bj/bjyk/dhl.exe Malware and Adware DNS requests PCAP file donwload 360safe.com 360.cn

2016-09-27 18:58:41.396966 IP 192.168.1.102.57055 > 75.75.75.75.53: 60216+ A? conf.f.360.cn. (31)
E..;v…..k6…fKKKK…5.’./.8………..conf.f.360.cn…..
2016-09-27 18:58:41.444537 IP 192.168.1.102.57056 > 75.75.75.75.53: 1659+ A? qup.f.360.cn. (30)
E..:v…..k6…fKKKK…5.&.[.{………..qup.f.360.cn…..
2016-09-27 18:58:41.490821 IP 192.168.1.102.57057 > 75.75.75.75.53: 2309+ A? u.qurl.f.360.cn. (33)
E..=v…..k2…fKKKK…5.).. …………u.qurl.f.360.cn…..
2016-09-27 18:58:41.505450 IP 192.168.1.102.57058 > 75.75.75.75.53: 54974+ A? yk.lyjq.org. (29)
E..9v…..k5…fKKKK…5.%3…………..yk.lyjq.org…..
2016-09-27 18:58:41.536454 IP 192.168.1.102.57059 > 75.75.75.75.53: 50157+ A? qurl.f.360.cn. (31)
E..;v…..k2…fKKKK…5.’.d………….qurl.f.360.cn…..
2016-09-27 18:58:41.558898 IP 192.168.1.102.63316 > 54.175.122.20.8086: Flags [S], seq 1653969477, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
E..4a.@…&)…f6.z..T..b..E…… ..x…………..
2016-09-27 18:58:41.582908 IP 192.168.1.102.57060 > 75.75.75.75.53: 58655+ A? qurl.qh-lb.com. (32)
E..<v…..k0…fKKKK…5.(*…………..qurl.qh-lb.com…..
2016-09-27 18:58:41.864678 IP 192.168.1.102.57061 > 75.75.75.75.53: 23738+ A? qup.qh-lb.com. (31)
E..;v…..k0…fKKKK…5.’.r\…………qup.qh-lb.com…..
2016-09-27 18:58:41.912651 IP 192.168.1.102.57062 > 75.75.75.75.53: 33000+ A? sdup.360.cn. (29)
E..9v…..k1…fKKKK…5.%.g………….sdup.360.cn…..
2016-09-27 18:58:42.050953 IP 192.168.1.102.57063 > 75.75.75.75.53: 35550+ A? sdup.qh-lb.com. (32)
E..<v…..k-…fKKKK…5.(……………sdup.qh-lb.com…..
2016-09-27 18:58:42.317681 IP 192.168.1.102.57064 > 75.75.75.75.53: 28545+ A? sdupm.360.cn. (30)
E..:v…..k….fKKKK…5.&.>o…………sdupm.360.cn…..
2016-09-27 18:58:42.580881 IP 192.168.1.102.57065 > 75.75.75.75.53: 6578+ A? qd.code.360.cn. (32)
E..<v…..k+…fKKKK…5.(……………qd.code.360.cn…..
2016-09-27 18:58:43.159992 IP 192.168.1.102.57066 > 75.75.75.75.53: 53118+ A? qd.code.qihoo.com. (35)
E..?v…..k’…fKKKK…5.+u..~………..qd.code.qihoo.com…..
2016-09-27 18:58:43.661179 IP 192.168.1.102.57067 > 75.75.75.75.53: 51961+ A? stat.360safe.com. (34)
E..>v…..k’…fKKKK…5.*.y………….stat.360safe.com…..
2016-09-27 18:58:43.769545 IP 192.168.1.102.57068 > 75.75.75.75.53: 63988+ A? stat-s.360safe.com. (36)
E..@v…..k$…fKKKK…5.,pK………….stat-s.360safe.com…..
2016-09-27 18:58:43.868161 IP 192.168.1.102.51298 > 75.75.75.75.53: 49781+ A? stat-s.360safe.com.hsd1.md.comcast.net. (56)
E..Tv…..k….fKKKK.b.5.@.`.u………..stat-s.360safe.com.hsd1.md.comcast.net…..
2016-09-27 18:58:43.891614 IP 192.168.1.102.51298 > 75.75.76.76.53: 49781+ A? stat-s.360safe.com.hsd1.md.comcast.net. (56)
E..T>Y………fKKLL.b.5.@._.u………..stat-s.360safe.com.hsd1.md.comcast.net…..
2016-09-27 18:58:43.924561 IP 192.168.1.102.51299 > 75.75.75.75.53: 40253+ A? update.360safe.com. (36)
E..@v…..k!…fKKKK.c.5.,.@.=………..update.360safe.com…..
2016-09-27 18:58:43.972505 IP 192.168.1.102.51300 > 75.75.75.75.53: 891+ A? update-s.360safe.com. (38)
E..Bv…..k….fKKKK.d.5..,..{………..update-s.360safe.com…..
2016-09-27 18:58:44.057433 IP 192.168.1.102.64942 > 75.75.75.75.53: 11494+ A? update-s.360safe.com.hsd1.md.comcast.net. (58)
E..Vv…..k …fKKKK…5.B.&,…………update-s.360safe.com.hsd1.md.comcast.net…..
2016-09-27 18:58:44.078935 IP 192.168.1.102.64942 > 75.75.76.76.53: 11494+ A? update-s.360safe.com.hsd1.md.comcast.net. (58)
E..V>]………fKKLL…5.B.%,…………update-s.360safe.com.hsd1.md.comcast.net…..
2016-09-27 18:58:44.111921 IP 192.168.1.102.64943 > 75.75.75.75.53: 44949+ A? tr.p.360.cn. (29)
E..9v…..k$…fKKKK…5.%Kd………….tr.p.360.cn…..
2016-09-27 18:58:44.160571 IP 192.168.1.102.64944 > 75.75.75.75.53: 4425+ A? updateh.360safe.com. (37)
E..Av…..k….fKKKK…5.-…I………..updateh.360safe.com…..
2016-09-27 18:58:44.318570 IP 192.168.1.102.64945 > 75.75.75.75.53: 63423+ A? w.360.cn. (26)
E..6v…..k%…fKKKK…5.”……………w.360.cn…..
2016-09-27 18:58:44.489722 IP 192.168.1.102.64946 > 75.75.75.75.53: 46096+ A? stat.sd.360.cn. (32)
E..<v…..k….fKKKK…5.(……………stat.sd.360.cn…..
2016-09-27 18:58:44.551177 IP 192.168.1.102.64947 > 75.75.75.75.53: 44314+ A? sdl.360safe.com. (33)
E..=v…..k….fKKKK…5.)……………sdl.360safe.com…..