Looks like your empeg is open towards to world and is receiving requests from Nimda or CodeRed (don't recall exactly which made what of those two...) infected web servers (IIS) that are trying to infect the webserver in the empeg (which isn't IIS, so they won't succed, but they seem to cause a DoS instead, probably due to some sort of buffer overflow.

Despite fixes being available for a long time, there's still a huge number of machines where the owner/operator has no clue that it's infected...

/Michael