VICTIM:  	GET /p6.asp?MAC=00-0C-29-FA-CA-8B&Publicer=kk_01 HTTP/1.1Host: in.7cy.netUser-Agent: ClickAdsByIE 0.7.3Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5Accept-Language: zh-cn,zh;q=0.5Referer: http:/in.7cy.net/p6.aspContent-Type: application/x-www-form-urlencodedConnection: Close 
ATTACKER:	GET /p6.asp?MAC=00-0C-29-FA-CA-8B&Publicer=kk_01 HTTP/1.1Host: in1.7cy.netUser-Agent: ClickAdsByIE 0.7.3Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5Accept-Language: zh-cn,zh;q=0.5Referer: http:/in1.7cy.net/p6.aspContent-Type: application/x-www-form-urlencodedConnection: Close 
ATTACKER:	GET / HTTP/1.1Accept: */*Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: downloadfreewares.infoConnection: Keep-Alive 
ATTACKER:	GET /?245e7ff8 HTTP/1.1Accept: */*Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: downloadfreewares.infoConnection: Keep-Alive 
ATTACKER:	GET / HTTP/1.1Accept: */*Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: downloadfreewares.infoConnection: Keep-Alive 
ATTACKER:	GET /sd?s=95308&f=1 HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: as.casalemedia.comConnection: Keep-Alive 
ATTACKER:	GET /sd?s=95308&f=1&C=1 HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: as.casalemedia.comConnection: Keep-AliveCookie: CMID=qqPMB0Fuq4cAAHYFTuMAAAAj; CMPS=153; CMPP=001 
ATTACKER:	GET /apps/domainpark/show_afd_ads.js HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: pagead2.googlesyndication.comConnection: Keep-Alive 
ATTACKER:	GET /images/hdr_parked_ppc_4.png HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/hdr_parked_ppc_4.png?245e7ff8 HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/061703/spc_trans.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/hdr_parked_ppc_4.png HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/img_gdlogo.png HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/mrkt_250x80_4.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/tp250x80_7.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/img_saletag.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/img_parkedfreetext_b.png HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/but_search.png HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/tp468x60_7.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/ad_ppc_prodadv.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/ban_199_3.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/061703/but_go_orange_green.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/img_orangearrows.png HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/dbs_2.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/log_me.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/ad_ppc_hosting.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/ad_ppc_biz3.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/log_icann.png HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET / HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: downloadfreewares.infoConnection: Keep-Alive 
ATTACKER:	GET /images/img_footertext2.png HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/bul_blacksquare.png HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/bul_bluesquare.png HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/ad_ppc_wst.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/ad_ppc_gdauctions.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: images-pw.secureserver.netConnection: Keep-Alive 
ATTACKER:	GET /images/spacer.gif?q=L3MkWGAkYGt4ZwRkAwx3AwpmBQR5BQNkAQxyZwMaWGAkZwRjZPHlAzHyZ3RyZwMhWGAkZPHlAzZyZ3RjWGV2MJLyZ3RjWGV2MvHmpFHlAzIaWGAkZwNjBGRlZGZlZGV1AQVyZwMwrFHmpGRyZwM0MlHmpGVyZwM4WGAkWGV2MzqjWGAkZPHlAz56WGAkZPHlAzMjWGAkAQp5WGV2nT5aWGAkZFHlAaEzWGAkAvHlAaOjWGAkFRLyZwMwnPHmpGR=-1 HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: downloadfreewares.infoConnection: Keep-Alive 
ATTACKER:	GET /assets/spc_trans.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: imagesak.godaddy.comConnection: Keep-Alive 
ATTACKER:	GET /aaa/help/hlp_toplft.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: imagesak.godaddy.comConnection: Keep-Alive 
ATTACKER:	GET /aaa/help/hlp_toprt.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: imagesak.godaddy.comConnection: Keep-Alive 
ATTACKER:	GET /aaa/help/hlp_botlft.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: imagesak.godaddy.comConnection: Keep-Alive 
ATTACKER:	GET /aaa/help/hlp_botrt.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: imagesak.godaddy.comConnection: Keep-Alive 
ATTACKER:	GET /aaa/help/hlp_top.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: imagesak.godaddy.comConnection: Keep-Alive 
ATTACKER:	GET /favicon.ico HTTP/1.1Accept: */*Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: downloadfreewares.infoConnection: Keep-Alive 
ATTACKER:	GET /aaa/help/hlp_sidelft.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: imagesak.godaddy.comConnection: Keep-Alive 
ATTACKER:	GET /aaa/help/hlp_sidert.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: imagesak.godaddy.comConnection: Keep-Alive 
ATTACKER:	GET /aaa/help/hlp_bot.gif HTTP/1.1Accept: */*Referer: http:/downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: imagesak.godaddy.comConnection: Keep-Alive 
ATTACKER:	GET /favicon.ico HTTP/1.1Accept: */*Accept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: downloadfreewares.infoConnection: Keep-Alive 
VICTIM:  	\000\001\000\000\000\001\000\000\000\000\000\000\003msn\003com\000\000\001\000\001 
ATTACKER:	GET /V2/41975/186284/index.html?g=Af//8=&r=downloadfreewares.info/ HTTP/1.1Accept: */*Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: cdn.optmd.comConnection: Keep-Alive 
ATTACKER:	GET /casaleFlash.js HTTP/1.1Accept: */*Referer: http:/cdn.optmd.com/V2/41975/186284/index.html?g=Af//8=&r=downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: cdn.optmd.comConnection: Keep-Alive 
ATTACKER:	GET /imp.gif?c=41975&cr=186284 HTTP/1.1Accept: */*Referer: http:/cdn.optmd.com/V2/41975/186284/index.html?g=Af//8=&r=downloadfreewares.info/Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: i.casalemedia.comConnection: Keep-AliveCookie: CMID=qqPMB0Fuq4cAAHYFTuMAAAAj; CMPS=153; CMPP=001; CMS=95308&1260764742; CMST=SyW+RkslvkYB; CMSC=SyW+Rg**; CMDD=AAF0TAE*; CMD1=AACj90slvkYAAXRMAALXrAEBAA** 
ATTACKER:	GET /pub/shockwave/cabs/flash/swflash.cab HTTP/1.1Accept: application/x-cabinet-win32-x86, application/x-pe-win32-x86, application/octet-stream, application/x-setupscript, */*Accept-Language: en-usAccept-Encoding: gzip, deflateUser-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)Host: download.macromedia.comConnection: Keep-Alive 
VICTIM:  	\200L\001\003\000\0003\000\000\000\020\000\000\004\000\000\005\000\000\001\000\200\007\000\300\003\000\200\000\000\t\006\000@\000\000d\000\000b\000\000\003\000\000\006\002\000\200\004\000\200\000\000\023\000\000\022\000\000c\023\344DC+\341\353\247O\210\361f\022\370C\234 
VICTIM:  	\026\003\000\001\004\020\000\001\000\225%l\367\232\242\270&\305\375,\324\333\206\343U\0304tt\217\004\265\206}'E\010P\271{Z*\235\022\251\233mP\353.\333a\250\022/\274\206oX/\246T4\300q\355\364\203\022Q\013k\233K\305\364\003Y\201\027C)\275#|\036\305\006p+\374}\344W\004r\0261\\\317\215\273%\037\355\356\326\303\373\343\261\264\275\t]\256\276\301\007\031\363\354F\303\201Gj\006\314\225f\013\013\177\361\367\204J}f\000\203;\350\214\265\026&>5i\302op\270\021\026\242\255\025+\3569MI.\343=\241\334/\341Y\272\234\250C\206\0311gj\212\302s?\311@\220\237\366XW\334\325\322y\201\022\331&v\310\246\274\334\366\302\373\346\371\334\277O\360\375Xl[\324x\305\242P\025%\352\3109\030\326\255\244\0051\265t\225\213^G\300\320\341*oA\312\316\362A\204\321\371\260>\003M\357\254^\024\003\000\000\001\001\026\003\000\0008\361\005\345\263\270V\307\3358\270\324\302L=_`\310I\367\277\003\221\333\272%\036\\\250\306I\254\026\341\033\276:7V\20724\227Y\236-\021A\345\2370(\211'\366\032\353 
VICTIM:  	\027\003\000\001\201\320\277`I\275b\253\244L\023\247\327sl\215M\232\262\273\337\372GY\331\301\374\3272j\327\010\250\343\013\363_\251\246V\303\246%\356\255 \356\206y\346i\247\014\215G1/Z\352\036A\263V5\247\366\364\216\005\002\332\375\326\266\315i\2545\003.L\250)\253\234\224z%\261\027^\020mF@\334\236PM\213\271\367_\036P\337EmH8\305\$W\203%\250je\031w;9@p%\$voRh\202\303\246\201\036\026\324\034s\236\317\3374\003\256\274\032sG\205\360\211\342\276\316C\336^)\274\367\264\331\362\215\0073r\335\346a_\025\255\0319\035\353\227P\275\321\306\360\$\034\372\030pT\323\214\357\033F\325\013\313\036\266\001'\233\361\005P>\255\364\244#O'@v\006\200.f\325Ca\243`\206\264\274\350fY\251\226n\317v\271Mn\030\003\327\246\3002\307e}\362\225T\027\024W\246\271.3\315\235w\305\264\306j\345\010\312\237V\356*\370P\351U\\\310pp\\\361\344\307\005\214\342\274!\337\215\010\231kL\273\313\307\351k\210\246\232\342\033g\025\264A\313=S\332!7~V?\216\013n\254\204\223y\252\204\323}\236!\263\241(m\2044C\216\317\323\201\250\347\370\036\025\007\223\276\001Sh\304\340\312\254]l\331I\231\214F\350sS\311\267\024\300z!\237\266{\030\247\217@\311\251'\276 
ATTACKER:	PONG :i. 
VICTIM:  	JOIN &virtu 
ATTACKER:	PONG :i. 
VICTIM:  	JOIN &virtu 
ATTACKER:	PONG :i. 
VICTIM:  	JOIN &virtu