Linux
Analysis Report
8EJdOjNktT.elf
Overview
General Information
Detection
Mirai
Score: | 92 |
Range: | 0 - 100 |
Whitelisted: | false |
Signatures
Antivirus / Scanner detection for submitted sample
Yara detected Mirai
Multi AV Scanner detection for submitted file
Detected Mirai
Snort IDS alert for network traffic
Connects to many ports of the same IP (likely port scanning)
Uses known network protocols on non-standard ports
Sample tries to kill multiple processes (SIGKILL)
Uses the "uname" system call to query kernel version information (possible evasion)
Enumerates processes within the "proc" file system
Detected TCP or UDP traffic on non-standard ports
Sample tries to kill a process (SIGKILL)
Sample has stripped symbol table
HTTP GET or POST without a user agent
Sample contains strings indicative of BusyBox which embeds multiple Unix commands in a single executable
Classification
Analysis Advice
Some HTTP requests failed (404). It is likely that the sample will exhibit less behavior. |
Static ELF header machine description suggests that the sample might not execute correctly on this machine. |
Joe Sandbox Version: | 38.0.0 Beryl |
Analysis ID: | 1287510 |
Start date and time: | 2023-08-08 10:57:10 +02:00 |
Joe Sandbox Product: | CloudBasic |
Overall analysis duration: | 0h 7m 40s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | defaultlinuxfilecookbook.jbs |
Analysis system description: | Ubuntu Linux 20.04 x64 (Kernel 5.4.0-72, Firefox 91.0, Evince Document Viewer 3.36.10, LibreOffice 6.4.7.2, OpenJDK 11.0.11) |
Analysis Mode: | default |
Sample file name: | 8EJdOjNktT.elf |
Original Sample Name: | 2b8569d64cd321de100185b4bc9c964a.elf |
Detection: | MAL |
Classification: | mal92.spre.troj.linELF@0/0@0/0 |
- Report size exceeded maximum capacity and may have missing network information.
- VT rate limit hit for: http://139.162.169.65/8UsA.sh;
- VT rate limit hit for: http://139.162.169.65/bins/vcimanagement.x86
- VT rate limit hit for: http://192.168.0.14:80/cgi-bin/ViewLog.asp
Command: | /tmp/8EJdOjNktT.elf |
PID: | 6233 |
Exit Code: | 0 |
Exit Code Info: | |
Killed: | False |
Standard Output: | Infected By Cult |
Standard Error: |
- system is lnxubuntu20
- 8EJdOjNktT.elf New Fork (PID: 6236, Parent: 6233)
- 8EJdOjNktT.elf New Fork (PID: 6237, Parent: 6233)
- 8EJdOjNktT.elf New Fork (PID: 6238, Parent: 6233)
- 8EJdOjNktT.elf New Fork (PID: 6242, Parent: 6238)
- 8EJdOjNktT.elf New Fork (PID: 6243, Parent: 6238)
- 8EJdOjNktT.elf New Fork (PID: 6244, Parent: 6238)
- 8EJdOjNktT.elf New Fork (PID: 6248, Parent: 6238)
- 8EJdOjNktT.elf New Fork (PID: 6249, Parent: 6238)
- 8EJdOjNktT.elf New Fork (PID: 6250, Parent: 6238)
- cleanup
Name | Description | Attribution | Blogpost URLs | Link |
---|---|---|---|---|
Mirai | Mirai is one of the first significant botnets targeting exposed networking devices running Linux. Found in August 2016 by MalwareMustDie, its name means "future" in Japanese. Nowadays it targets a wide range of networked embedded devices such as IP cameras, home routers (many vendors involved), and other IoT devices. Since the source code was published on "Hack Forums" many variants of the Mirai family appeared, infecting mostly home networks all around the world. | No Attribution |
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_Mirai_12 | Yara detected Mirai | Joe Security |
Timestamp: | 192.168.2.2395.100.115.943660802839471 08/08/23-11:00:23.706549 |
SID: | 2839471 |
Source Port: | 43660 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.68.61.24244170802839471 08/08/23-11:00:03.358232 |
SID: | 2839471 |
Source Port: | 44170 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.251.757076802839471 08/08/23-10:59:26.554484 |
SID: | 2839471 |
Source Port: | 57076 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.21.189.20233954802839471 08/08/23-10:58:35.455509 |
SID: | 2839471 |
Source Port: | 33954 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.43.16246302802839471 08/08/23-10:59:31.787365 |
SID: | 2839471 |
Source Port: | 46302 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.110.85.10734448802839471 08/08/23-11:00:33.646038 |
SID: | 2839471 |
Source Port: | 34448 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.168.437380802839471 08/08/23-10:58:02.264582 |
SID: | 2839471 |
Source Port: | 37380 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.198.141.5458008802839471 08/08/23-10:59:37.522054 |
SID: | 2839471 |
Source Port: | 58008 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.99.32.14038736802839471 08/08/23-10:58:45.356440 |
SID: | 2839471 |
Source Port: | 38736 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.175.33.1755028802839471 08/08/23-10:58:34.883521 |
SID: | 2839471 |
Source Port: | 55028 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.179.222.4550466802839471 08/08/23-10:59:19.566432 |
SID: | 2839471 |
Source Port: | 50466 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.161.97.18236528802839471 08/08/23-10:58:20.425873 |
SID: | 2839471 |
Source Port: | 36528 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.216.144.11641156802839471 08/08/23-10:59:51.416497 |
SID: | 2839471 |
Source Port: | 41156 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.135.29.12856600802839471 08/08/23-10:59:03.323966 |
SID: | 2839471 |
Source Port: | 56600 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.217.215.13833388802839471 08/08/23-11:00:06.968452 |
SID: | 2839471 |
Source Port: | 33388 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.101.14.4439888802839471 08/08/23-10:58:50.011094 |
SID: | 2839471 |
Source Port: | 39888 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.217.157.4941120802839471 08/08/23-10:59:02.155703 |
SID: | 2839471 |
Source Port: | 41120 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.179.249.1351040802839471 08/08/23-10:59:46.911207 |
SID: | 2839471 |
Source Port: | 51040 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.5.63.17153576802839471 08/08/23-10:58:45.728302 |
SID: | 2839471 |
Source Port: | 53576 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.46.54.17038682802839471 08/08/23-10:58:51.720661 |
SID: | 2839471 |
Source Port: | 38682 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.137.21233492802839471 08/08/23-10:58:06.919630 |
SID: | 2839471 |
Source Port: | 33492 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.68.59.1239622802839471 08/08/23-11:00:06.981249 |
SID: | 2839471 |
Source Port: | 39622 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.226.150.20734796802839471 08/08/23-10:58:01.169347 |
SID: | 2839471 |
Source Port: | 34796 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.135.21940404802839471 08/08/23-10:59:19.557257 |
SID: | 2839471 |
Source Port: | 40404 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.179.246.8348784802839471 08/08/23-10:59:54.797095 |
SID: | 2839471 |
Source Port: | 48784 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.96.19144272802839471 08/08/23-10:59:17.488682 |
SID: | 2839471 |
Source Port: | 44272 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.101.175.5057998802839471 08/08/23-10:59:19.637457 |
SID: | 2839471 |
Source Port: | 57998 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.216.19.22857056802839471 08/08/23-10:59:38.540807 |
SID: | 2839471 |
Source Port: | 57056 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.216.11.14733488802839471 08/08/23-11:00:14.342317 |
SID: | 2839471 |
Source Port: | 33488 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.208.199.3441556802839471 08/08/23-10:58:45.369707 |
SID: | 2839471 |
Source Port: | 41556 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.177.172.9639042802839471 08/08/23-10:58:20.638807 |
SID: | 2839471 |
Source Port: | 39042 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.149.122.940650802839471 08/08/23-10:58:16.426409 |
SID: | 2839471 |
Source Port: | 40650 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23197.39.101.21148050372152835222 08/08/23-11:00:33.507508 |
SID: | 2835222 |
Source Port: | 48050 |
Destination Port: | 37215 |
Protocol: | TCP |
Classtype: | A Network Trojan was detected |
Timestamp: | 192.168.2.2395.100.149.21958248802839471 08/08/23-11:00:35.954713 |
SID: | 2839471 |
Source Port: | 58248 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.35.17.10745836802839471 08/08/23-10:59:07.131371 |
SID: | 2839471 |
Source Port: | 45836 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.61.15358996802839471 08/08/23-10:58:04.829880 |
SID: | 2839471 |
Source Port: | 58996 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.104.13.23954412802839471 08/08/23-11:00:36.755041 |
SID: | 2839471 |
Source Port: | 54412 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.121.0.13033498802839471 08/08/23-10:59:07.935272 |
SID: | 2839471 |
Source Port: | 33498 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.43.238.4938198802839471 08/08/23-10:58:28.574345 |
SID: | 2839471 |
Source Port: | 38198 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.76.14.22750764802839471 08/08/23-10:59:44.355991 |
SID: | 2839471 |
Source Port: | 50764 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.200.9438930802839471 08/08/23-11:00:48.776528 |
SID: | 2839471 |
Source Port: | 38930 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.217.19.1834828802839471 08/08/23-11:00:30.038378 |
SID: | 2839471 |
Source Port: | 34828 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.58.65.10155162802839471 08/08/23-10:59:51.607591 |
SID: | 2839471 |
Source Port: | 55162 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.133.83.9849068802839471 08/08/23-10:59:26.369126 |
SID: | 2839471 |
Source Port: | 49068 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.86.65.1336912802839471 08/08/23-10:59:51.553242 |
SID: | 2839471 |
Source Port: | 36912 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.238.208.24646818802839471 08/08/23-11:00:11.691201 |
SID: | 2839471 |
Source Port: | 46818 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.108.19.2836548802839471 08/08/23-10:59:11.358718 |
SID: | 2839471 |
Source Port: | 36548 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.86.73.8936024802839471 08/08/23-11:00:48.777854 |
SID: | 2839471 |
Source Port: | 36024 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.65.79.15740546802839471 08/08/23-10:59:51.505725 |
SID: | 2839471 |
Source Port: | 40546 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.168.437336802839471 08/08/23-10:58:01.123926 |
SID: | 2839471 |
Source Port: | 37336 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.232.178.4440610802839471 08/08/23-11:00:11.534615 |
SID: | 2839471 |
Source Port: | 40610 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.46.33.10043816802839471 08/08/23-10:58:27.547834 |
SID: | 2839471 |
Source Port: | 43816 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.48.20551760802839471 08/08/23-11:00:14.315264 |
SID: | 2839471 |
Source Port: | 51760 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.179.196.14438068802839471 08/08/23-10:59:28.901032 |
SID: | 2839471 |
Source Port: | 38068 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.70.175.21045996802839471 08/08/23-10:59:36.234336 |
SID: | 2839471 |
Source Port: | 45996 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.211.127.20953770802839471 08/08/23-10:59:49.335972 |
SID: | 2839471 |
Source Port: | 53770 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.193.181.4552028802839471 08/08/23-10:59:22.779800 |
SID: | 2839471 |
Source Port: | 52028 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.132.36.23652762802839471 08/08/23-10:59:41.692921 |
SID: | 2839471 |
Source Port: | 52762 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.220.137.18633942802839471 08/08/23-10:58:53.161441 |
SID: | 2839471 |
Source Port: | 33942 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.80.190.13634636802839471 08/08/23-11:00:06.006913 |
SID: | 2839471 |
Source Port: | 34636 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.142.203.22838256802839471 08/08/23-10:59:49.380510 |
SID: | 2839471 |
Source Port: | 38256 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.46.54.17038680802839471 08/08/23-10:58:51.722387 |
SID: | 2839471 |
Source Port: | 38680 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.65.101.2552338802839471 08/08/23-10:59:55.347191 |
SID: | 2839471 |
Source Port: | 52338 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23157.230.252.25257892372152835222 08/08/23-10:59:06.918588 |
SID: | 2835222 |
Source Port: | 57892 |
Destination Port: | 37215 |
Protocol: | TCP |
Classtype: | A Network Trojan was detected |
Timestamp: | 192.168.2.2395.138.138.6837790802839471 08/08/23-10:58:49.200182 |
SID: | 2839471 |
Source Port: | 37790 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.58.64.16340918802839471 08/08/23-10:58:49.504610 |
SID: | 2839471 |
Source Port: | 40918 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.91.10.5155884802839471 08/08/23-10:59:02.193162 |
SID: | 2839471 |
Source Port: | 55884 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.5.63.17153556802839471 08/08/23-10:58:45.513899 |
SID: | 2839471 |
Source Port: | 53556 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.18.63.9533462802839471 08/08/23-10:59:26.462677 |
SID: | 2839471 |
Source Port: | 33462 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.13.65.3435724802839471 08/08/23-10:59:55.376632 |
SID: | 2839471 |
Source Port: | 35724 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.101.172.11448876802839471 08/08/23-10:58:39.990433 |
SID: | 2839471 |
Source Port: | 48876 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.207.209.1944444802839471 08/08/23-10:58:06.969824 |
SID: | 2839471 |
Source Port: | 44444 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.188.66.3835196802839471 08/08/23-10:58:59.754774 |
SID: | 2839471 |
Source Port: | 35196 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.99.82.22335136802839471 08/08/23-10:59:36.202881 |
SID: | 2839471 |
Source Port: | 35136 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.198.44.14352048802839471 08/08/23-10:59:22.761308 |
SID: | 2839471 |
Source Port: | 52048 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.208.243.24460506802839471 08/08/23-10:59:31.785457 |
SID: | 2839471 |
Source Port: | 60506 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.86.72.8845446802839471 08/08/23-11:00:08.335500 |
SID: | 2839471 |
Source Port: | 45446 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.49.184.12755738802839471 08/08/23-10:58:26.110580 |
SID: | 2839471 |
Source Port: | 55738 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.101.144.5841016802839471 08/08/23-10:58:49.200028 |
SID: | 2839471 |
Source Port: | 41016 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.217.211.14650684802839471 08/08/23-11:00:32.262193 |
SID: | 2839471 |
Source Port: | 50684 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.56.40.23342376802839471 08/08/23-11:00:14.178100 |
SID: | 2839471 |
Source Port: | 42376 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.182.255.9955510802839471 08/08/23-10:58:34.887477 |
SID: | 2839471 |
Source Port: | 55510 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.163.125.745770802839471 08/08/23-10:58:32.466641 |
SID: | 2839471 |
Source Port: | 45770 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.82.219.22040528802839471 08/08/23-10:58:07.081265 |
SID: | 2839471 |
Source Port: | 40528 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.13.65.3435732802839471 08/08/23-10:59:55.642759 |
SID: | 2839471 |
Source Port: | 35732 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.198.84.14047596802839471 08/08/23-10:59:17.491873 |
SID: | 2839471 |
Source Port: | 47596 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.101.189.248564802839471 08/08/23-10:59:19.632369 |
SID: | 2839471 |
Source Port: | 48564 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.78.43.4433412802839471 08/08/23-10:59:55.292808 |
SID: | 2839471 |
Source Port: | 33412 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.43.244.1952738802839471 08/08/23-10:58:59.697313 |
SID: | 2839471 |
Source Port: | 52738 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.48.165.12047870802839471 08/08/23-10:58:28.185601 |
SID: | 2839471 |
Source Port: | 47870 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.217.215.16357766802839471 08/08/23-10:59:54.817307 |
SID: | 2839471 |
Source Port: | 57766 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.198.100.7558982802839471 08/08/23-10:59:06.745520 |
SID: | 2839471 |
Source Port: | 58982 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.210.20.23733604802839471 08/08/23-10:58:01.166484 |
SID: | 2839471 |
Source Port: | 33604 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.185.154.13235630802839471 08/08/23-10:59:41.517837 |
SID: | 2839471 |
Source Port: | 35630 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.51.252.12158032802839471 08/08/23-10:59:28.697250 |
SID: | 2839471 |
Source Port: | 58032 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.184.45.15040150802839471 08/08/23-10:59:30.510463 |
SID: | 2839471 |
Source Port: | 40150 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.121.178.18832938802839471 08/08/23-10:58:59.390751 |
SID: | 2839471 |
Source Port: | 32938 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.147.108.22955986802839471 08/08/23-10:59:28.642464 |
SID: | 2839471 |
Source Port: | 55986 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.47.161.6247920802839471 08/08/23-10:59:04.450389 |
SID: | 2839471 |
Source Port: | 47920 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.99.104.22158354802839471 08/08/23-10:58:55.450698 |
SID: | 2839471 |
Source Port: | 58354 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.174.151.8352526802839471 08/08/23-10:59:06.766263 |
SID: | 2839471 |
Source Port: | 52526 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.57.129.2660148802839471 08/08/23-10:59:51.622086 |
SID: | 2839471 |
Source Port: | 60148 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.210.134.4550588802839471 08/08/23-11:00:14.858441 |
SID: | 2839471 |
Source Port: | 50588 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2341.87.89.13635018372152835222 08/08/23-10:58:27.242274 |
SID: | 2835222 |
Source Port: | 35018 |
Destination Port: | 37215 |
Protocol: | TCP |
Classtype: | A Network Trojan was detected |
Timestamp: | 192.168.2.2395.238.49.9342828802839471 08/08/23-10:59:46.936691 |
SID: | 2839471 |
Source Port: | 42828 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.126.102.21843556802839471 08/08/23-11:00:32.195189 |
SID: | 2839471 |
Source Port: | 43556 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.160.98.20751660802839471 08/08/23-10:59:07.902091 |
SID: | 2839471 |
Source Port: | 51660 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.77.5.5347074802839471 08/08/23-10:59:49.333078 |
SID: | 2839471 |
Source Port: | 47074 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.174.1.6034718802839471 08/08/23-11:00:43.080040 |
SID: | 2839471 |
Source Port: | 34718 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.238.21539364802839471 08/08/23-10:58:55.458384 |
SID: | 2839471 |
Source Port: | 39364 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.151.247.7448792802839471 08/08/23-10:59:06.753605 |
SID: | 2839471 |
Source Port: | 48792 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.231.78.2947352802839471 08/08/23-10:59:12.338937 |
SID: | 2839471 |
Source Port: | 47352 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.204.110.3660432802839471 08/08/23-10:59:02.459085 |
SID: | 2839471 |
Source Port: | 60432 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.86.126.22660266802839471 08/08/23-11:00:03.389086 |
SID: | 2839471 |
Source Port: | 60266 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.217.128.1555842802839471 08/08/23-11:00:14.081865 |
SID: | 2839471 |
Source Port: | 55842 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.72.173.14141550802839471 08/08/23-11:00:35.944260 |
SID: | 2839471 |
Source Port: | 41550 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.58.21733598802839471 08/08/23-10:58:20.104138 |
SID: | 2839471 |
Source Port: | 33598 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.97.28.15248942802839471 08/08/23-10:58:55.459182 |
SID: | 2839471 |
Source Port: | 48942 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.85.94.22860848802839471 08/08/23-10:59:12.307382 |
SID: | 2839471 |
Source Port: | 60848 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.212.188.941530802839471 08/08/23-10:59:54.868875 |
SID: | 2839471 |
Source Port: | 41530 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.236.20942796802839471 08/08/23-11:00:11.652922 |
SID: | 2839471 |
Source Port: | 42796 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.137.173.11856552802839471 08/08/23-10:58:28.713300 |
SID: | 2839471 |
Source Port: | 56552 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.248.252.2343826802839471 08/08/23-11:00:33.223698 |
SID: | 2839471 |
Source Port: | 43826 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.92.128.15750654802839471 08/08/23-10:58:32.482584 |
SID: | 2839471 |
Source Port: | 50654 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.219.11456382802839471 08/08/23-10:58:35.609588 |
SID: | 2839471 |
Source Port: | 56382 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.174.1.6034708802839471 08/08/23-11:00:42.087225 |
SID: | 2839471 |
Source Port: | 34708 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.118.105.11443530802839471 08/08/23-11:00:03.306379 |
SID: | 2839471 |
Source Port: | 43530 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.105.88.23032978802839471 08/08/23-10:58:22.684369 |
SID: | 2839471 |
Source Port: | 32978 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.56.151.22948152802839471 08/08/23-11:00:21.482377 |
SID: | 2839471 |
Source Port: | 48152 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.213.37.5552930802839471 08/08/23-10:59:37.520556 |
SID: | 2839471 |
Source Port: | 52930 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.60.24638350802839471 08/08/23-11:00:23.641461 |
SID: | 2839471 |
Source Port: | 38350 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.129.9147374802839471 08/08/23-11:00:21.427078 |
SID: | 2839471 |
Source Port: | 47374 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23197.148.91.2054926372152835222 08/08/23-10:59:47.505506 |
SID: | 2835222 |
Source Port: | 54926 |
Destination Port: | 37215 |
Protocol: | TCP |
Classtype: | A Network Trojan was detected |
Timestamp: | 192.168.2.2388.221.32.5846584802839471 08/08/23-10:58:02.651414 |
SID: | 2839471 |
Source Port: | 46584 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.103.3958768802839471 08/08/23-11:00:30.000316 |
SID: | 2839471 |
Source Port: | 58768 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.157.113.14439892802839471 08/08/23-10:58:51.654724 |
SID: | 2839471 |
Source Port: | 39892 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.28.11760784802839471 08/08/23-10:58:20.145739 |
SID: | 2839471 |
Source Port: | 60784 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.99.71.3549196802839471 08/08/23-10:59:58.764266 |
SID: | 2839471 |
Source Port: | 49196 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.248.161.4549234802839471 08/08/23-10:59:51.417050 |
SID: | 2839471 |
Source Port: | 49234 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.132.32.20155920802839471 08/08/23-10:59:11.714205 |
SID: | 2839471 |
Source Port: | 55920 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.69.1940278802839471 08/08/23-11:00:16.150546 |
SID: | 2839471 |
Source Port: | 40278 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.217.153.11547058802839471 08/08/23-10:58:26.108380 |
SID: | 2839471 |
Source Port: | 47058 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.105.80.13436976802839471 08/08/23-10:58:26.137234 |
SID: | 2839471 |
Source Port: | 36976 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.217.21.16334690802839471 08/08/23-10:59:51.415775 |
SID: | 2839471 |
Source Port: | 34690 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.48.233.15238214802839471 08/08/23-10:59:31.853271 |
SID: | 2839471 |
Source Port: | 38214 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.101.184.17833474802839471 08/08/23-10:58:24.033482 |
SID: | 2839471 |
Source Port: | 33474 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.48.165.12047860802839471 08/08/23-10:58:27.877746 |
SID: | 2839471 |
Source Port: | 47860 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.150.248.8858886802839471 08/08/23-11:00:42.139721 |
SID: | 2839471 |
Source Port: | 58886 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.101.219.14248536802839471 08/08/23-10:58:40.025388 |
SID: | 2839471 |
Source Port: | 48536 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.57.128.4852892802839471 08/08/23-10:59:49.385749 |
SID: | 2839471 |
Source Port: | 52892 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.110.173.17944656802839471 08/08/23-11:00:35.967394 |
SID: | 2839471 |
Source Port: | 44656 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.211.209.24035462802839471 08/08/23-11:00:48.719631 |
SID: | 2839471 |
Source Port: | 35462 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.204.14344392802839471 08/08/23-10:58:32.477373 |
SID: | 2839471 |
Source Port: | 44392 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.179.255.19242566802839471 08/08/23-10:58:37.402312 |
SID: | 2839471 |
Source Port: | 42566 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.48.192.4347500802839471 08/08/23-10:58:22.700129 |
SID: | 2839471 |
Source Port: | 47500 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.158.51.3850862802839471 08/08/23-11:00:21.000999 |
SID: | 2839471 |
Source Port: | 50862 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.133.213.11656146802839471 08/08/23-10:58:27.733287 |
SID: | 2839471 |
Source Port: | 56146 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.135.215.14159798802839471 08/08/23-11:00:06.930674 |
SID: | 2839471 |
Source Port: | 59798 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.216.143.22034928802839471 08/08/23-10:59:02.155786 |
SID: | 2839471 |
Source Port: | 34928 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.160.9.1552434802839471 08/08/23-10:59:09.503720 |
SID: | 2839471 |
Source Port: | 52434 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.247.204.23653374802839471 08/08/23-11:00:27.842840 |
SID: | 2839471 |
Source Port: | 53374 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.75.68.6740036802839471 08/08/23-10:59:19.621266 |
SID: | 2839471 |
Source Port: | 40036 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.177.58.24245240802839471 08/08/23-10:58:16.150167 |
SID: | 2839471 |
Source Port: | 45240 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.213.34.3650696802839471 08/08/23-10:58:35.424723 |
SID: | 2839471 |
Source Port: | 50696 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.76.6439392802839471 08/08/23-10:58:39.912571 |
SID: | 2839471 |
Source Port: | 39392 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.101.49.17145674802839471 08/08/23-10:58:49.508062 |
SID: | 2839471 |
Source Port: | 45674 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.193.193.15337372802839471 08/08/23-10:59:31.808638 |
SID: | 2839471 |
Source Port: | 37372 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.101.45.21457452802839471 08/08/23-10:57:59.960102 |
SID: | 2839471 |
Source Port: | 57452 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.120.10255136802839471 08/08/23-10:58:32.439978 |
SID: | 2839471 |
Source Port: | 55136 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.171.220.5833110802839471 08/08/23-10:59:07.904317 |
SID: | 2839471 |
Source Port: | 33110 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.245.12951904802839471 08/08/23-10:59:40.154303 |
SID: | 2839471 |
Source Port: | 51904 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.141.17947690802839471 08/08/23-10:58:01.120193 |
SID: | 2839471 |
Source Port: | 47690 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.172.86.22632942802839471 08/08/23-10:59:02.140201 |
SID: | 2839471 |
Source Port: | 32942 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.173.172.1458640802839471 08/08/23-11:00:14.365827 |
SID: | 2839471 |
Source Port: | 58640 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.101.150.12237182802839471 08/08/23-10:58:04.837701 |
SID: | 2839471 |
Source Port: | 37182 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.160.232.15458496802839471 08/08/23-10:59:07.899383 |
SID: | 2839471 |
Source Port: | 58496 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.117.208.20252848802839471 08/08/23-10:59:14.388683 |
SID: | 2839471 |
Source Port: | 52848 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.101.237.5449596802839471 08/08/23-10:58:30.321655 |
SID: | 2839471 |
Source Port: | 49596 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.183.10.2053412802839471 08/08/23-10:58:37.453987 |
SID: | 2839471 |
Source Port: | 53412 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.37.17833798802839471 08/08/23-10:59:14.390971 |
SID: | 2839471 |
Source Port: | 33798 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.226.200.8143866802839471 08/08/23-10:58:11.279117 |
SID: | 2839471 |
Source Port: | 43866 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.99.98.2657886802839471 08/08/23-11:00:23.646731 |
SID: | 2839471 |
Source Port: | 57886 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.217.55.4248584802839471 08/08/23-10:58:20.405370 |
SID: | 2839471 |
Source Port: | 48584 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.48.227.11647986802839471 08/08/23-10:58:37.545017 |
SID: | 2839471 |
Source Port: | 47986 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.163.250.13240224802839471 08/08/23-11:00:30.054692 |
SID: | 2839471 |
Source Port: | 40224 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.81.89.13457226802839471 08/08/23-10:58:53.151975 |
SID: | 2839471 |
Source Port: | 57226 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.99.65.10759452802839471 08/08/23-10:58:06.904902 |
SID: | 2839471 |
Source Port: | 59452 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.217.21.16334720802839471 08/08/23-10:59:51.650090 |
SID: | 2839471 |
Source Port: | 34720 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.154.208.10948356802839471 08/08/23-10:59:40.193550 |
SID: | 2839471 |
Source Port: | 48356 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.101.110.13836704802839471 08/08/23-10:59:49.307052 |
SID: | 2839471 |
Source Port: | 36704 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.248.122.5159192802839471 08/08/23-10:59:06.774755 |
SID: | 2839471 |
Source Port: | 59192 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.78.126.4737652802839471 08/08/23-11:00:36.202377 |
SID: | 2839471 |
Source Port: | 37652 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.128.6339836802839471 08/08/23-10:58:18.745735 |
SID: | 2839471 |
Source Port: | 39836 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.97.74.2445342802839471 08/08/23-10:59:38.825060 |
SID: | 2839471 |
Source Port: | 45342 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.57.133.18055142802839471 08/08/23-11:00:21.062452 |
SID: | 2839471 |
Source Port: | 55142 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.187.248.24052482802839471 08/08/23-10:59:07.388070 |
SID: | 2839471 |
Source Port: | 52482 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.138.14.14255252802839471 08/08/23-11:00:03.504754 |
SID: | 2839471 |
Source Port: | 55252 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.164.229.3849752802839471 08/08/23-10:58:27.481079 |
SID: | 2839471 |
Source Port: | 49752 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.121.165.21953630802839471 08/08/23-10:58:27.747366 |
SID: | 2839471 |
Source Port: | 53630 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.80.246.19950192802839471 08/08/23-10:59:02.189460 |
SID: | 2839471 |
Source Port: | 50192 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.95.170.15659090802839471 08/08/23-10:58:22.654612 |
SID: | 2839471 |
Source Port: | 59090 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.121.165.11554232802839471 08/08/23-10:58:27.463761 |
SID: | 2839471 |
Source Port: | 54232 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.168.211.5835628802839471 08/08/23-10:59:19.567700 |
SID: | 2839471 |
Source Port: | 35628 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.93.20.3339764802839471 08/08/23-10:59:12.277825 |
SID: | 2839471 |
Source Port: | 39764 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.154.232.12141818802839471 08/08/23-10:57:59.951381 |
SID: | 2839471 |
Source Port: | 41818 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.123.16552364802839471 08/08/23-10:58:39.985488 |
SID: | 2839471 |
Source Port: | 52364 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.45.29.18841068802839471 08/08/23-10:58:22.647997 |
SID: | 2839471 |
Source Port: | 41068 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.64.236.1835370802839471 08/08/23-10:59:28.942351 |
SID: | 2839471 |
Source Port: | 35370 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.59.210.23242496802839471 08/08/23-10:59:51.494897 |
SID: | 2839471 |
Source Port: | 42496 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.72.173.14141488802839471 08/08/23-11:00:32.317397 |
SID: | 2839471 |
Source Port: | 41488 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2337.189.159.24538966232404322 08/08/23-10:59:04.214370 |
SID: | 2404322 |
Source Port: | 38966 |
Destination Port: | 23 |
Protocol: | TCP |
Classtype: | A Network Trojan was detected |
Timestamp: | 192.168.2.2388.247.118.8955616802839471 08/08/23-10:58:20.132298 |
SID: | 2839471 |
Source Port: | 55616 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.76.223.17846060802839471 08/08/23-10:58:49.204287 |
SID: | 2839471 |
Source Port: | 46060 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.54.27.14547770802839471 08/08/23-11:00:43.603926 |
SID: | 2839471 |
Source Port: | 47770 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.231.16934474802839471 08/08/23-11:00:29.967803 |
SID: | 2839471 |
Source Port: | 34474 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.58.65.16954528802839471 08/08/23-11:00:24.866389 |
SID: | 2839471 |
Source Port: | 54528 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.19.204.23140322802839471 08/08/23-10:58:55.499296 |
SID: | 2839471 |
Source Port: | 40322 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.216.0.15946442802839471 08/08/23-10:58:35.462428 |
SID: | 2839471 |
Source Port: | 46442 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.93.20.3339736802839471 08/08/23-10:59:11.441357 |
SID: | 2839471 |
Source Port: | 39736 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.7.22650490802839471 08/08/23-10:59:37.524271 |
SID: | 2839471 |
Source Port: | 50490 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.42.51.1249468802839471 08/08/23-11:00:20.997436 |
SID: | 2839471 |
Source Port: | 49468 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.99.241.17841842802839471 08/08/23-10:58:45.356276 |
SID: | 2839471 |
Source Port: | 41842 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.86.66.11150056802839471 08/08/23-10:59:41.266405 |
SID: | 2839471 |
Source Port: | 50056 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.171.127.24943944802839471 08/08/23-10:59:54.820394 |
SID: | 2839471 |
Source Port: | 43944 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.72.5.25458986802839471 08/08/23-10:58:16.150246 |
SID: | 2839471 |
Source Port: | 58986 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.201.179.3758432802839471 08/08/23-11:00:16.221834 |
SID: | 2839471 |
Source Port: | 58432 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.203.250.10254036802839471 08/08/23-11:00:10.482175 |
SID: | 2839471 |
Source Port: | 54036 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.99.104.24944560802839471 08/08/23-10:59:26.360874 |
SID: | 2839471 |
Source Port: | 44560 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.198.163.9341936802839471 08/08/23-10:59:58.764365 |
SID: | 2839471 |
Source Port: | 41936 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.57.130.4147850802839471 08/08/23-11:00:36.099867 |
SID: | 2839471 |
Source Port: | 47850 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.221.20535682802839471 08/08/23-11:00:21.411813 |
SID: | 2839471 |
Source Port: | 35682 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.101.133.9737160802839471 08/08/23-10:58:35.459300 |
SID: | 2839471 |
Source Port: | 37160 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.64.188.4241886802839471 08/08/23-10:59:44.346587 |
SID: | 2839471 |
Source Port: | 41886 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.99.29.2537246802839471 08/08/23-10:58:06.928547 |
SID: | 2839471 |
Source Port: | 37246 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.8.57.21844274802839471 08/08/23-10:59:02.273276 |
SID: | 2839471 |
Source Port: | 44274 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.149.21957962802839471 08/08/23-11:00:23.687967 |
SID: | 2839471 |
Source Port: | 57962 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.179.181.5353274802839471 08/08/23-11:00:14.087031 |
SID: | 2839471 |
Source Port: | 53274 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23197.234.42.5658478372152835222 08/08/23-11:00:08.028792 |
SID: | 2835222 |
Source Port: | 58478 |
Destination Port: | 37215 |
Protocol: | TCP |
Classtype: | A Network Trojan was detected |
Timestamp: | 192.168.2.2395.217.208.9055322802839471 08/08/23-11:00:48.734800 |
SID: | 2839471 |
Source Port: | 55322 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.216.195.4556780802839471 08/08/23-11:00:03.344161 |
SID: | 2839471 |
Source Port: | 56780 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.97.7.249392802839471 08/08/23-11:00:48.756069 |
SID: | 2839471 |
Source Port: | 49392 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.238.5.18258448802839471 08/08/23-11:00:21.431946 |
SID: | 2839471 |
Source Port: | 58448 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.173.197.22635598802839471 08/08/23-10:58:02.503720 |
SID: | 2839471 |
Source Port: | 35598 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.169.219.2160932802839471 08/08/23-10:58:58.866930 |
SID: | 2839471 |
Source Port: | 60932 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.149.21957892802839471 08/08/23-11:00:21.087682 |
SID: | 2839471 |
Source Port: | 57892 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.216.221.24034206802839471 08/08/23-10:59:02.194614 |
SID: | 2839471 |
Source Port: | 34206 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.198.231.18547600802839471 08/08/23-10:59:17.490711 |
SID: | 2839471 |
Source Port: | 47600 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.84.144.25033298802839471 08/08/23-10:59:55.382872 |
SID: | 2839471 |
Source Port: | 33298 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.195.221.8047622802839471 08/08/23-11:00:32.180246 |
SID: | 2839471 |
Source Port: | 47622 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.59.181.19150976802839471 08/08/23-10:58:20.478873 |
SID: | 2839471 |
Source Port: | 50976 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.225.232.14445738802839471 08/08/23-11:00:23.698235 |
SID: | 2839471 |
Source Port: | 45738 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.101.228.21051520802839471 08/08/23-11:00:08.277193 |
SID: | 2839471 |
Source Port: | 51520 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.251.21840900802839471 08/08/23-11:00:08.285612 |
SID: | 2839471 |
Source Port: | 40900 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.85.75.11639904802839471 08/08/23-10:59:31.775922 |
SID: | 2839471 |
Source Port: | 39904 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.185.109.7739376802839471 08/08/23-10:59:11.965218 |
SID: | 2839471 |
Source Port: | 39376 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.213.2.19345980802839471 08/08/23-10:58:30.336997 |
SID: | 2839471 |
Source Port: | 45980 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.101.228.21051466802839471 08/08/23-11:00:06.954660 |
SID: | 2839471 |
Source Port: | 51466 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.101.64.7841982802839471 08/08/23-10:57:59.975468 |
SID: | 2839471 |
Source Port: | 41982 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.65.101.2552308802839471 08/08/23-10:59:54.826661 |
SID: | 2839471 |
Source Port: | 52308 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.86.230.23558212802839471 08/08/23-11:00:18.477589 |
SID: | 2839471 |
Source Port: | 58212 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.136.9.13259352802839471 08/08/23-10:59:40.214384 |
SID: | 2839471 |
Source Port: | 59352 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.76.223.17846152802839471 08/08/23-10:58:53.121462 |
SID: | 2839471 |
Source Port: | 46152 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.48.192.4347502802839471 08/08/23-10:58:22.704001 |
SID: | 2839471 |
Source Port: | 47502 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.217.140.5438702802839471 08/08/23-10:58:37.422316 |
SID: | 2839471 |
Source Port: | 38702 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.198.182.6934170802839471 08/08/23-10:58:53.142498 |
SID: | 2839471 |
Source Port: | 34170 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.79.17935396802839471 08/08/23-10:57:59.943630 |
SID: | 2839471 |
Source Port: | 35396 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.118.136.9060108802839471 08/08/23-10:58:01.160840 |
SID: | 2839471 |
Source Port: | 60108 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.167.54.13852250802839471 08/08/23-10:58:37.472882 |
SID: | 2839471 |
Source Port: | 52250 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.69.1940226802839471 08/08/23-11:00:14.322953 |
SID: | 2839471 |
Source Port: | 40226 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.151.243.11548448802839471 08/08/23-10:59:45.579260 |
SID: | 2839471 |
Source Port: | 48448 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.86.117.16852988802839471 08/08/23-11:00:21.030835 |
SID: | 2839471 |
Source Port: | 52988 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.161.138.10659990802839471 08/08/23-10:58:42.477590 |
SID: | 2839471 |
Source Port: | 59990 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.133.28.16045578802839471 08/08/23-10:58:37.490318 |
SID: | 2839471 |
Source Port: | 45578 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.210.101.2037302802839471 08/08/23-10:59:33.716864 |
SID: | 2839471 |
Source Port: | 37302 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.225.210.5345692802839471 08/08/23-10:58:49.151265 |
SID: | 2839471 |
Source Port: | 45692 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.216.65.11650788802839471 08/08/23-11:00:14.082502 |
SID: | 2839471 |
Source Port: | 50788 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.42.116.159402802839471 08/08/23-10:58:06.968086 |
SID: | 2839471 |
Source Port: | 59402 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.31.119.1045256802839471 08/08/23-10:58:27.861552 |
SID: | 2839471 |
Source Port: | 45256 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.217.171.24137822802839471 08/08/23-11:00:08.290560 |
SID: | 2839471 |
Source Port: | 37822 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.2.81.13846452802839471 08/08/23-11:00:26.579576 |
SID: | 2839471 |
Source Port: | 46452 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.182.34.12548388802839471 08/08/23-10:59:22.784894 |
SID: | 2839471 |
Source Port: | 48388 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.229.15446792802839471 08/08/23-11:00:43.574716 |
SID: | 2839471 |
Source Port: | 46792 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.99.168.10753912802839471 08/08/23-10:58:30.263393 |
SID: | 2839471 |
Source Port: | 53912 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.196.32.4944636802839471 08/08/23-10:58:11.669875 |
SID: | 2839471 |
Source Port: | 44636 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.99.206.6942376802839471 08/08/23-11:00:33.315539 |
SID: | 2839471 |
Source Port: | 42376 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.57.249.18535394802839471 08/08/23-10:59:02.242307 |
SID: | 2839471 |
Source Port: | 35394 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.215.8.7349038802839471 08/08/23-10:59:26.396012 |
SID: | 2839471 |
Source Port: | 49038 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.175.103.13934066802839471 08/08/23-11:00:05.979420 |
SID: | 2839471 |
Source Port: | 34066 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.168.60.14549776802839471 08/08/23-11:00:43.340274 |
SID: | 2839471 |
Source Port: | 49776 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.250.91.3235120802839471 08/08/23-10:58:37.383987 |
SID: | 2839471 |
Source Port: | 35120 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.165.218.24246620802839471 08/08/23-10:59:54.831214 |
SID: | 2839471 |
Source Port: | 46620 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.60.12647418802839471 08/08/23-11:00:48.708504 |
SID: | 2839471 |
Source Port: | 47418 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.80.255.540520802839471 08/08/23-11:00:21.366764 |
SID: | 2839471 |
Source Port: | 40520 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.124.13655882802839471 08/08/23-10:58:06.928496 |
SID: | 2839471 |
Source Port: | 55882 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.141.13737390802839471 08/08/23-10:58:20.405226 |
SID: | 2839471 |
Source Port: | 37390 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.68.78.14144758802839471 08/08/23-11:00:14.346367 |
SID: | 2839471 |
Source Port: | 44758 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.149.21957880802839471 08/08/23-11:00:21.004989 |
SID: | 2839471 |
Source Port: | 57880 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.47.11.23835344802839471 08/08/23-11:00:36.203044 |
SID: | 2839471 |
Source Port: | 35344 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.86.123.11749266802839471 08/08/23-10:59:36.202912 |
SID: | 2839471 |
Source Port: | 49266 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.179.167.8047248802839471 08/08/23-10:58:49.176778 |
SID: | 2839471 |
Source Port: | 47248 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.149.21958084802839471 08/08/23-11:00:27.704495 |
SID: | 2839471 |
Source Port: | 58084 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.216.105.18748506802839471 08/08/23-10:59:28.930088 |
SID: | 2839471 |
Source Port: | 48506 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.48.233.15238216802839471 08/08/23-10:59:31.861654 |
SID: | 2839471 |
Source Port: | 38216 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.184.19042070802839471 08/08/23-10:59:44.322380 |
SID: | 2839471 |
Source Port: | 42070 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.14.209.14758612802839471 08/08/23-10:58:40.113546 |
SID: | 2839471 |
Source Port: | 58612 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.56.79.10438476802839471 08/08/23-11:00:36.126235 |
SID: | 2839471 |
Source Port: | 38476 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.23112.213.102.16242658802839471 08/08/23-10:58:54.482684 |
SID: | 2839471 |
Source Port: | 42658 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.252.4258790802839471 08/08/23-10:59:40.193652 |
SID: | 2839471 |
Source Port: | 58790 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2388.221.111.3447774802839471 08/08/23-11:00:33.313970 |
SID: | 2839471 |
Source Port: | 47774 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.100.135.6655844802839471 08/08/23-11:00:42.087514 |
SID: | 2839471 |
Source Port: | 55844 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.217.236.1750362802839471 08/08/23-10:59:02.155616 |
SID: | 2839471 |
Source Port: | 50362 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.2395.215.131.21243460802839471 08/08/23-11:00:08.328143 |
SID: | 2839471 |
Source Port: | 43460 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
- • AV Detection
- • Networking
- • System Summary
- • Persistence and Installation Behavior
- • Hooking and other Techniques for Hiding and Protection
- • Malware Analysis System Evasion
- • Stealing of Sensitive Information
- • Remote Access Functionality
Click to jump to signature section
Show All Signature Results
AV Detection |
---|
Source: | Avira: |
Source: | ReversingLabs: | |||
Source: | Virustotal: | Perma Link |
Networking |
---|
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: |
Source: | TCP traffic: | ||
Source: | TCP traffic: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |