21261,192.168.0.101:3283,UDP
FWIN,2004/01/09,11:50:28 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,11:51:58 -6:00 GMT,24.164.202.13:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:52:04 -6:00 GMT,24.166.60.56:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:54:18 -6:00 GMT,24.164.78.106:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,11:59:06 -6:00 GMT,24.166.78.243:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:00:52 -6:00 GMT,24.168.162.176:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:04:04 -6:00 GMT,24.164.197.87:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:05:44 -6:00 GMT,24.166.175.2:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:06:00 -6:00 GMT,24.165.11.106:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:09:02 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,12:09:24 -6:00 GMT,24.166.82.64:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:13:30 -6:00 GMT,24.166.74.15:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:13:48 -6:00 GMT,24.166.47.202:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:22:16 -6:00 GMT,24.165.58.16:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:24:08 -6:00 GMT,24.166.210.61:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:24:32 -6:00 GMT,24.169.224.60:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:25:16 -6:00 GMT,24.166.51.192:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:28:22 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,12:28:28 -6:00 GMT,24.166.126.139:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:33:50 -6:00 GMT,24.166.107.99:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:36:30 -6:00 GMT,24.165.180.119:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:36:38 -6:00 GMT,24.165.182.196:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:39:38 -6:00 GMT,24.167.105.62:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:42:06 -6:00 GMT,24.166.38.75:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:43:54 -6:00 GMT,24.166.89.137:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:46:26 -6:00 GMT,24.168.157.242:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:46:32 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,12:48:12 -6:00 GMT,24.168.196.205:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:50:42 -6:00 GMT,24.164.24.107:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:54:48 -6:00 GMT,24.167.78.17:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:55:46 -6:00 GMT,142.161.5.6:0,192.168.0.101:0,ICMP (type:3/subtype:1)
FWIN,2004/01/09,12:56:00 -6:00 GMT,24.166.105.20:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:57:48 -6:00 GMT,202.103.172.45:45654,192.168.0.101:1026,UDP
FWIN,2004/01/09,12:58:22 -6:00 GMT,24.166.32.24:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,12:58:30 -6:00 GMT,24.166.117.5:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,13:00:34 -6:00 GMT,24.164.109.34:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,13:03:08 -6:00 GMT,24.166.47.202:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,13:05:44 -6:00 GMT,24.166.35.36:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,13:05:50 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
PE,2004/01/09,13:06:00 -6:00 GMT,Symantec NetDetect,192.168.0.1:53,N/A
PE,2004/01/09,13:06:14 -6:00 GMT,LiveUpdate Engine COM Module,192.168.0.1:53,N/A
FWIN,2004/01/09,13:06:36 -6:00 GMT,24.166.116.215:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,13:11:06 -6:00 GMT,24.167.104.1:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,13:11:28 -6:00 GMT,24.166.249.132:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,13:13:36 -6:00 GMT,24.165.156.74:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,13:14:48 -6:00 GMT,24.165.198.15:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,13:15:02 -6:00 GMT,24.166.238.89:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,13:15:44 -6:00 GMT,24.167.86.111:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,13:18:40 -6:00 GMT,24.165.231.176:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,13:23:16 -6:00 GMT,24.166.23.68:0,192.168.0.101:0,ICMP (type:8/subtype:0)
FWIN,2004/01/09,13:23:40 -6:00 GMT,81.51.110.144:0,192.168.0.101:0,ICMP (type:3/subtype:3)
FWIN,2004/01/09,13:24:00 -6:00 GMT,24.167.120.179:0,192.168.0.101:0,ICMP (type:8/subtype:0)
PE,2004/01/09,13:24:24 -6:00 GMT,Windows Explorer,192.168.0.1:53,N/A
PE,2004/01/09,13:24:48 -6:00 GMT,Windows Explorer,0.0.0.0:0,N/A
PE,2004/01/09,13:24:50 -6:00 GMT,Windows Explorer,0.0.0.0:0,N/A
PE,2004/01/09,13:25:00 -6:00 GMT,Windows Explorer,0.0.0.0:0,N/A
PE,2004/01/09,13:25:04 -6:00 GMT,Windows Explorer,0.0.0.0:0,N/A
FWIN,2004/01/09,13:28:10 -6:00 GMT,24.238.183.172:4309,192.168.0.101:27374,TCP (flags:S)
FWIN,2004/01/09,13:28:26 -6:00 GMT,24.164.164.64:0,192.168.0.101:0,ICMP (type:8/subtype:0)

________________________________________________________________ Are you using autologon (i.e. do you select a user and/or enter a password at logon, or does it boot straight into windows)?
___________________________________________________________
I enter my password at logon.

This 'Weather Bug' is very invasive, and does lots of 'calling homes' and uses resources without you knowing it. Suggest that you consider un-installing it and buy yourself one of those neat indoor/outdoor digital thermometers. It has a lot more features....

I just noticed that there were some "Common Client CC App was denied Internet access because of one or more modules"
messages in the log.

I'm a newbie so please be patient with me I was having problems with downloading my email in Outlook today (now working fine)

»[Help] Outlook error message

said by bendjo:

---

vsomon is not loaded before anything else on my system. My ntbtlog shows 96 drivers loaded before vsdatant more importantly tcpip.sys is loaded eighteen drivers before vsdatant.

---

Everything is blocked on my system before windows loads everything. I can ctrl+alt+del when windows just starts and vsmon is already there. I'm runnin 98se, ZAP 4.5.

quote:

---

»www.dshield.org/pipermai ··· 0679.php
"192.168 is the range of reserved class C nets. These are not routable and are commonly used for private LANs that are generally masqueraded by firewalls or proxy servers. Check to see if this is not just the internal interface address of your linksys. I haven't used that product. But that would not surprise me. In any event, there is no point worrying about a threat from that address. It is not routable on the 'net anyway. BTW, the reserved nets are 10.0.0.0 (class A), 172.16-31.0.0 (class Bs) and 192.168.0-255.0 (class Cs)." Are you behind a router? Linksys routers are on 192.168.1.1.

---

»ws.arin.net/cgi-bin/whois.pl

From what I am gathering, if your prg is accessing 192.168.0.1, does that mean it is just a loopback?
--
He that feeds a disease, feeds an enemy. Some diseases are starved. Starve your sins by fasting and humiliation. Either kill your sin, or your sin will kill you. - Thomas Watson Harmless as doves 131

Please read my post exocet_cm , I managed to reproduce RockyRMG problem. I had everything blocked in ZA, vsmon.exe was running and still apps could communicate outbound before ZA GUI loaded.

said by Tablet:

---

vsmon.exe was running and still apps could communicate outbound.

---

That is interesting. The app is running but not blocking traffic.

From what I tested it seems that ZA is not blocking outbound traffic at all during loading Windows, only after the GUI loads it starts blocking outbound. Would be strange indeed that noone noticed so long, but it seems to be true.

Note that this is a different thing than discussed here: »How to set ZA to protect during bootup...(?). In that thread inbound blocking was discussed before logon, but this issue is more serious in the sense that apps may communicate outbound for a relatively long period of time until the computer completely boots to desktop.

said by Rimi

quote:

---

"192.168.x.x is declared by the IANA and IEEE as non-routable so any packets with this address as a destination will get stopped by the first router it enters. Even if the local router is "modified" to pass the packets, the ISP router will not pass the packet any further."

---

in »Public Server with 192.168.123.110 not possible?
Assuming that Rimi is correct, that would mean that the messageWeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1NS); access was denied.,N/A,N/A
PE,2004/01/08,21:48:10 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A on RockyRMG 's is saying that the connection was blocked by RockyRMG 's router although ZAP is allowing the connection?

said by exocet_cm:

---

From what I am gathering, if your prg is accessing 192.168.0.1, does that mean it is just a loopback?

---

I'd guess that address is a router, maybe Netgear or Linksys with NAT enabled.

Which makes it even more interesting.

EG

>>Safest method is to wait until everything loads and then connect.

I guess I should of stated that I have RoadRunner-so I'm alway's connected.

said by RockyRMG:

---

>>Safest method is to wait until everything loads and then connect.

I guess I should of stated that I have RoadRunner-so I'm alway's connected.

---

Do you have a router?

--
He that feeds a disease, feeds an enemy. Some diseases are starved. Starve your sins by fasting and humiliation. Either kill your sin, or your sin will kill you. - Thomas Watson Harmless as doves 131

said by exocet_cm:

---

said by Rimi:WeatherBug was unable to obtain permission for connecting to the Internet (192.168.0.1NS); access was denied.,N/A,N/A
PE,2004/01/08,21:48:10 -6:00 GMT,WeatherBug,192.168.0.1:53,N/A on RockyRMG 's is saying that the connection was blocked by RockyRMG 's router although ZAP is allowing the connection?

---

This is a DNS server connection on his local LAN and from what I see in the logs it appears that RockyRMG has blocked this access by blocking svchost.exe (Generic Host..)

I have a DLink 604-sorry I should of included that also.

Sooo
ZAP is allowing everything, although you have set it to block everything, in a specific window of time...lets say 10 seconds before ZAP loads. Your router though is blocking everything. This is showing up in the ZAP logs...
Can somebody verify what i've said ^^^ ?

--
He that feeds a disease, feeds an enemy. Some diseases are starved. Starve your sins by fasting and humiliation. Either kill your sin, or your sin will kill you. - Thomas Watson Harmless as doves 131