Linux
Analysis Report
z0r0.x86.elf
Overview
General Information
Detection
Mirai
Score: | 88 |
Range: | 0 - 100 |
Whitelisted: | false |
Signatures
Yara detected Mirai
Multi AV Scanner detection for submitted file
Malicious sample detected (through community Yara rule)
Snort IDS alert for network traffic
Sample is packed with UPX
Uses known network protocols on non-standard ports
Machine Learning detection for sample
Sample tries to kill multiple processes (SIGKILL)
Sample contains only a LOAD segment without any section mappings
Yara signature match
Uses the "uname" system call to query kernel version information (possible evasion)
Enumerates processes within the "proc" file system
Detected TCP or UDP traffic on non-standard ports
Sample tries to kill a process (SIGKILL)
ELF contains segments with high entropy indicating compressed/encrypted content
Document contains embedded VBA macros
Creates hidden files and/or directories
HTTP GET or POST without a user agent
Document misses a certain OLE stream usually present in this Microsoft Office document type
Classification
Analysis Advice
Some HTTP requests failed (404). It is likely that the sample will exhibit less behavior. |
Joe Sandbox Version: | 38.0.0 Beryl |
Analysis ID: | 1315698 |
Start date and time: | 2023-09-28 09:51:12 +02:00 |
Joe Sandbox Product: | CloudBasic |
Overall analysis duration: | 0h 4m 41s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | defaultlinuxfilecookbook.jbs |
Analysis system description: | Ubuntu Linux 20.04 x64 (Kernel 5.4.0-72, Firefox 91.0, Evince Document Viewer 3.36.10, LibreOffice 6.4.7.2, OpenJDK 11.0.11) |
Analysis Mode: | default |
Sample file name: | z0r0.x86.elf |
Detection: | MAL |
Classification: | mal88.spre.troj.evad.linELF@0/1@2/0 |
- Report size exceeded maximum capacity and may have missing network information.
Command: | /tmp/z0r0.x86.elf |
PID: | 5478 |
Exit Code: | 0 |
Exit Code Info: | |
Killed: | False |
Standard Output: | unstable_is_the_history_of_universe |
Standard Error: |
- system is lnxubuntu20
- z0r0.x86.elf New Fork (PID: 5479, Parent: 5478)
- z0r0.x86.elf New Fork (PID: 5480, Parent: 5479)
- z0r0.x86.elf New Fork (PID: 5481, Parent: 5479)
- z0r0.x86.elf New Fork (PID: 5482, Parent: 5479)
- z0r0.x86.elf New Fork (PID: 5484, Parent: 5479)
- z0r0.x86.elf New Fork (PID: 5485, Parent: 5479)
- xfce4-panel New Fork (PID: 5488, Parent: 3172)
- xfce4-panel New Fork (PID: 5489, Parent: 3172)
- xfce4-panel New Fork (PID: 5490, Parent: 3172)
- xfce4-panel New Fork (PID: 5491, Parent: 3172)
- wrapper-2.0 New Fork (PID: 5518, Parent: 5491)
- xfce4-panel New Fork (PID: 5492, Parent: 3172)
- xfce4-panel New Fork (PID: 5493, Parent: 3172)
- dbus-daemon New Fork (PID: 5513, Parent: 5512)
- systemd New Fork (PID: 5526, Parent: 2955)
- cleanup
Name | Description | Attribution | Blogpost URLs | Link |
---|---|---|---|---|
Mirai | Mirai is one of the first significant botnets targeting exposed networking devices running Linux. Found in August 2016 by MalwareMustDie, its name means "future" in Japanese. Nowadays it targets a wide range of networked embedded devices such as IP cameras, home routers (many vendors involved), and other IoT devices. Since the source code was published on "Hack Forums" many variants of the Mirai family appeared, infecting mostly home networks all around the world. | No Attribution |
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_Mirai_8 | Yara detected Mirai | Joe Security | ||
Linux_Trojan_Mirai_fa3ad9d0 | unknown | unknown |
| |
Linux_Trojan_Mirai_b14f4c5d | unknown | unknown |
| |
Linux_Trojan_Mirai_93fc3657 | unknown | unknown |
| |
Linux_Trojan_Mirai_804f8e7c | unknown | unknown |
| |
Click to see the 21 entries |
Timestamp: | 192.168.2.14220.70.132.8554908802025883 09/28/23-09:52:55.012665 |
SID: | 2025883 |
Source Port: | 54908 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.80.236.4344764802025883 09/28/23-09:53:20.830219 |
SID: | 2025883 |
Source Port: | 44764 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1418.179.105.9940994802025883 09/28/23-09:53:38.874007 |
SID: | 2025883 |
Source Port: | 40994 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1434.36.100.145502802030092 09/28/23-09:53:34.624406 |
SID: | 2030092 |
Source Port: | 45502 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1418.136.162.2735260802025883 09/28/23-09:53:48.746356 |
SID: | 2025883 |
Source Port: | 35260 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1445.61.229.24160788802025883 09/28/23-09:51:58.801779 |
SID: | 2025883 |
Source Port: | 60788 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1488.238.118.7954070802030092 09/28/23-09:52:26.685406 |
SID: | 2030092 |
Source Port: | 54070 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14165.22.242.19249322802030092 09/28/23-09:53:08.943471 |
SID: | 2030092 |
Source Port: | 49322 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14159.8.194.21334208802030092 09/28/23-09:53:34.699068 |
SID: | 2030092 |
Source Port: | 34208 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1445.55.105.20034086802030092 09/28/23-09:53:57.046424 |
SID: | 2030092 |
Source Port: | 34086 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14213.187.246.17553710802025883 09/28/23-09:52:41.413852 |
SID: | 2025883 |
Source Port: | 53710 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1466.254.114.24150412802030092 09/28/23-09:52:31.594678 |
SID: | 2030092 |
Source Port: | 50412 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1418.192.113.5035710802030092 09/28/23-09:53:38.686917 |
SID: | 2030092 |
Source Port: | 35710 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1454.150.26.7837216802030092 09/28/23-09:53:12.775532 |
SID: | 2030092 |
Source Port: | 37216 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1438.181.24.1553494802030092 09/28/23-09:53:44.260006 |
SID: | 2030092 |
Source Port: | 53494 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14103.81.246.8433358802025883 09/28/23-09:53:36.092056 |
SID: | 2025883 |
Source Port: | 33358 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1452.36.22.18252328802030092 09/28/23-09:53:57.609936 |
SID: | 2030092 |
Source Port: | 52328 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14148.101.207.12541534802025883 09/28/23-09:53:57.203534 |
SID: | 2025883 |
Source Port: | 41534 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14102.217.203.13249856802030092 09/28/23-09:53:35.215732 |
SID: | 2030092 |
Source Port: | 49856 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14173.186.99.1860320802025883 09/28/23-09:52:23.551317 |
SID: | 2025883 |
Source Port: | 60320 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1494.130.25.21049260802030092 09/28/23-09:53:53.821381 |
SID: | 2030092 |
Source Port: | 49260 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1496.16.107.4137830802025883 09/28/23-09:53:09.846474 |
SID: | 2025883 |
Source Port: | 37830 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1469.4.86.1458898802025883 09/28/23-09:53:14.558129 |
SID: | 2025883 |
Source Port: | 58898 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14187.202.142.4633786802025883 09/28/23-09:52:20.856270 |
SID: | 2025883 |
Source Port: | 33786 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14173.222.208.7634194802030092 09/28/23-09:52:40.380083 |
SID: | 2030092 |
Source Port: | 34194 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1420.104.56.10537176802030092 09/28/23-09:53:17.211073 |
SID: | 2030092 |
Source Port: | 37176 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1418.155.13.9547616802030092 09/28/23-09:52:54.610942 |
SID: | 2030092 |
Source Port: | 47616 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14201.159.99.9034776802030092 09/28/23-09:53:57.103076 |
SID: | 2030092 |
Source Port: | 34776 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14121.40.193.4053016802030092 09/28/23-09:52:30.117591 |
SID: | 2030092 |
Source Port: | 53016 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1413.249.238.16050490802030092 09/28/23-09:53:20.967330 |
SID: | 2030092 |
Source Port: | 50490 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14196.25.29.11045976802025883 09/28/23-09:53:40.233194 |
SID: | 2025883 |
Source Port: | 45976 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14156.241.108.3435004802030092 09/28/23-09:52:29.398894 |
SID: | 2030092 |
Source Port: | 35004 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1445.79.182.16944488802025883 09/28/23-09:52:26.472908 |
SID: | 2025883 |
Source Port: | 44488 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14107.180.41.11350682802030092 09/28/23-09:53:20.572126 |
SID: | 2030092 |
Source Port: | 50682 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1418.155.240.18254026802025883 09/28/23-09:52:29.278982 |
SID: | 2025883 |
Source Port: | 54026 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14159.192.167.13056408802030092 09/28/23-09:53:14.054579 |
SID: | 2030092 |
Source Port: | 56408 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1434.217.97.5459148802025883 09/28/23-09:53:52.792182 |
SID: | 2025883 |
Source Port: | 59148 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1445.119.166.3339976802030092 09/28/23-09:53:39.597194 |
SID: | 2030092 |
Source Port: | 39976 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.192.228.14851910802030092 09/28/23-09:53:44.764097 |
SID: | 2030092 |
Source Port: | 51910 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14193.93.21.18159018802025883 09/28/23-09:53:44.795254 |
SID: | 2025883 |
Source Port: | 59018 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14173.223.91.9243968802025883 09/28/23-09:53:59.741937 |
SID: | 2025883 |
Source Port: | 43968 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1447.111.179.2260058802030092 09/28/23-09:52:20.771577 |
SID: | 2030092 |
Source Port: | 60058 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1418.118.250.17343602802025883 09/28/23-09:53:12.358170 |
SID: | 2025883 |
Source Port: | 43602 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14180.94.205.21057808802025883 09/28/23-09:52:54.986785 |
SID: | 2025883 |
Source Port: | 57808 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14110.87.168.20550160802030092 09/28/23-09:52:41.160984 |
SID: | 2030092 |
Source Port: | 50160 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1432.142.115.11445208802025883 09/28/23-09:52:38.581188 |
SID: | 2025883 |
Source Port: | 45208 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1483.147.26.17459166802030092 09/28/23-09:53:30.918913 |
SID: | 2030092 |
Source Port: | 59166 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.9.50.10940376802025883 09/28/23-09:53:57.611052 |
SID: | 2025883 |
Source Port: | 40376 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1480.235.87.16045626802030092 09/28/23-09:53:52.475532 |
SID: | 2030092 |
Source Port: | 45626 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14185.60.45.24044766802025883 09/28/23-09:52:01.806584 |
SID: | 2025883 |
Source Port: | 44766 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14208.106.156.840218802030092 09/28/23-09:53:04.729360 |
SID: | 2030092 |
Source Port: | 40218 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.14.117.22939152802025883 09/28/23-09:52:29.614210 |
SID: | 2025883 |
Source Port: | 39152 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.181.24.1553330802030092 09/28/23-09:53:36.002097 |
SID: | 2030092 |
Source Port: | 53330 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.76.103.18158556802030092 09/28/23-09:53:50.613620 |
SID: | 2030092 |
Source Port: | 58556 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.123.40.24259994802030092 09/28/23-09:52:45.892912 |
SID: | 2030092 |
Source Port: | 59994 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14110.87.168.20550202802030092 09/28/23-09:52:44.982317 |
SID: | 2030092 |
Source Port: | 50202 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14203.253.43.3451270802025883 09/28/23-09:52:38.450141 |
SID: | 2025883 |
Source Port: | 51270 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.9.50.10940376802030092 09/28/23-09:53:57.611052 |
SID: | 2030092 |
Source Port: | 40376 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.108.243.19241484802030092 09/28/23-09:52:33.139669 |
SID: | 2030092 |
Source Port: | 41484 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14107.180.41.11350682802025883 09/28/23-09:53:20.572126 |
SID: | 2025883 |
Source Port: | 50682 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1418.192.113.5035710802025883 09/28/23-09:53:38.686917 |
SID: | 2025883 |
Source Port: | 35710 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.9.150.9135712802030092 09/28/23-09:53:28.075342 |
SID: | 2030092 |
Source Port: | 35712 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14196.25.29.11045976802030092 09/28/23-09:53:40.233194 |
SID: | 2030092 |
Source Port: | 45976 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14122.116.164.14137440802025883 09/28/23-09:52:42.040074 |
SID: | 2025883 |
Source Port: | 37440 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1454.150.26.7837216802025883 09/28/23-09:53:12.775532 |
SID: | 2025883 |
Source Port: | 37216 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1496.16.107.4137830802030092 09/28/23-09:53:09.846474 |
SID: | 2030092 |
Source Port: | 37830 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.219.166.10433874802030092 09/28/23-09:53:59.534146 |
SID: | 2030092 |
Source Port: | 33874 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.16.21.353876802030092 09/28/23-09:53:32.453599 |
SID: | 2030092 |
Source Port: | 53876 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.145.188.137.1543286802025883 09/28/23-09:53:38.818043 |
SID: | 2025883 |
Source Port: | 43286 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1487.188.200.19441556802030092 09/28/23-09:53:20.291297 |
SID: | 2030092 |
Source Port: | 41556 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1447.111.179.2260058802025883 09/28/23-09:52:20.771577 |
SID: | 2025883 |
Source Port: | 60058 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1418.118.250.17343602802030092 09/28/23-09:53:12.358170 |
SID: | 2030092 |
Source Port: | 43602 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1450.2.146.25455190802025883 09/28/23-09:53:22.471365 |
SID: | 2025883 |
Source Port: | 55190 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.219.166.10433874802025883 09/28/23-09:53:59.534146 |
SID: | 2025883 |
Source Port: | 33874 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.14.117.22939152802030092 09/28/23-09:52:29.614210 |
SID: | 2030092 |
Source Port: | 39152 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.51.84.10050564802025883 09/28/23-09:53:32.666682 |
SID: | 2025883 |
Source Port: | 50564 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.181.24.1553330802025883 09/28/23-09:53:36.002097 |
SID: | 2025883 |
Source Port: | 53330 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14103.121.114.8257212802025883 09/28/23-09:52:24.114553 |
SID: | 2025883 |
Source Port: | 57212 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14157.230.182.10750906802030092 09/28/23-09:53:13.519025 |
SID: | 2030092 |
Source Port: | 50906 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.57.138.18859348802030092 09/28/23-09:53:12.450019 |
SID: | 2030092 |
Source Port: | 59348 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1445.119.166.3339976802025883 09/28/23-09:53:39.597194 |
SID: | 2025883 |
Source Port: | 39976 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1434.79.144.23245480802025883 09/28/23-09:52:20.766173 |
SID: | 2025883 |
Source Port: | 45480 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1434.149.181.19743626802025883 09/28/23-09:53:17.555035 |
SID: | 2025883 |
Source Port: | 43626 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14218.188.158.9041256802030092 09/28/23-09:52:55.904769 |
SID: | 2030092 |
Source Port: | 41256 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1413.249.238.16050490802025883 09/28/23-09:53:20.967330 |
SID: | 2025883 |
Source Port: | 50490 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.80.236.4344764802030092 09/28/23-09:53:20.830219 |
SID: | 2030092 |
Source Port: | 44764 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1451.250.50.22150280802025883 09/28/23-09:53:43.817726 |
SID: | 2025883 |
Source Port: | 50280 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1452.173.144.15942956802025883 09/28/23-09:53:35.712118 |
SID: | 2025883 |
Source Port: | 42956 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1418.179.105.9940994802030092 09/28/23-09:53:38.874007 |
SID: | 2030092 |
Source Port: | 40994 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14140.190.50.22354528802030092 09/28/23-09:53:09.760042 |
SID: | 2030092 |
Source Port: | 54528 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14181.41.169.16354620802030092 09/28/23-09:52:56.669528 |
SID: | 2030092 |
Source Port: | 54620 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1424.43.14.5438600802025883 09/28/23-09:53:48.592718 |
SID: | 2025883 |
Source Port: | 38600 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.207.90.17560682802025883 09/28/23-09:52:20.721849 |
SID: | 2025883 |
Source Port: | 60682 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14116.212.155.16735236802025883 09/28/23-09:52:26.380905 |
SID: | 2025883 |
Source Port: | 35236 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14122.249.156.17954126802025883 09/28/23-09:52:29.888572 |
SID: | 2025883 |
Source Port: | 54126 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1486.54.117.23336618802025883 09/28/23-09:53:35.742886 |
SID: | 2025883 |
Source Port: | 36618 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14154.210.231.22246636802030092 09/28/23-09:52:38.899866 |
SID: | 2030092 |
Source Port: | 46636 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14122.116.96.23460224802025883 09/28/23-09:52:55.893905 |
SID: | 2025883 |
Source Port: | 60224 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1445.55.105.20034086802025883 09/28/23-09:53:57.046424 |
SID: | 2025883 |
Source Port: | 34086 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14110.87.168.20550160802025883 09/28/23-09:52:41.160984 |
SID: | 2025883 |
Source Port: | 50160 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.91.39.18244316802025883 09/28/23-09:53:35.896784 |
SID: | 2025883 |
Source Port: | 44316 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14154.210.231.22246636802025883 09/28/23-09:52:38.899866 |
SID: | 2025883 |
Source Port: | 46636 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14172.245.215.21248286802030092 09/28/23-09:52:38.078664 |
SID: | 2030092 |
Source Port: | 48286 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14220.132.183.12235712802030092 09/28/23-09:53:53.931755 |
SID: | 2030092 |
Source Port: | 35712 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.76.103.18158556802025883 09/28/23-09:53:50.613620 |
SID: | 2025883 |
Source Port: | 58556 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14103.121.114.8257212802030092 09/28/23-09:52:24.114553 |
SID: | 2030092 |
Source Port: | 57212 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.57.138.18859348802025883 09/28/23-09:53:12.450019 |
SID: | 2025883 |
Source Port: | 59348 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14203.253.43.3451270802030092 09/28/23-09:52:38.450141 |
SID: | 2030092 |
Source Port: | 51270 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1434.217.97.5459148802030092 09/28/23-09:53:52.792182 |
SID: | 2030092 |
Source Port: | 59148 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1420.104.56.10537176802025883 09/28/23-09:53:17.211073 |
SID: | 2025883 |
Source Port: | 37176 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1499.84.208.11437346802025883 09/28/23-09:52:58.510485 |
SID: | 2025883 |
Source Port: | 37346 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14178.139.74.25341758802025883 09/28/23-09:52:38.077031 |
SID: | 2025883 |
Source Port: | 41758 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14148.101.207.12541534802030092 09/28/23-09:53:57.203534 |
SID: | 2030092 |
Source Port: | 41534 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1420.210.165.24752222802025883 09/28/23-09:52:31.780860 |
SID: | 2025883 |
Source Port: | 52222 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14201.159.99.9034776802025883 09/28/23-09:53:57.103076 |
SID: | 2025883 |
Source Port: | 34776 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1452.36.22.18252328802025883 09/28/23-09:53:57.609936 |
SID: | 2025883 |
Source Port: | 52328 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1477.45.99.6658638802030092 09/28/23-09:53:57.242237 |
SID: | 2030092 |
Source Port: | 58638 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14173.222.208.7634194802025883 09/28/23-09:52:40.380083 |
SID: | 2025883 |
Source Port: | 34194 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1420.104.135.8647068802030092 09/28/23-09:53:56.969502 |
SID: | 2030092 |
Source Port: | 47068 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1438.207.90.17560682802030092 09/28/23-09:52:20.721849 |
SID: | 2030092 |
Source Port: | 60682 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.212.122.3457842802025883 09/28/23-09:52:20.745301 |
SID: | 2025883 |
Source Port: | 57842 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1450.2.146.25455190802030092 09/28/23-09:53:22.471365 |
SID: | 2030092 |
Source Port: | 55190 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1447.74.85.14558310802025883 09/28/23-09:53:10.918214 |
SID: | 2025883 |
Source Port: | 58310 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14159.89.136.19942756802030092 09/28/23-09:53:23.516809 |
SID: | 2030092 |
Source Port: | 42756 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1486.54.117.23336618802030092 09/28/23-09:53:35.742886 |
SID: | 2030092 |
Source Port: | 36618 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14191.190.124.6853058802025883 09/28/23-09:53:52.959016 |
SID: | 2025883 |
Source Port: | 53058 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1454.197.73.1141672802030092 09/28/23-09:53:59.526291 |
SID: | 2030092 |
Source Port: | 41672 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14142.11.204.21654090802025883 09/28/23-09:53:25.821589 |
SID: | 2025883 |
Source Port: | 54090 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14140.190.50.22354528802025883 09/28/23-09:53:09.760042 |
SID: | 2025883 |
Source Port: | 54528 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.207.117.24559400802030092 09/28/23-09:53:47.694127 |
SID: | 2030092 |
Source Port: | 59400 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14181.41.169.16354620802025883 09/28/23-09:52:56.669528 |
SID: | 2025883 |
Source Port: | 54620 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14116.212.155.16735236802030092 09/28/23-09:52:26.380905 |
SID: | 2030092 |
Source Port: | 35236 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14206.210.105.12249304802025883 09/28/23-09:53:34.645440 |
SID: | 2025883 |
Source Port: | 49304 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1496.53.109.3042460802030092 09/28/23-09:52:58.579885 |
SID: | 2030092 |
Source Port: | 42460 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.104.69.3853184802030092 09/28/23-09:53:44.671776 |
SID: | 2030092 |
Source Port: | 53184 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1445.114.17.13355928802025883 09/28/23-09:52:46.004727 |
SID: | 2025883 |
Source Port: | 55928 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14156.230.239.13451646802025883 09/28/23-09:53:33.134851 |
SID: | 2025883 |
Source Port: | 51646 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1432.142.115.11445208802030092 09/28/23-09:52:38.581188 |
SID: | 2030092 |
Source Port: | 45208 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14159.89.136.19942756802025883 09/28/23-09:53:23.516809 |
SID: | 2025883 |
Source Port: | 42756 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1477.45.99.6658638802025883 09/28/23-09:53:57.242237 |
SID: | 2025883 |
Source Port: | 58638 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14137.116.63.12935938802025883 09/28/23-09:53:23.395144 |
SID: | 2025883 |
Source Port: | 35938 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1435.160.80.10843434802025883 09/28/23-09:52:29.267316 |
SID: | 2025883 |
Source Port: | 43434 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14172.245.215.21248286802025883 09/28/23-09:52:38.078664 |
SID: | 2025883 |
Source Port: | 48286 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14191.190.124.6853058802030092 09/28/23-09:53:52.959016 |
SID: | 2030092 |
Source Port: | 53058 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.91.39.18244316802030092 09/28/23-09:53:35.896784 |
SID: | 2030092 |
Source Port: | 44316 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14101.42.3.23139124802025883 09/28/23-09:53:51.052152 |
SID: | 2025883 |
Source Port: | 39124 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14185.206.163.7256826802030092 09/28/23-09:53:35.695631 |
SID: | 2030092 |
Source Port: | 56826 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14149.30.164.18745166802030092 09/28/23-09:53:53.029179 |
SID: | 2030092 |
Source Port: | 45166 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14210.107.200.6842156802030092 09/28/23-09:52:17.570348 |
SID: | 2030092 |
Source Port: | 42156 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1418.155.13.9547616802025883 09/28/23-09:52:54.610942 |
SID: | 2025883 |
Source Port: | 47616 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1469.4.86.1458898802030092 09/28/23-09:53:14.558129 |
SID: | 2030092 |
Source Port: | 58898 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1469.163.18.10358664802030092 09/28/23-09:53:09.763537 |
SID: | 2030092 |
Source Port: | 58664 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1469.163.18.10358664802025883 09/28/23-09:53:09.763537 |
SID: | 2025883 |
Source Port: | 58664 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1420.104.135.8647068802025883 09/28/23-09:53:56.969502 |
SID: | 2025883 |
Source Port: | 47068 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1418.65.227.11849138802025883 09/28/23-09:52:41.789229 |
SID: | 2025883 |
Source Port: | 49138 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1445.79.182.16944488802030092 09/28/23-09:52:26.472908 |
SID: | 2030092 |
Source Port: | 44488 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14220.132.183.12235712802025883 09/28/23-09:53:53.931755 |
SID: | 2025883 |
Source Port: | 35712 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1489.108.103.16946228802030092 09/28/23-09:53:12.681724 |
SID: | 2030092 |
Source Port: | 46228 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1489.108.103.16946228802025883 09/28/23-09:53:12.681724 |
SID: | 2025883 |
Source Port: | 46228 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14150.60.133.4755718802030092 09/28/23-09:52:20.840084 |
SID: | 2030092 |
Source Port: | 55718 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1424.172.37.19443464802030092 09/28/23-09:53:10.470166 |
SID: | 2030092 |
Source Port: | 43464 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.212.122.3457842802030092 09/28/23-09:52:20.745301 |
SID: | 2030092 |
Source Port: | 57842 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1438.207.117.24559400802025883 09/28/23-09:53:47.694127 |
SID: | 2025883 |
Source Port: | 59400 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1499.84.208.11437346802030092 09/28/23-09:52:58.510485 |
SID: | 2030092 |
Source Port: | 37346 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14210.107.200.6842156802025883 09/28/23-09:52:17.570348 |
SID: | 2025883 |
Source Port: | 42156 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14101.42.3.23139124802030092 09/28/23-09:53:51.052152 |
SID: | 2030092 |
Source Port: | 39124 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14180.94.205.21057808802030092 09/28/23-09:52:54.986785 |
SID: | 2030092 |
Source Port: | 57808 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14156.241.108.3435004802025883 09/28/23-09:52:29.398894 |
SID: | 2025883 |
Source Port: | 35004 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1435.160.80.10843434802030092 09/28/23-09:52:29.267316 |
SID: | 2030092 |
Source Port: | 43434 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14208.106.156.840218802025883 09/28/23-09:53:04.729360 |
SID: | 2025883 |
Source Port: | 40218 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1447.242.163.21560938802030092 09/28/23-09:53:10.032694 |
SID: | 2030092 |
Source Port: | 60938 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1451.210.223.18434238802025883 09/28/23-09:53:27.201562 |
SID: | 2025883 |
Source Port: | 34238 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1483.147.26.17459166802025883 09/28/23-09:53:30.918913 |
SID: | 2025883 |
Source Port: | 59166 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.145.251.151.6754174802030092 09/28/23-09:54:00.011040 |
SID: | 2030092 |
Source Port: | 54174 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1420.210.165.24752222802030092 09/28/23-09:52:31.780860 |
SID: | 2030092 |
Source Port: | 52222 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.200.40.20032776802030092 09/28/23-09:53:25.689252 |
SID: | 2030092 |
Source Port: | 32776 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1451.178.44.12757948802030092 09/28/23-09:51:58.702447 |
SID: | 2030092 |
Source Port: | 57948 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14220.134.171.1247508802025883 09/28/23-09:52:32.125864 |
SID: | 2025883 |
Source Port: | 47508 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1489.44.168.13654794802030092 09/28/23-09:53:14.731008 |
SID: | 2030092 |
Source Port: | 54794 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1491.213.189.9834418802030092 09/28/23-09:52:55.750013 |
SID: | 2030092 |
Source Port: | 34418 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14162.240.23.18550968802025883 09/28/23-09:52:38.031818 |
SID: | 2025883 |
Source Port: | 50968 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14195.49.130.4056146802030092 09/28/23-09:51:57.979739 |
SID: | 2030092 |
Source Port: | 56146 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1447.74.85.14558310802030092 09/28/23-09:53:10.918214 |
SID: | 2030092 |
Source Port: | 58310 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1452.40.50.5452524802025883 09/28/23-09:53:44.755425 |
SID: | 2025883 |
Source Port: | 52524 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14195.189.218.10257602802025883 09/28/23-09:53:09.878101 |
SID: | 2025883 |
Source Port: | 57602 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.142.135.239.19449392802025883 09/28/23-09:53:09.879554 |
SID: | 2025883 |
Source Port: | 49392 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14132.148.254.1049020802025883 09/28/23-09:53:32.705331 |
SID: | 2025883 |
Source Port: | 49020 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14183.106.95.18650344802030092 09/28/23-09:53:50.630377 |
SID: | 2030092 |
Source Port: | 50344 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.213.183.19956882802030092 09/28/23-09:52:38.467621 |
SID: | 2030092 |
Source Port: | 56882 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1496.53.109.3042460802025883 09/28/23-09:52:58.579885 |
SID: | 2025883 |
Source Port: | 42460 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14118.54.248.24744982802030092 09/28/23-09:53:09.912128 |
SID: | 2030092 |
Source Port: | 44982 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14107.151.210.20145170802030092 09/28/23-09:53:32.708765 |
SID: | 2030092 |
Source Port: | 45170 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.18.20.22447928802025883 09/28/23-09:53:17.192137 |
SID: | 2025883 |
Source Port: | 47928 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14178.62.196.3036312802025883 09/28/23-09:53:32.563334 |
SID: | 2025883 |
Source Port: | 36312 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1434.122.109.9233722802030092 09/28/23-09:53:32.480682 |
SID: | 2030092 |
Source Port: | 33722 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14108.158.237.5240750802030092 09/28/23-09:53:22.736591 |
SID: | 2030092 |
Source Port: | 40750 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1485.202.160.1849938802025883 09/28/23-09:52:20.594395 |
SID: | 2025883 |
Source Port: | 49938 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1452.71.120.248784802030092 09/28/23-09:52:45.726860 |
SID: | 2030092 |
Source Port: | 48784 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.148.210.173.25535814802025883 09/28/23-09:53:05.042687 |
SID: | 2025883 |
Source Port: | 35814 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14146.75.36.19344328802030092 09/28/23-09:53:23.395119 |
SID: | 2030092 |
Source Port: | 44328 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1481.215.74.16036976802025883 09/28/23-09:53:09.862953 |
SID: | 2025883 |
Source Port: | 36976 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14108.177.122.14947128802030092 09/28/23-09:52:50.973073 |
SID: | 2030092 |
Source Port: | 47128 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1483.242.170.15555750802030092 09/28/23-09:53:39.548474 |
SID: | 2030092 |
Source Port: | 55750 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1418.65.227.11849138802030092 09/28/23-09:52:41.789229 |
SID: | 2030092 |
Source Port: | 49138 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1438.207.117.24559364802030092 09/28/23-09:53:44.881836 |
SID: | 2030092 |
Source Port: | 59364 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14156.230.239.13451646802030092 09/28/23-09:53:33.134851 |
SID: | 2030092 |
Source Port: | 51646 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1424.172.37.19443464802025883 09/28/23-09:53:10.470166 |
SID: | 2025883 |
Source Port: | 43464 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14185.113.132.12436582802030092 09/28/23-09:52:55.845373 |
SID: | 2030092 |
Source Port: | 36582 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14168.76.35.12937028802030092 09/28/23-09:53:50.686508 |
SID: | 2030092 |
Source Port: | 37028 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1445.131.111.23235178802030092 09/28/23-09:53:50.520925 |
SID: | 2030092 |
Source Port: | 35178 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14173.44.213.5636192802025883 09/28/23-09:53:20.266027 |
SID: | 2025883 |
Source Port: | 36192 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1464.91.230.10445104802025883 09/28/23-09:53:34.815600 |
SID: | 2025883 |
Source Port: | 45104 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1452.232.45.157760802030092 09/28/23-09:52:59.433637 |
SID: | 2030092 |
Source Port: | 57760 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14118.54.248.24744982802025883 09/28/23-09:53:09.912128 |
SID: | 2025883 |
Source Port: | 44982 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.181.24.1553128802030092 09/28/23-09:53:30.735327 |
SID: | 2030092 |
Source Port: | 53128 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14183.106.95.18650344802025883 09/28/23-09:53:50.630377 |
SID: | 2025883 |
Source Port: | 50344 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1445.129.168.7345860802025883 09/28/23-09:53:52.940946 |
SID: | 2025883 |
Source Port: | 45860 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14157.230.182.10750906802025883 09/28/23-09:53:13.519025 |
SID: | 2025883 |
Source Port: | 50906 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.77.157.3048184802030092 09/28/23-09:53:13.962651 |
SID: | 2030092 |
Source Port: | 48184 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1452.78.145.4337056802030092 09/28/23-09:53:27.678939 |
SID: | 2030092 |
Source Port: | 37056 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1438.207.117.24559532802030092 09/28/23-09:53:52.721975 |
SID: | 2030092 |
Source Port: | 59532 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14195.49.130.4056146802025883 09/28/23-09:51:57.979739 |
SID: | 2025883 |
Source Port: | 56146 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1491.213.189.9834418802025883 09/28/23-09:52:55.750013 |
SID: | 2025883 |
Source Port: | 34418 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14178.62.196.3036312802030092 09/28/23-09:53:32.563334 |
SID: | 2030092 |
Source Port: | 36312 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14154.95.129.23657176802025883 09/28/23-09:52:34.155457 |
SID: | 2025883 |
Source Port: | 57176 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14185.138.241.154428802025883 09/28/23-09:53:10.637176 |
SID: | 2025883 |
Source Port: | 54428 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1489.190.37.1735616802025883 09/28/23-09:53:09.808832 |
SID: | 2025883 |
Source Port: | 35616 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.145.188.137.1543286802030092 09/28/23-09:53:38.818043 |
SID: | 2030092 |
Source Port: | 43286 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14178.139.74.25341758802030092 09/28/23-09:52:38.077031 |
SID: | 2030092 |
Source Port: | 41758 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14195.189.218.10257602802030092 09/28/23-09:53:09.878101 |
SID: | 2030092 |
Source Port: | 57602 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14198.98.24.11559166802030092 09/28/23-09:53:01.949020 |
SID: | 2030092 |
Source Port: | 59166 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14211.194.14.20349564802030092 09/28/23-09:52:54.998292 |
SID: | 2030092 |
Source Port: | 49564 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1435.162.166.12660716802025883 09/28/23-09:52:38.630571 |
SID: | 2025883 |
Source Port: | 60716 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1451.178.44.12757948802025883 09/28/23-09:51:58.702447 |
SID: | 2025883 |
Source Port: | 57948 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1494.236.166.15945366802025883 09/28/23-09:53:12.448010 |
SID: | 2025883 |
Source Port: | 45366 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14165.227.44.4943960802025883 09/28/23-09:53:43.878868 |
SID: | 2025883 |
Source Port: | 43960 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14160.124.45.24139704802025883 09/28/23-09:53:03.089507 |
SID: | 2025883 |
Source Port: | 39704 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1489.108.103.16946260802025883 09/28/23-09:53:13.726540 |
SID: | 2025883 |
Source Port: | 46260 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14184.25.248.17650452802030092 09/28/23-09:53:45.016152 |
SID: | 2030092 |
Source Port: | 50452 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14213.214.28.3836324802025883 09/28/23-09:52:33.908226 |
SID: | 2025883 |
Source Port: | 36324 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14211.47.73.2339472802030092 09/28/23-09:53:27.974758 |
SID: | 2030092 |
Source Port: | 39472 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1464.91.230.10445104802030092 09/28/23-09:53:34.815600 |
SID: | 2030092 |
Source Port: | 45104 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1438.207.117.24559364802025883 09/28/23-09:53:44.881836 |
SID: | 2025883 |
Source Port: | 59364 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14108.177.122.14947128802025883 09/28/23-09:52:50.973073 |
SID: | 2025883 |
Source Port: | 47128 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1418.154.192.20542104802025883 09/28/23-09:53:52.527281 |
SID: | 2025883 |
Source Port: | 42104 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1454.197.73.1141672802025883 09/28/23-09:53:59.526291 |
SID: | 2025883 |
Source Port: | 41672 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14185.113.132.12436582802025883 09/28/23-09:52:55.845373 |
SID: | 2025883 |
Source Port: | 36582 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1452.40.50.5452524802030092 09/28/23-09:53:44.755425 |
SID: | 2030092 |
Source Port: | 52524 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1489.45.170.7843996802030092 09/28/23-09:53:43.813752 |
SID: | 2030092 |
Source Port: | 43996 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1452.71.120.248784802025883 09/28/23-09:52:45.726860 |
SID: | 2025883 |
Source Port: | 48784 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14162.240.23.18550968802030092 09/28/23-09:52:38.031818 |
SID: | 2030092 |
Source Port: | 50968 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14154.95.129.23657176802030092 09/28/23-09:52:34.155457 |
SID: | 2030092 |
Source Port: | 57176 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.142.135.239.19449392802030092 09/28/23-09:53:09.879554 |
SID: | 2030092 |
Source Port: | 49392 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1481.215.74.16036976802030092 09/28/23-09:53:09.862953 |
SID: | 2030092 |
Source Port: | 36976 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14220.134.171.1247508802030092 09/28/23-09:52:32.125864 |
SID: | 2030092 |
Source Port: | 47508 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14142.11.204.21654090802030092 09/28/23-09:53:25.821589 |
SID: | 2030092 |
Source Port: | 54090 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14185.138.241.154428802030092 09/28/23-09:53:10.637176 |
SID: | 2030092 |
Source Port: | 54428 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14134.147.239.23140210802030092 09/28/23-09:52:23.770710 |
SID: | 2030092 |
Source Port: | 40210 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1418.161.155.14940852802025883 09/28/23-09:52:33.717237 |
SID: | 2025883 |
Source Port: | 40852 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.207.117.24559532802025883 09/28/23-09:53:52.721975 |
SID: | 2025883 |
Source Port: | 59532 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1444.205.154.3447656802025883 09/28/23-09:53:56.947993 |
SID: | 2025883 |
Source Port: | 47656 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1444.230.194.1257986802025883 09/28/23-09:52:54.566198 |
SID: | 2025883 |
Source Port: | 57986 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14108.177.112.21136388802025883 09/28/23-09:52:37.972414 |
SID: | 2025883 |
Source Port: | 36388 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1483.242.170.15555750802025883 09/28/23-09:53:39.548474 |
SID: | 2025883 |
Source Port: | 55750 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14156.241.108.3434916802030092 09/28/23-09:52:23.700799 |
SID: | 2030092 |
Source Port: | 34916 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1468.178.224.12234898802025883 09/28/23-09:53:30.759405 |
SID: | 2025883 |
Source Port: | 34898 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1445.129.168.7345860802030092 09/28/23-09:53:52.940946 |
SID: | 2030092 |
Source Port: | 45860 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14172.105.235.18958162802025883 09/28/23-09:53:17.817179 |
SID: | 2025883 |
Source Port: | 58162 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.123.40.24259994802025883 09/28/23-09:52:45.892912 |
SID: | 2025883 |
Source Port: | 59994 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.148.210.173.25535814802030092 09/28/23-09:53:05.042687 |
SID: | 2030092 |
Source Port: | 35814 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1491.245.255.2553686802030092 09/28/23-09:52:21.027901 |
SID: | 2030092 |
Source Port: | 53686 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.210.191.10652310802030092 09/28/23-09:52:24.067159 |
SID: | 2030092 |
Source Port: | 52310 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14211.194.14.20349564802025883 09/28/23-09:52:54.998292 |
SID: | 2025883 |
Source Port: | 49564 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.16.21.353876802025883 09/28/23-09:53:32.453599 |
SID: | 2025883 |
Source Port: | 53876 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14194.56.72.12337590802025883 09/28/23-09:53:22.533146 |
SID: | 2025883 |
Source Port: | 37590 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.142.132.116.6356704802025883 09/28/23-09:53:34.799216 |
SID: | 2025883 |
Source Port: | 56704 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1463.135.121.18234192802025883 09/28/23-09:53:24.316540 |
SID: | 2025883 |
Source Port: | 34192 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14107.187.164.15236450802025883 09/28/23-09:53:29.779250 |
SID: | 2025883 |
Source Port: | 36450 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1420.93.206.634032802025883 09/28/23-09:52:59.433506 |
SID: | 2025883 |
Source Port: | 34032 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14196.89.229.7448920802025883 09/28/23-09:53:14.791047 |
SID: | 2025883 |
Source Port: | 48920 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.9.150.9135712802025883 09/28/23-09:53:28.075342 |
SID: | 2025883 |
Source Port: | 35712 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14179.37.28.14435240802025883 09/28/23-09:53:57.334987 |
SID: | 2025883 |
Source Port: | 35240 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14122.116.164.14137440802030092 09/28/23-09:52:42.040074 |
SID: | 2030092 |
Source Port: | 37440 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1418.154.192.20542104802030092 09/28/23-09:53:52.527281 |
SID: | 2030092 |
Source Port: | 42104 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14173.249.36.19652502802025883 09/28/23-09:52:31.877266 |
SID: | 2025883 |
Source Port: | 52502 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1434.122.109.9233722802025883 09/28/23-09:53:32.480682 |
SID: | 2025883 |
Source Port: | 33722 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.18.99.7334424802030092 09/28/23-09:52:45.818101 |
SID: | 2030092 |
Source Port: | 34424 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1445.61.229.24160788802030092 09/28/23-09:51:58.801779 |
SID: | 2030092 |
Source Port: | 60788 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.53.212.2232944802025883 09/28/23-09:53:53.152544 |
SID: | 2025883 |
Source Port: | 32944 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1490.189.180.2540666802030092 09/28/23-09:53:53.893648 |
SID: | 2030092 |
Source Port: | 40666 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.20.219.6138292802025883 09/28/23-09:53:08.796999 |
SID: | 2025883 |
Source Port: | 38292 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1494.236.166.15945366802030092 09/28/23-09:53:12.448010 |
SID: | 2030092 |
Source Port: | 45366 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14170.75.152.20936248802025883 09/28/23-09:52:40.439512 |
SID: | 2025883 |
Source Port: | 36248 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1489.44.168.13654794802025883 09/28/23-09:53:14.731008 |
SID: | 2025883 |
Source Port: | 54794 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1444.192.103.6047030802025883 09/28/23-09:53:08.803562 |
SID: | 2025883 |
Source Port: | 47030 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1489.108.103.16946260802030092 09/28/23-09:53:13.726540 |
SID: | 2030092 |
Source Port: | 46260 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14184.25.248.17650452802025883 09/28/23-09:53:45.016152 |
SID: | 2025883 |
Source Port: | 50452 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.77.157.3048184802025883 09/28/23-09:53:13.962651 |
SID: | 2025883 |
Source Port: | 48184 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1452.84.96.20636092802030092 09/28/23-09:53:09.922138 |
SID: | 2030092 |
Source Port: | 36092 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1424.43.14.5438600802030092 09/28/23-09:53:48.592718 |
SID: | 2030092 |
Source Port: | 38600 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1434.79.144.23245480802030092 09/28/23-09:52:20.766173 |
SID: | 2030092 |
Source Port: | 45480 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14149.129.232.19648736802030092 09/28/23-09:53:54.170749 |
SID: | 2030092 |
Source Port: | 48736 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14159.8.194.21334208802025883 09/28/23-09:53:34.699068 |
SID: | 2025883 |
Source Port: | 34208 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1474.123.235.15547188802030092 09/28/23-09:53:20.586052 |
SID: | 2030092 |
Source Port: | 47188 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14172.105.235.18958162802030092 09/28/23-09:53:17.817179 |
SID: | 2030092 |
Source Port: | 58162 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1452.173.144.15942956802030092 09/28/23-09:53:35.712118 |
SID: | 2030092 |
Source Port: | 42956 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.210.191.10652310802025883 09/28/23-09:52:24.067159 |
SID: | 2025883 |
Source Port: | 52310 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1485.202.160.1849938802030092 09/28/23-09:52:20.594395 |
SID: | 2030092 |
Source Port: | 49938 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1438.181.24.1553494802025883 09/28/23-09:53:44.260006 |
SID: | 2025883 |
Source Port: | 53494 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.5.154.12046324802030092 09/28/23-09:52:54.509409 |
SID: | 2030092 |
Source Port: | 46324 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1466.254.114.24150412802025883 09/28/23-09:52:31.594678 |
SID: | 2025883 |
Source Port: | 50412 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1447.42.72.10737590802025883 09/28/23-09:53:09.777103 |
SID: | 2025883 |
Source Port: | 37590 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1487.188.200.19441556802025883 09/28/23-09:53:20.291297 |
SID: | 2025883 |
Source Port: | 41556 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14152.92.182.24347560802030092 09/28/23-09:53:52.639119 |
SID: | 2030092 |
Source Port: | 47560 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1444.230.194.1257986802030092 09/28/23-09:52:54.566198 |
SID: | 2030092 |
Source Port: | 57986 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14220.70.132.8554908802030092 09/28/23-09:52:55.012665 |
SID: | 2030092 |
Source Port: | 54908 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1446.232.210.15438598802030092 09/28/23-09:52:41.413029 |
SID: | 2030092 |
Source Port: | 38598 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14160.124.45.24139704802030092 09/28/23-09:53:03.089507 |
SID: | 2030092 |
Source Port: | 39704 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14108.158.237.5240750802025883 09/28/23-09:53:22.736591 |
SID: | 2025883 |
Source Port: | 40750 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.207.117.24559430802025883 09/28/23-09:53:47.992082 |
SID: | 2025883 |
Source Port: | 59430 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1435.162.166.12660716802030092 09/28/23-09:52:38.630571 |
SID: | 2030092 |
Source Port: | 60716 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14134.209.235.8554118802030092 09/28/23-09:53:34.888479 |
SID: | 2030092 |
Source Port: | 54118 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1463.135.121.18234192802030092 09/28/23-09:53:24.316540 |
SID: | 2030092 |
Source Port: | 34192 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14107.148.207.443480802030092 09/28/23-09:52:38.002407 |
SID: | 2030092 |
Source Port: | 43480 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14110.163.41.17156212802030092 09/28/23-09:52:41.959395 |
SID: | 2030092 |
Source Port: | 56212 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14170.75.152.20936248802030092 09/28/23-09:52:40.439512 |
SID: | 2030092 |
Source Port: | 36248 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1444.192.103.6047030802030092 09/28/23-09:53:08.803562 |
SID: | 2030092 |
Source Port: | 47030 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14107.148.207.443480802025883 09/28/23-09:52:38.002407 |
SID: | 2025883 |
Source Port: | 43480 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1452.78.145.4337056802025883 09/28/23-09:53:27.678939 |
SID: | 2025883 |
Source Port: | 37056 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14132.148.254.1049020802030092 09/28/23-09:53:32.705331 |
SID: | 2030092 |
Source Port: | 49020 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.53.212.2232944802030092 09/28/23-09:53:53.152544 |
SID: | 2030092 |
Source Port: | 32944 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14107.187.164.15236450802030092 09/28/23-09:53:29.779250 |
SID: | 2030092 |
Source Port: | 36450 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1468.178.224.12234898802030092 09/28/23-09:53:30.759405 |
SID: | 2030092 |
Source Port: | 34898 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14110.163.41.17156212802025883 09/28/23-09:52:41.959395 |
SID: | 2025883 |
Source Port: | 56212 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1420.93.206.634032802030092 09/28/23-09:52:59.433506 |
SID: | 2030092 |
Source Port: | 34032 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.20.219.6138292802030092 09/28/23-09:53:08.796999 |
SID: | 2030092 |
Source Port: | 38292 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.5.154.12046324802025883 09/28/23-09:52:54.509409 |
SID: | 2025883 |
Source Port: | 46324 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.192.228.14851910802025883 09/28/23-09:53:44.764097 |
SID: | 2025883 |
Source Port: | 51910 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1480.235.87.16045626802025883 09/28/23-09:53:52.475532 |
SID: | 2025883 |
Source Port: | 45626 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14173.249.36.19652502802030092 09/28/23-09:52:31.877266 |
SID: | 2030092 |
Source Port: | 52502 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14121.40.193.4053016802025883 09/28/23-09:52:30.117591 |
SID: | 2025883 |
Source Port: | 53016 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14196.89.229.7448920802030092 09/28/23-09:53:14.791047 |
SID: | 2030092 |
Source Port: | 48920 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1490.189.180.2540666802025883 09/28/23-09:53:53.893648 |
SID: | 2025883 |
Source Port: | 40666 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14156.241.108.3434916802025883 09/28/23-09:52:23.700799 |
SID: | 2025883 |
Source Port: | 34916 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.213.183.19956882802025883 09/28/23-09:52:38.467621 |
SID: | 2025883 |
Source Port: | 56882 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1447.42.72.10737590802030092 09/28/23-09:53:09.777103 |
SID: | 2030092 |
Source Port: | 37590 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14103.81.246.8433358802030092 09/28/23-09:53:36.092056 |
SID: | 2030092 |
Source Port: | 33358 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1445.131.111.23235178802025883 09/28/23-09:53:50.520925 |
SID: | 2025883 |
Source Port: | 35178 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1450.229.250.19035664802030092 09/28/23-09:52:40.343095 |
SID: | 2030092 |
Source Port: | 35664 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1452.84.96.20636092802025883 09/28/23-09:53:09.922138 |
SID: | 2025883 |
Source Port: | 36092 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14168.76.35.12937028802025883 09/28/23-09:53:50.686508 |
SID: | 2025883 |
Source Port: | 37028 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14149.129.232.19648736802025883 09/28/23-09:53:54.170749 |
SID: | 2025883 |
Source Port: | 48736 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14179.37.28.14435240802030092 09/28/23-09:53:57.334987 |
SID: | 2030092 |
Source Port: | 35240 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1418.155.240.18254026802030092 09/28/23-09:52:29.278982 |
SID: | 2030092 |
Source Port: | 54026 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14110.145.147.25456504802025883 09/28/23-09:53:40.344330 |
SID: | 2025883 |
Source Port: | 56504 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14109.123.249.25148114802030092 09/28/23-09:53:17.731507 |
SID: | 2030092 |
Source Port: | 48114 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1486.120.166.847200802030092 09/28/23-09:53:38.524800 |
SID: | 2030092 |
Source Port: | 47200 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1446.232.210.15438598802025883 09/28/23-09:52:41.413029 |
SID: | 2025883 |
Source Port: | 38598 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1451.11.167.22637650802025883 09/28/23-09:53:44.765100 |
SID: | 2025883 |
Source Port: | 37650 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14117.44.77.2759308802025883 09/28/23-09:53:39.709464 |
SID: | 2025883 |
Source Port: | 59308 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14187.103.174.17340406802025883 09/28/23-09:52:55.595032 |
SID: | 2025883 |
Source Port: | 40406 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14134.209.235.8554118802025883 09/28/23-09:53:34.888479 |
SID: | 2025883 |
Source Port: | 54118 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1454.65.103.21633370802025883 09/28/23-09:53:06.631631 |
SID: | 2025883 |
Source Port: | 33370 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14174.82.162.9543874802030092 09/28/23-09:53:20.616587 |
SID: | 2030092 |
Source Port: | 43874 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14162.33.23.3449960802025883 09/28/23-09:53:56.981771 |
SID: | 2025883 |
Source Port: | 49960 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1414.53.111.13038800802025883 09/28/23-09:53:20.863229 |
SID: | 2025883 |
Source Port: | 38800 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14184.30.146.4553266802025883 09/28/23-09:53:40.818168 |
SID: | 2025883 |
Source Port: | 53266 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14185.25.240.23657294802025883 09/28/23-09:52:23.562337 |
SID: | 2025883 |
Source Port: | 57294 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1445.84.1.23749306802025883 09/28/23-09:53:48.839113 |
SID: | 2025883 |
Source Port: | 49306 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.51.35.25444334802025883 09/28/23-09:52:23.709012 |
SID: | 2025883 |
Source Port: | 44334 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14103.106.203.935144802030092 09/28/23-09:52:20.725319 |
SID: | 2030092 |
Source Port: | 35144 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1445.194.156.11138476802030092 09/28/23-09:53:09.838865 |
SID: | 2030092 |
Source Port: | 38476 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14100.25.5.3533884802025883 09/28/23-09:52:23.492907 |
SID: | 2025883 |
Source Port: | 33884 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.61.241.7553010802030092 09/28/23-09:52:38.045219 |
SID: | 2030092 |
Source Port: | 53010 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1491.121.163.21952774802025883 09/28/23-09:53:08.705562 |
SID: | 2025883 |
Source Port: | 52774 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14118.148.54.13937288802030092 09/28/23-09:53:57.139015 |
SID: | 2030092 |
Source Port: | 37288 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.145.188.181.24244650802025883 09/28/23-09:52:34.638650 |
SID: | 2025883 |
Source Port: | 44650 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.200.246.3550904802025883 09/28/23-09:52:44.713779 |
SID: | 2025883 |
Source Port: | 50904 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14203.195.121.6935888802030092 09/28/23-09:53:13.962380 |
SID: | 2030092 |
Source Port: | 35888 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1489.27.96.6655444802030092 09/28/23-09:53:52.622496 |
SID: | 2030092 |
Source Port: | 55444 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.94.98.1849752802025883 09/28/23-09:52:31.662451 |
SID: | 2025883 |
Source Port: | 49752 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.153.218.14245136802030092 09/28/23-09:53:09.732319 |
SID: | 2030092 |
Source Port: | 45136 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.142.132.116.6356704802030092 09/28/23-09:53:34.799216 |
SID: | 2030092 |
Source Port: | 56704 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14139.129.173.15148516802030092 09/28/23-09:53:52.764828 |
SID: | 2030092 |
Source Port: | 48516 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14183.80.133.19645606802030092 09/28/23-09:52:32.222076 |
SID: | 2030092 |
Source Port: | 45606 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1434.160.30.19560682802025883 09/28/23-09:53:48.503496 |
SID: | 2025883 |
Source Port: | 60682 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14210.177.253.13637134802025883 09/28/23-09:51:58.253758 |
SID: | 2025883 |
Source Port: | 37134 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1434.233.14.22246086802030092 09/28/23-09:52:26.478460 |
SID: | 2030092 |
Source Port: | 46086 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1438.207.117.24559430802030092 09/28/23-09:53:47.992082 |
SID: | 2030092 |
Source Port: | 59430 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.142.22.149.6133564802030092 09/28/23-09:53:13.755759 |
SID: | 2030092 |
Source Port: | 33564 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1450.229.250.19035664802025883 09/28/23-09:52:40.343095 |
SID: | 2025883 |
Source Port: | 35664 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14193.85.147.1653154802030092 09/28/23-09:52:45.007424 |
SID: | 2030092 |
Source Port: | 53154 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.213.216.1240570802030092 09/28/23-09:53:12.935296 |
SID: | 2030092 |
Source Port: | 40570 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14108.177.112.21136388802030092 09/28/23-09:52:37.972414 |
SID: | 2030092 |
Source Port: | 36388 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14133.242.211.18457656802025883 09/28/23-09:53:27.666199 |
SID: | 2025883 |
Source Port: | 57656 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1444.206.85.16847086802030092 09/28/23-09:53:38.610297 |
SID: | 2030092 |
Source Port: | 47086 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14110.145.147.25456504802030092 09/28/23-09:53:40.344330 |
SID: | 2030092 |
Source Port: | 56504 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1495.129.206.24933718802030092 09/28/23-09:53:30.926513 |
SID: | 2030092 |
Source Port: | 33718 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14193.10.225.7335336802030092 09/28/23-09:53:13.833146 |
SID: | 2030092 |
Source Port: | 35336 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1451.210.223.18434224802025883 09/28/23-09:53:25.854861 |
SID: | 2025883 |
Source Port: | 34224 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.181.24.1553214802025883 09/28/23-09:53:32.668213 |
SID: | 2025883 |
Source Port: | 53214 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14123.126.39.8637636802030092 09/28/23-09:53:20.882661 |
SID: | 2030092 |
Source Port: | 37636 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14162.214.126.6747574802025883 09/28/23-09:53:27.844031 |
SID: | 2025883 |
Source Port: | 47574 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.78.89.11533606802030092 09/28/23-09:53:04.577148 |
SID: | 2030092 |
Source Port: | 33606 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14139.162.75.12945036802030092 09/28/23-09:52:38.116951 |
SID: | 2030092 |
Source Port: | 45036 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14184.30.146.4553266802030092 09/28/23-09:53:40.818168 |
SID: | 2030092 |
Source Port: | 53266 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14174.82.162.9543874802025883 09/28/23-09:53:20.616587 |
SID: | 2025883 |
Source Port: | 43874 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.181.24.1553214802030092 09/28/23-09:53:32.668213 |
SID: | 2030092 |
Source Port: | 53214 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.26.12.16948998802025883 09/28/23-09:53:40.435522 |
SID: | 2025883 |
Source Port: | 48998 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1451.210.223.18434224802030092 09/28/23-09:53:25.854861 |
SID: | 2030092 |
Source Port: | 34224 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1451.222.111.22053488802030092 09/28/23-09:53:59.540650 |
SID: | 2030092 |
Source Port: | 53488 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14117.253.32.9448178802025883 09/28/23-09:52:38.876068 |
SID: | 2025883 |
Source Port: | 48178 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.64.160.11134724802025883 09/28/23-09:53:12.604338 |
SID: | 2025883 |
Source Port: | 34724 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14156.241.108.3435160802025883 09/28/23-09:52:38.163238 |
SID: | 2025883 |
Source Port: | 35160 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14194.56.72.12337590802030092 09/28/23-09:53:22.533146 |
SID: | 2030092 |
Source Port: | 37590 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.61.241.7553010802025883 09/28/23-09:52:38.045219 |
SID: | 2025883 |
Source Port: | 53010 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14109.123.249.25148114802025883 09/28/23-09:53:17.731507 |
SID: | 2025883 |
Source Port: | 48114 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.51.35.25444334802030092 09/28/23-09:52:23.709012 |
SID: | 2030092 |
Source Port: | 44334 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14162.33.23.3449960802030092 09/28/23-09:53:56.981771 |
SID: | 2030092 |
Source Port: | 49960 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14173.222.208.7634218802030092 09/28/23-09:52:40.931940 |
SID: | 2030092 |
Source Port: | 34218 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1454.65.103.21633370802030092 09/28/23-09:53:06.631631 |
SID: | 2030092 |
Source Port: | 33370 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.235.135.1444510802025883 09/28/23-09:53:51.022422 |
SID: | 2025883 |
Source Port: | 44510 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14139.129.173.15148516802025883 09/28/23-09:53:52.764828 |
SID: | 2025883 |
Source Port: | 48516 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1477.179.139.20953838802025883 09/28/23-09:52:31.692565 |
SID: | 2025883 |
Source Port: | 53838 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14155.4.103.24745506802025883 09/28/23-09:53:20.285341 |
SID: | 2025883 |
Source Port: | 45506 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1466.70.175.5256518802025883 09/28/23-09:53:52.526685 |
SID: | 2025883 |
Source Port: | 56518 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.84.242.16860678802030092 09/28/23-09:53:39.945663 |
SID: | 2030092 |
Source Port: | 60678 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14185.25.240.23657294802030092 09/28/23-09:52:23.562337 |
SID: | 2030092 |
Source Port: | 57294 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.94.98.1849752802030092 09/28/23-09:52:31.662451 |
SID: | 2030092 |
Source Port: | 49752 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1418.161.155.14940852802030092 09/28/23-09:52:33.717237 |
SID: | 2030092 |
Source Port: | 40852 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1451.11.167.22637650802030092 09/28/23-09:53:44.765100 |
SID: | 2030092 |
Source Port: | 37650 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1444.205.154.3447656802030092 09/28/23-09:53:56.947993 |
SID: | 2030092 |
Source Port: | 47656 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1491.245.255.2553686802025883 09/28/23-09:52:21.027901 |
SID: | 2025883 |
Source Port: | 53686 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.207.90.17560782802025883 09/28/23-09:52:26.769002 |
SID: | 2025883 |
Source Port: | 60782 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14172.67.248.5256294802025883 09/28/23-09:53:20.189653 |
SID: | 2025883 |
Source Port: | 56294 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14133.242.211.18457656802030092 09/28/23-09:53:27.666199 |
SID: | 2030092 |
Source Port: | 57656 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14179.125.182.14349576802030092 09/28/23-09:52:02.021750 |
SID: | 2030092 |
Source Port: | 49576 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14193.85.147.1653154802025883 09/28/23-09:52:45.007424 |
SID: | 2025883 |
Source Port: | 53154 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.235.135.1444510802030092 09/28/23-09:53:51.022422 |
SID: | 2030092 |
Source Port: | 44510 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14183.80.133.19645606802025883 09/28/23-09:52:32.222076 |
SID: | 2025883 |
Source Port: | 45606 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1493.114.184.15760102802030092 09/28/23-09:52:58.413699 |
SID: | 2030092 |
Source Port: | 60102 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.84.242.16860678802025883 09/28/23-09:53:39.945663 |
SID: | 2025883 |
Source Port: | 60678 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14129.159.195.9547788802030092 09/28/23-09:53:38.512634 |
SID: | 2030092 |
Source Port: | 47788 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1489.27.96.6655444802025883 09/28/23-09:53:52.622496 |
SID: | 2025883 |
Source Port: | 55444 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1418.136.139.19742346802025883 09/28/23-09:52:50.508063 |
SID: | 2025883 |
Source Port: | 42346 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1445.194.156.11138476802025883 09/28/23-09:53:09.838865 |
SID: | 2025883 |
Source Port: | 38476 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14212.15.188.3740108802030092 09/28/23-09:53:32.557369 |
SID: | 2030092 |
Source Port: | 40108 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1447.114.89.25038542802030092 09/28/23-09:52:34.208499 |
SID: | 2030092 |
Source Port: | 38542 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14188.165.56.21948048802025883 09/28/23-09:53:23.770139 |
SID: | 2025883 |
Source Port: | 48048 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14210.132.238.15239676802030092 09/28/23-09:53:59.695414 |
SID: | 2030092 |
Source Port: | 39676 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14134.147.239.23140210802025883 09/28/23-09:52:23.770710 |
SID: | 2025883 |
Source Port: | 40210 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14162.214.126.6747574802030092 09/28/23-09:53:27.844031 |
SID: | 2030092 |
Source Port: | 47574 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.78.89.11533606802025883 09/28/23-09:53:04.577148 |
SID: | 2025883 |
Source Port: | 33606 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.153.218.14245136802025883 09/28/23-09:53:09.732319 |
SID: | 2025883 |
Source Port: | 45136 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1495.129.206.24933718802025883 09/28/23-09:53:30.926513 |
SID: | 2025883 |
Source Port: | 33718 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.18.99.7334424802025883 09/28/23-09:52:45.818101 |
SID: | 2025883 |
Source Port: | 34424 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14193.10.225.7335336802025883 09/28/23-09:53:13.833146 |
SID: | 2025883 |
Source Port: | 35336 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.64.160.11134724802030092 09/28/23-09:53:12.604338 |
SID: | 2030092 |
Source Port: | 34724 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14210.132.237.9036094802025883 09/28/23-09:53:04.961633 |
SID: | 2025883 |
Source Port: | 36094 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14220.245.107.9833182802025883 09/28/23-09:53:30.096216 |
SID: | 2025883 |
Source Port: | 33182 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1482.180.138.11745364802030092 09/28/23-09:52:26.614354 |
SID: | 2030092 |
Source Port: | 45364 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14117.44.77.2759308802030092 09/28/23-09:53:39.709464 |
SID: | 2030092 |
Source Port: | 59308 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14193.159.247.25149412802030092 09/28/23-09:53:32.540424 |
SID: | 2030092 |
Source Port: | 49412 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14156.224.143.17136818802030092 09/28/23-09:53:38.671489 |
SID: | 2030092 |
Source Port: | 36818 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14108.138.248.21255292802030092 09/28/23-09:51:57.935129 |
SID: | 2030092 |
Source Port: | 55292 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1438.207.90.17560922802030092 09/28/23-09:52:33.452496 |
SID: | 2030092 |
Source Port: | 60922 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1489.190.37.1735616802030092 09/28/23-09:53:09.808832 |
SID: | 2030092 |
Source Port: | 35616 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14204.76.175.24755286802025883 09/28/23-09:53:39.871842 |
SID: | 2025883 |
Source Port: | 55286 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1464.118.6.21738444802030092 09/28/23-09:52:26.626363 |
SID: | 2030092 |
Source Port: | 38444 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1477.179.139.20953838802030092 09/28/23-09:52:31.692565 |
SID: | 2030092 |
Source Port: | 53838 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1443.143.87.16158966802030092 09/28/23-09:51:58.288684 |
SID: | 2030092 |
Source Port: | 58966 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14192.250.192.13450000802030092 09/28/23-09:52:58.862879 |
SID: | 2030092 |
Source Port: | 50000 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1434.233.14.22246086802025883 09/28/23-09:52:26.478460 |
SID: | 2025883 |
Source Port: | 46086 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.145.188.181.24244650802030092 09/28/23-09:52:34.638650 |
SID: | 2030092 |
Source Port: | 44650 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.207.106.4044138802025883 09/28/23-09:53:13.689302 |
SID: | 2025883 |
Source Port: | 44138 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14210.59.228.2047654802030092 09/28/23-09:52:23.682768 |
SID: | 2030092 |
Source Port: | 47654 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14153.128.126.13535570802025883 09/28/23-09:52:51.105536 |
SID: | 2025883 |
Source Port: | 35570 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1452.232.45.157760802025883 09/28/23-09:52:59.433637 |
SID: | 2025883 |
Source Port: | 57760 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14179.125.182.14349576802025883 09/28/23-09:52:02.021750 |
SID: | 2025883 |
Source Port: | 49576 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14198.20.231.23553642802030092 09/28/23-09:52:54.743014 |
SID: | 2030092 |
Source Port: | 53642 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1418.136.139.19742346802030092 09/28/23-09:52:50.508063 |
SID: | 2030092 |
Source Port: | 42346 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1452.51.125.16956208802030092 09/28/23-09:52:26.662459 |
SID: | 2030092 |
Source Port: | 56208 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.213.216.1240570802025883 09/28/23-09:53:12.935296 |
SID: | 2025883 |
Source Port: | 40570 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14173.222.208.7634218802025883 09/28/23-09:52:40.931940 |
SID: | 2025883 |
Source Port: | 34218 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14156.241.108.3434882802030092 09/28/23-09:52:21.031314 |
SID: | 2030092 |
Source Port: | 34882 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14198.98.24.11559166802025883 09/28/23-09:53:01.949020 |
SID: | 2025883 |
Source Port: | 59166 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.200.246.3550904802030092 09/28/23-09:52:44.713779 |
SID: | 2030092 |
Source Port: | 50904 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14103.226.217.2753388802025883 09/28/23-09:52:21.019869 |
SID: | 2025883 |
Source Port: | 53388 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1489.45.170.7843996802025883 09/28/23-09:53:43.813752 |
SID: | 2025883 |
Source Port: | 43996 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14192.185.188.8636950802030092 09/28/23-09:53:48.524993 |
SID: | 2030092 |
Source Port: | 36950 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14212.15.188.3740108802025883 09/28/23-09:53:32.557369 |
SID: | 2025883 |
Source Port: | 40108 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.102.135.2959246802030092 09/28/23-09:53:25.781001 |
SID: | 2030092 |
Source Port: | 59246 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1454.177.56.19837086802025883 09/28/23-09:53:39.940005 |
SID: | 2025883 |
Source Port: | 37086 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14210.132.237.9036094802030092 09/28/23-09:53:04.961633 |
SID: | 2030092 |
Source Port: | 36094 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14220.245.107.9833182802030092 09/28/23-09:53:30.096216 |
SID: | 2030092 |
Source Port: | 33182 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1482.180.138.11745364802025883 09/28/23-09:52:26.614354 |
SID: | 2025883 |
Source Port: | 45364 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14103.13.220.8640448802030092 09/28/23-09:53:57.428698 |
SID: | 2030092 |
Source Port: | 40448 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14210.132.238.15239676802025883 09/28/23-09:53:59.695414 |
SID: | 2025883 |
Source Port: | 39676 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14103.106.203.935144802025883 09/28/23-09:52:20.725319 |
SID: | 2025883 |
Source Port: | 35144 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14155.4.103.24745506802030092 09/28/23-09:53:20.285341 |
SID: | 2030092 |
Source Port: | 45506 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14187.103.174.17340406802030092 09/28/23-09:52:55.595032 |
SID: | 2030092 |
Source Port: | 40406 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1446.51.231.19842896802030092 09/28/23-09:53:32.626139 |
SID: | 2030092 |
Source Port: | 42896 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1478.141.132.17658006802025883 09/28/23-09:53:12.424023 |
SID: | 2025883 |
Source Port: | 58006 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14213.214.28.3836324802030092 09/28/23-09:52:33.908226 |
SID: | 2030092 |
Source Port: | 36324 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14197.15.209.11140248802025883 09/28/23-09:52:20.646904 |
SID: | 2025883 |
Source Port: | 40248 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14165.227.44.4943960802030092 09/28/23-09:53:43.878868 |
SID: | 2030092 |
Source Port: | 43960 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14183.232.56.3558258802025883 09/28/23-09:53:48.090810 |
SID: | 2025883 |
Source Port: | 58258 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.107.48.2455030802030092 09/28/23-09:53:34.716038 |
SID: | 2030092 |
Source Port: | 55030 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14209.126.68.2947844802030092 09/28/23-09:53:35.324220 |
SID: | 2030092 |
Source Port: | 47844 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1468.191.149.22251308802025883 09/28/23-09:53:22.601141 |
SID: | 2025883 |
Source Port: | 51308 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.230.10.12860820802030092 09/28/23-09:53:57.586105 |
SID: | 2030092 |
Source Port: | 60820 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14198.20.231.23553642802025883 09/28/23-09:52:54.743014 |
SID: | 2025883 |
Source Port: | 53642 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1414.53.111.13038800802030092 09/28/23-09:53:20.863229 |
SID: | 2030092 |
Source Port: | 38800 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.18.20.22447928802030092 09/28/23-09:53:17.192137 |
SID: | 2030092 |
Source Port: | 47928 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14184.24.15.9141438802030092 09/28/23-09:52:45.902738 |
SID: | 2030092 |
Source Port: | 41438 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1446.51.231.19842896802025883 09/28/23-09:53:32.626139 |
SID: | 2025883 |
Source Port: | 42896 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1461.83.244.17235300802030092 09/28/23-09:53:04.700142 |
SID: | 2030092 |
Source Port: | 35300 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14192.185.188.8636950802025883 09/28/23-09:53:48.524993 |
SID: | 2025883 |
Source Port: | 36950 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14108.138.248.21255292802025883 09/28/23-09:51:57.935129 |
SID: | 2025883 |
Source Port: | 55292 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1486.120.166.847200802025883 09/28/23-09:53:38.524800 |
SID: | 2025883 |
Source Port: | 47200 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14156.224.143.17136818802025883 09/28/23-09:53:38.671489 |
SID: | 2025883 |
Source Port: | 36818 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.207.90.17560922802025883 09/28/23-09:52:33.452496 |
SID: | 2025883 |
Source Port: | 60922 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14184.28.181.9238946802025883 09/28/23-09:52:34.642062 |
SID: | 2025883 |
Source Port: | 38946 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14103.226.217.2753388802030092 09/28/23-09:52:21.019869 |
SID: | 2030092 |
Source Port: | 53388 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14156.241.108.3434882802025883 09/28/23-09:52:21.031314 |
SID: | 2025883 |
Source Port: | 34882 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1424.223.97.18942918802025883 09/28/23-09:53:10.470302 |
SID: | 2025883 |
Source Port: | 42918 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14178.253.36.17342082802025883 09/28/23-09:53:57.393660 |
SID: | 2025883 |
Source Port: | 42082 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14197.15.209.11140248802030092 09/28/23-09:52:20.646904 |
SID: | 2030092 |
Source Port: | 40248 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14183.232.56.3558258802030092 09/28/23-09:53:48.090810 |
SID: | 2030092 |
Source Port: | 58258 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1438.55.133.3652490802030092 09/28/23-09:52:29.251782 |
SID: | 2030092 |
Source Port: | 52490 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14209.126.68.2947844802025883 09/28/23-09:53:35.324220 |
SID: | 2025883 |
Source Port: | 47844 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1445.76.163.20953996802025883 09/28/23-09:52:38.194309 |
SID: | 2025883 |
Source Port: | 53996 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14117.253.32.9448178802030092 09/28/23-09:52:38.876068 |
SID: | 2030092 |
Source Port: | 48178 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14184.24.15.9141438802025883 09/28/23-09:52:45.902738 |
SID: | 2025883 |
Source Port: | 41438 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.91.220.19254306802025883 09/28/23-09:53:13.676910 |
SID: | 2025883 |
Source Port: | 54306 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1493.186.242.14348954802025883 09/28/23-09:53:52.610949 |
SID: | 2025883 |
Source Port: | 48954 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14203.195.121.6935888802025883 09/28/23-09:53:13.962380 |
SID: | 2025883 |
Source Port: | 35888 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.26.12.16948998802030092 09/28/23-09:53:40.435522 |
SID: | 2030092 |
Source Port: | 48998 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14210.177.253.13637134802030092 09/28/23-09:51:58.253758 |
SID: | 2030092 |
Source Port: | 37134 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14100.25.5.3533884802030092 09/28/23-09:52:23.492907 |
SID: | 2030092 |
Source Port: | 33884 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1491.121.163.21952774802030092 09/28/23-09:53:08.705562 |
SID: | 2030092 |
Source Port: | 52774 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.102.135.2959246802025883 09/28/23-09:53:25.781001 |
SID: | 2025883 |
Source Port: | 59246 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.181.24.1553128802025883 09/28/23-09:53:30.735327 |
SID: | 2025883 |
Source Port: | 53128 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.207.106.4044138802030092 09/28/23-09:53:13.689302 |
SID: | 2030092 |
Source Port: | 44138 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1468.191.149.22251308802030092 09/28/23-09:53:22.601141 |
SID: | 2030092 |
Source Port: | 51308 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14210.59.228.2047654802025883 09/28/23-09:52:23.682768 |
SID: | 2025883 |
Source Port: | 47654 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1478.141.132.17658006802030092 09/28/23-09:53:12.424023 |
SID: | 2030092 |
Source Port: | 58006 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14173.44.213.5636192802030092 09/28/23-09:53:20.266027 |
SID: | 2030092 |
Source Port: | 36192 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14146.75.36.19344328802025883 09/28/23-09:53:23.395119 |
SID: | 2025883 |
Source Port: | 44328 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.104.69.3853184802025883 09/28/23-09:53:44.671776 |
SID: | 2025883 |
Source Port: | 53184 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.107.48.2455030802025883 09/28/23-09:53:34.716038 |
SID: | 2025883 |
Source Port: | 55030 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14210.61.125.6450800802025883 09/28/23-09:53:47.685514 |
SID: | 2025883 |
Source Port: | 50800 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14193.221.94.14347118802030092 09/28/23-09:53:09.804668 |
SID: | 2030092 |
Source Port: | 47118 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1457.180.24.9640480802025883 09/28/23-09:52:26.008172 |
SID: | 2025883 |
Source Port: | 40480 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1443.198.57.23660668802030092 09/28/23-09:51:58.839453 |
SID: | 2030092 |
Source Port: | 60668 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1435.201.57.25047640802030092 09/28/23-09:53:25.781061 |
SID: | 2030092 |
Source Port: | 47640 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1457.128.93.9539126802030092 09/28/23-09:53:17.463876 |
SID: | 2030092 |
Source Port: | 39126 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.194.143.17738458802030092 09/28/23-09:53:44.826673 |
SID: | 2030092 |
Source Port: | 38458 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14185.148.185.23742584802030092 09/28/23-09:52:38.048784 |
SID: | 2030092 |
Source Port: | 42584 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1451.210.223.18434238802030092 09/28/23-09:53:27.201562 |
SID: | 2030092 |
Source Port: | 34238 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14156.241.108.3434950802030092 09/28/23-09:52:25.744423 |
SID: | 2030092 |
Source Port: | 34950 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14150.60.133.4755718802025883 09/28/23-09:52:20.840084 |
SID: | 2025883 |
Source Port: | 55718 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1420.0.47.3443106802030092 09/28/23-09:53:48.664918 |
SID: | 2030092 |
Source Port: | 43106 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1418.154.214.12154476802025883 09/28/23-09:51:57.645091 |
SID: | 2025883 |
Source Port: | 54476 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.141.34.133.9544844802025883 09/28/23-09:53:20.776950 |
SID: | 2025883 |
Source Port: | 44844 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14196.51.1.24236382802025883 09/28/23-09:52:54.729216 |
SID: | 2025883 |
Source Port: | 36382 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.163.34.5945300802030092 09/28/23-09:53:01.632074 |
SID: | 2030092 |
Source Port: | 45300 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.65.82.14135110802025883 09/28/23-09:53:08.926013 |
SID: | 2025883 |
Source Port: | 35110 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1461.83.244.17235300802025883 09/28/23-09:53:04.700142 |
SID: | 2025883 |
Source Port: | 35300 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1452.26.149.8947000802030092 09/28/23-09:53:34.711391 |
SID: | 2030092 |
Source Port: | 47000 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1434.17.37.18840416802030092 09/28/23-09:52:45.911610 |
SID: | 2030092 |
Source Port: | 40416 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1445.76.163.20953996802030092 09/28/23-09:52:38.194309 |
SID: | 2030092 |
Source Port: | 53996 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1445.114.17.13355928802030092 09/28/23-09:52:46.004727 |
SID: | 2030092 |
Source Port: | 55928 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1445.152.210.19338690802030092 09/28/23-09:53:09.793166 |
SID: | 2030092 |
Source Port: | 38690 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14185.206.163.7256826802025883 09/28/23-09:53:35.695631 |
SID: | 2025883 |
Source Port: | 56826 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14173.232.157.16845084802025883 09/28/23-09:53:39.860615 |
SID: | 2025883 |
Source Port: | 45084 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1452.220.96.22944302802025883 09/28/23-09:53:24.100281 |
SID: | 2025883 |
Source Port: | 44302 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.45.99.3459752802025883 09/28/23-09:52:41.691625 |
SID: | 2025883 |
Source Port: | 59752 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14195.211.72.7156102802025883 09/28/23-09:52:48.490163 |
SID: | 2025883 |
Source Port: | 56102 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.200.40.20032776802025883 09/28/23-09:53:25.689252 |
SID: | 2025883 |
Source Port: | 32776 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14178.253.36.17342082802030092 09/28/23-09:53:57.393660 |
SID: | 2030092 |
Source Port: | 42082 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1464.118.6.21738444802025883 09/28/23-09:52:26.626363 |
SID: | 2025883 |
Source Port: | 38444 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14116.80.110.4250982802030092 09/28/23-09:53:20.835873 |
SID: | 2030092 |
Source Port: | 50982 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1443.143.87.16158966802025883 09/28/23-09:51:58.288684 |
SID: | 2025883 |
Source Port: | 58966 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.45.99.3459732802030092 09/28/23-09:52:40.611499 |
SID: | 2030092 |
Source Port: | 59732 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14150.60.133.4755690802030092 09/28/23-09:52:17.836665 |
SID: | 2030092 |
Source Port: | 55690 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14184.28.181.9238946802030092 09/28/23-09:52:34.642062 |
SID: | 2030092 |
Source Port: | 38946 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.17.197.9451508802025883 09/28/23-09:53:17.192464 |
SID: | 2025883 |
Source Port: | 51508 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14122.201.101.645660802030092 09/28/23-09:53:40.160117 |
SID: | 2030092 |
Source Port: | 45660 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14142.58.47.5356960802030092 09/28/23-09:53:23.766980 |
SID: | 2030092 |
Source Port: | 56960 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.218.192.7552868802030092 09/28/23-09:53:12.378750 |
SID: | 2030092 |
Source Port: | 52868 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.91.220.19254306802030092 09/28/23-09:53:13.676910 |
SID: | 2030092 |
Source Port: | 54306 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1420.123.252.19158134802030092 09/28/23-09:52:20.571452 |
SID: | 2030092 |
Source Port: | 58134 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14137.116.63.12935938802030092 09/28/23-09:53:23.395144 |
SID: | 2030092 |
Source Port: | 35938 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1447.242.163.21560938802025883 09/28/23-09:53:10.032694 |
SID: | 2025883 |
Source Port: | 60938 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.105.101.1533952802030092 09/28/23-09:52:41.411069 |
SID: | 2030092 |
Source Port: | 33952 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14136.228.200.3657768802025883 09/28/23-09:52:45.883691 |
SID: | 2025883 |
Source Port: | 57768 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.163.34.5945300802025883 09/28/23-09:53:01.632074 |
SID: | 2025883 |
Source Port: | 45300 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1496.75.234.11443198802030092 09/28/23-09:53:54.701498 |
SID: | 2030092 |
Source Port: | 43198 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.218.192.7552868802025883 09/28/23-09:53:12.378750 |
SID: | 2025883 |
Source Port: | 52868 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.207.90.17560668802025883 09/28/23-09:52:18.076476 |
SID: | 2025883 |
Source Port: | 60668 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.65.82.14135110802030092 09/28/23-09:53:08.926013 |
SID: | 2030092 |
Source Port: | 35110 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14129.159.195.9547788802025883 09/28/23-09:53:38.512634 |
SID: | 2025883 |
Source Port: | 47788 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.107.86.12351566802025883 09/28/23-09:53:53.640944 |
SID: | 2025883 |
Source Port: | 51566 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1491.212.231.19039110802025883 09/28/23-09:52:55.799828 |
SID: | 2025883 |
Source Port: | 39110 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.141.34.133.9544844802030092 09/28/23-09:53:20.776950 |
SID: | 2030092 |
Source Port: | 44844 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1454.75.33.17036696802025883 09/28/23-09:53:48.582863 |
SID: | 2025883 |
Source Port: | 36696 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1493.186.242.14348954802030092 09/28/23-09:53:52.610949 |
SID: | 2030092 |
Source Port: | 48954 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14204.76.175.24755286802030092 09/28/23-09:53:39.871842 |
SID: | 2030092 |
Source Port: | 55286 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14160.36.67.13948492802030092 09/28/23-09:53:59.744396 |
SID: | 2030092 |
Source Port: | 48492 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1446.242.204.958640802025883 09/28/23-09:53:43.796642 |
SID: | 2025883 |
Source Port: | 58640 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1452.220.96.22944302802030092 09/28/23-09:53:24.100281 |
SID: | 2030092 |
Source Port: | 44302 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1438.207.90.17560782802030092 09/28/23-09:52:26.769002 |
SID: | 2030092 |
Source Port: | 60782 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1454.177.56.19837086802030092 09/28/23-09:53:39.940005 |
SID: | 2030092 |
Source Port: | 37086 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1445.152.210.19338690802025883 09/28/23-09:53:09.793166 |
SID: | 2025883 |
Source Port: | 38690 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1424.223.97.18942918802030092 09/28/23-09:53:10.470302 |
SID: | 2030092 |
Source Port: | 42918 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1420.0.47.3443106802025883 09/28/23-09:53:48.664918 |
SID: | 2025883 |
Source Port: | 43106 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.248.197.23746678802030092 09/28/23-09:52:42.054157 |
SID: | 2030092 |
Source Port: | 46678 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1452.26.149.8947000802025883 09/28/23-09:53:34.711391 |
SID: | 2025883 |
Source Port: | 47000 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1466.70.175.5256518802030092 09/28/23-09:53:52.526685 |
SID: | 2030092 |
Source Port: | 56518 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1457.128.93.9539126802025883 09/28/23-09:53:17.463876 |
SID: | 2025883 |
Source Port: | 39126 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14149.30.164.18745166802025883 09/28/23-09:53:53.029179 |
SID: | 2025883 |
Source Port: | 45166 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14188.225.82.7959380802030092 09/28/23-09:52:17.769653 |
SID: | 2030092 |
Source Port: | 59380 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1435.201.57.25047640802025883 09/28/23-09:53:25.781061 |
SID: | 2025883 |
Source Port: | 47640 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1452.51.125.16956208802025883 09/28/23-09:52:26.662459 |
SID: | 2025883 |
Source Port: | 56208 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14153.128.126.13535570802030092 09/28/23-09:52:51.105536 |
SID: | 2030092 |
Source Port: | 35570 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14165.22.84.12958464802025883 09/28/23-09:53:13.420881 |
SID: | 2025883 |
Source Port: | 58464 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1486.252.15.19241628802030092 09/28/23-09:53:13.692481 |
SID: | 2030092 |
Source Port: | 41628 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.248.197.23746678802025883 09/28/23-09:52:42.054157 |
SID: | 2025883 |
Source Port: | 46678 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1420.123.252.19158134802025883 09/28/23-09:52:20.571452 |
SID: | 2025883 |
Source Port: | 58134 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.45.99.3459732802025883 09/28/23-09:52:40.611499 |
SID: | 2025883 |
Source Port: | 59732 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1484.17.205.6333030802030092 09/28/23-09:53:47.576858 |
SID: | 2030092 |
Source Port: | 33030 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14139.162.75.12945036802025883 09/28/23-09:52:38.116951 |
SID: | 2025883 |
Source Port: | 45036 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14193.159.247.25149412802025883 09/28/23-09:53:32.540424 |
SID: | 2025883 |
Source Port: | 49412 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.207.90.17560668802030092 09/28/23-09:52:18.076476 |
SID: | 2030092 |
Source Port: | 60668 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14193.221.94.14347118802025883 09/28/23-09:53:09.804668 |
SID: | 2025883 |
Source Port: | 47118 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1496.75.234.11443198802025883 09/28/23-09:53:54.701498 |
SID: | 2025883 |
Source Port: | 43198 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1485.198.90.1349696802030092 09/28/23-09:52:33.976986 |
SID: | 2030092 |
Source Port: | 49696 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14206.210.105.12249304802030092 09/28/23-09:53:34.645440 |
SID: | 2030092 |
Source Port: | 49304 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1447.101.138.11234242802025883 09/28/23-09:52:32.393445 |
SID: | 2025883 |
Source Port: | 34242 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.230.10.12860820802025883 09/28/23-09:53:57.586105 |
SID: | 2025883 |
Source Port: | 60820 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1444.239.28.18734080802030092 09/28/23-09:53:17.733668 |
SID: | 2030092 |
Source Port: | 34080 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1434.198.253.23847282802025883 09/28/23-09:52:31.693910 |
SID: | 2025883 |
Source Port: | 47282 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14110.87.168.20550202802025883 09/28/23-09:52:44.982317 |
SID: | 2025883 |
Source Port: | 50202 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.194.143.17738458802025883 09/28/23-09:53:44.826673 |
SID: | 2025883 |
Source Port: | 38458 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14141.148.197.22451134802025883 09/28/23-09:53:59.756021 |
SID: | 2025883 |
Source Port: | 51134 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1444.206.85.16847086802025883 09/28/23-09:53:38.610297 |
SID: | 2025883 |
Source Port: | 47086 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14204.188.204.11834298802030092 09/28/23-09:52:41.627464 |
SID: | 2030092 |
Source Port: | 34298 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1438.207.90.17560720802030092 09/28/23-09:52:21.074291 |
SID: | 2030092 |
Source Port: | 60720 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14150.60.133.4755690802025883 09/28/23-09:52:17.836665 |
SID: | 2025883 |
Source Port: | 55690 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14123.126.39.8637636802025883 09/28/23-09:53:20.882661 |
SID: | 2025883 |
Source Port: | 37636 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1418.67.17.6537062802025883 09/28/23-09:53:50.642338 |
SID: | 2025883 |
Source Port: | 37062 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1434.160.30.19560682802030092 09/28/23-09:53:48.503496 |
SID: | 2030092 |
Source Port: | 60682 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14154.80.169.23659568802025883 09/28/23-09:53:07.212745 |
SID: | 2025883 |
Source Port: | 59568 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1485.198.90.1349696802025883 09/28/23-09:52:33.976986 |
SID: | 2025883 |
Source Port: | 49696 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.181.24.1553136802030092 09/28/23-09:53:29.928081 |
SID: | 2030092 |
Source Port: | 53136 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1438.107.86.12351566802030092 09/28/23-09:53:53.640944 |
SID: | 2030092 |
Source Port: | 51566 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1491.212.231.19039110802030092 09/28/23-09:52:55.799828 |
SID: | 2030092 |
Source Port: | 39110 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.45.99.3459752802030092 09/28/23-09:52:41.691625 |
SID: | 2030092 |
Source Port: | 59752 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14136.228.200.3657768802030092 09/28/23-09:52:45.883691 |
SID: | 2030092 |
Source Port: | 57768 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14165.22.84.12958464802030092 09/28/23-09:53:13.420881 |
SID: | 2030092 |
Source Port: | 58464 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.142.22.149.6133564802025883 09/28/23-09:53:13.755759 |
SID: | 2025883 |
Source Port: | 33564 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14188.225.82.7959380802025883 09/28/23-09:52:17.769653 |
SID: | 2025883 |
Source Port: | 59380 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1454.75.33.17036696802030092 09/28/23-09:53:48.582863 |
SID: | 2030092 |
Source Port: | 36696 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14158.69.112.3047104802025883 09/28/23-09:53:13.533175 |
SID: | 2025883 |
Source Port: | 47104 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14193.93.21.18159018802030092 09/28/23-09:53:44.795254 |
SID: | 2030092 |
Source Port: | 59018 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14195.211.72.7156102802030092 09/28/23-09:52:48.490163 |
SID: | 2030092 |
Source Port: | 56102 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1443.243.247.1747564802030092 09/28/23-09:52:49.762780 |
SID: | 2030092 |
Source Port: | 47564 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1447.114.89.25038542802025883 09/28/23-09:52:34.208499 |
SID: | 2025883 |
Source Port: | 38542 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14188.165.56.21948048802030092 09/28/23-09:53:23.770139 |
SID: | 2030092 |
Source Port: | 48048 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1451.250.50.22150280802030092 09/28/23-09:53:43.817726 |
SID: | 2030092 |
Source Port: | 50280 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1454.64.211.19859484802025883 09/28/23-09:53:34.794616 |
SID: | 2025883 |
Source Port: | 59484 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1413.249.236.2648050802025883 09/28/23-09:53:02.449677 |
SID: | 2025883 |
Source Port: | 48050 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14122.116.96.23460224802030092 09/28/23-09:52:55.893905 |
SID: | 2030092 |
Source Port: | 60224 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14173.232.157.16845084802030092 09/28/23-09:53:39.860615 |
SID: | 2030092 |
Source Port: | 45084 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14218.188.158.9041256802025883 09/28/23-09:52:55.904769 |
SID: | 2025883 |
Source Port: | 41256 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1434.17.37.18840416802025883 09/28/23-09:52:45.911610 |
SID: | 2025883 |
Source Port: | 40416 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14213.187.246.17553710802030092 09/28/23-09:52:41.413852 |
SID: | 2030092 |
Source Port: | 53710 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1465.108.94.4658650802025883 09/28/23-09:52:20.598617 |
SID: | 2025883 |
Source Port: | 58650 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1434.120.205.9356164802030092 09/28/23-09:52:01.691113 |
SID: | 2030092 |
Source Port: | 56164 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14164.40.200.20140530802025883 09/28/23-09:53:30.931721 |
SID: | 2025883 |
Source Port: | 40530 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1457.180.24.9640480802030092 09/28/23-09:52:26.008172 |
SID: | 2030092 |
Source Port: | 40480 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1486.252.15.19241628802025883 09/28/23-09:53:13.692481 |
SID: | 2025883 |
Source Port: | 41628 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1447.101.138.11234242802030092 09/28/23-09:52:32.393445 |
SID: | 2030092 |
Source Port: | 34242 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1413.250.45.7349254802030092 09/28/23-09:53:48.994580 |
SID: | 2030092 |
Source Port: | 49254 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.51.84.10050564802030092 09/28/23-09:53:32.666682 |
SID: | 2030092 |
Source Port: | 50564 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14205.251.215.11535916802030092 09/28/23-09:53:09.350031 |
SID: | 2030092 |
Source Port: | 35916 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14172.67.248.5256294802030092 09/28/23-09:53:20.189653 |
SID: | 2030092 |
Source Port: | 56294 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1461.64.230.18838774802030092 09/28/23-09:53:48.701830 |
SID: | 2030092 |
Source Port: | 38774 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.108.243.19241484802025883 09/28/23-09:52:33.139669 |
SID: | 2025883 |
Source Port: | 41484 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1423.198.124.24055908802025883 09/28/23-09:53:31.037506 |
SID: | 2025883 |
Source Port: | 55908 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1434.198.253.23847282802030092 09/28/23-09:52:31.693910 |
SID: | 2030092 |
Source Port: | 47282 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1454.221.137.24958888802025883 09/28/23-09:53:23.601365 |
SID: | 2025883 |
Source Port: | 58888 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1444.239.28.18734080802025883 09/28/23-09:53:17.733668 |
SID: | 2025883 |
Source Port: | 34080 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14185.148.185.23742584802025883 09/28/23-09:52:38.048784 |
SID: | 2025883 |
Source Port: | 42584 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14122.249.156.17954126802030092 09/28/23-09:52:29.888572 |
SID: | 2030092 |
Source Port: | 54126 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14185.41.89.6851502802025883 09/28/23-09:53:02.135586 |
SID: | 2025883 |
Source Port: | 51502 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1420.83.188.19737222802025883 09/28/23-09:53:34.737603 |
SID: | 2025883 |
Source Port: | 37222 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14165.22.242.19249322802025883 09/28/23-09:53:08.943471 |
SID: | 2025883 |
Source Port: | 49322 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1451.222.111.22053488802025883 09/28/23-09:53:59.540650 |
SID: | 2025883 |
Source Port: | 53488 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14102.217.203.13249856802025883 09/28/23-09:53:35.215732 |
SID: | 2025883 |
Source Port: | 49856 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14173.186.99.1860320802030092 09/28/23-09:52:23.551317 |
SID: | 2030092 |
Source Port: | 60320 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1454.73.168.6939258802030092 09/28/23-09:53:43.767717 |
SID: | 2030092 |
Source Port: | 39258 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1494.130.25.21049260802025883 09/28/23-09:53:53.821381 |
SID: | 2025883 |
Source Port: | 49260 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14156.241.108.3434950802025883 09/28/23-09:52:25.744423 |
SID: | 2025883 |
Source Port: | 34950 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14173.223.91.9243968802030092 09/28/23-09:53:59.741937 |
SID: | 2030092 |
Source Port: | 43968 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1434.149.181.19743626802030092 09/28/23-09:53:17.555035 |
SID: | 2030092 |
Source Port: | 43626 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1438.181.24.1553136802025883 09/28/23-09:53:29.928081 |
SID: | 2025883 |
Source Port: | 53136 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14187.202.142.4633786802030092 09/28/23-09:52:20.856270 |
SID: | 2030092 |
Source Port: | 33786 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1493.114.184.15760102802025883 09/28/23-09:52:58.413699 |
SID: | 2025883 |
Source Port: | 60102 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14158.69.112.3047104802030092 09/28/23-09:53:13.533175 |
SID: | 2030092 |
Source Port: | 47104 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14154.80.169.23659568802030092 09/28/23-09:53:07.212745 |
SID: | 2030092 |
Source Port: | 59568 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1445.77.101.16551534802025883 09/28/23-09:53:09.625597 |
SID: | 2025883 |
Source Port: | 51534 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1488.238.118.7954070802025883 09/28/23-09:52:26.685406 |
SID: | 2025883 |
Source Port: | 54070 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1445.84.1.23749306802030092 09/28/23-09:53:48.839113 |
SID: | 2030092 |
Source Port: | 49306 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1418.67.17.6537062802030092 09/28/23-09:53:50.642338 |
SID: | 2030092 |
Source Port: | 37062 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14210.61.125.6450800802030092 09/28/23-09:53:47.685514 |
SID: | 2030092 |
Source Port: | 50800 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14204.188.204.11834298802025883 09/28/23-09:52:41.627464 |
SID: | 2025883 |
Source Port: | 34298 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1445.243.108.12038114802030092 09/28/23-09:52:32.031438 |
SID: | 2030092 |
Source Port: | 38114 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1434.216.59.25351714802025883 09/28/23-09:53:27.847532 |
SID: | 2025883 |
Source Port: | 51714 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1454.64.211.19859484802030092 09/28/23-09:53:34.794616 |
SID: | 2030092 |
Source Port: | 59484 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.5.154.12046330802030092 09/28/23-09:52:54.498838 |
SID: | 2030092 |
Source Port: | 46330 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14122.201.101.645660802025883 09/28/23-09:53:40.160117 |
SID: | 2025883 |
Source Port: | 45660 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1484.22.114.25237232802025883 09/28/23-09:53:13.686837 |
SID: | 2025883 |
Source Port: | 37232 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1413.250.45.7349254802025883 09/28/23-09:53:48.994580 |
SID: | 2025883 |
Source Port: | 49254 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14103.10.228.22658938802025883 09/28/23-09:53:28.223653 |
SID: | 2025883 |
Source Port: | 58938 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1438.207.90.17560720802025883 09/28/23-09:52:21.074291 |
SID: | 2025883 |
Source Port: | 60720 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1443.198.57.23660668802025883 09/28/23-09:51:58.839453 |
SID: | 2025883 |
Source Port: | 60668 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14196.51.1.24236382802030092 09/28/23-09:52:54.729216 |
SID: | 2030092 |
Source Port: | 36382 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14205.251.215.11535916802025883 09/28/23-09:53:09.350031 |
SID: | 2025883 |
Source Port: | 35916 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14103.10.228.22658938802030092 09/28/23-09:53:28.223653 |
SID: | 2030092 |
Source Port: | 58938 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14185.60.45.24044766802030092 09/28/23-09:52:01.806584 |
SID: | 2030092 |
Source Port: | 44766 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14156.241.108.3435160802030092 09/28/23-09:52:38.163238 |
SID: | 2030092 |
Source Port: | 35160 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1446.242.204.958640802030092 09/28/23-09:53:43.796642 |
SID: | 2030092 |
Source Port: | 58640 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1454.221.137.24958888802030092 09/28/23-09:53:23.601365 |
SID: | 2030092 |
Source Port: | 58888 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1434.120.205.9356164802025883 09/28/23-09:52:01.691113 |
SID: | 2025883 |
Source Port: | 56164 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1465.108.94.4658650802030092 09/28/23-09:52:20.598617 |
SID: | 2030092 |
Source Port: | 58650 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1420.83.188.19737222802030092 09/28/23-09:53:34.737603 |
SID: | 2030092 |
Source Port: | 37222 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1434.216.59.25351714802030092 09/28/23-09:53:27.847532 |
SID: | 2030092 |
Source Port: | 51714 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.5.154.12046330802025883 09/28/23-09:52:54.498838 |
SID: | 2025883 |
Source Port: | 46330 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1413.249.236.2648050802030092 09/28/23-09:53:02.449677 |
SID: | 2030092 |
Source Port: | 48050 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1484.22.114.25237232802030092 09/28/23-09:53:13.686837 |
SID: | 2030092 |
Source Port: | 37232 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1423.198.124.24055908802030092 09/28/23-09:53:31.037506 |
SID: | 2030092 |
Source Port: | 55908 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1445.243.108.12038114802025883 09/28/23-09:52:32.031438 |
SID: | 2025883 |
Source Port: | 38114 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1443.243.247.1747564802025883 09/28/23-09:52:49.762780 |
SID: | 2025883 |
Source Port: | 47564 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14141.148.197.22451134802030092 09/28/23-09:53:59.756021 |
SID: | 2030092 |
Source Port: | 51134 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1454.73.168.6939258802025883 09/28/23-09:53:43.767717 |
SID: | 2025883 |
Source Port: | 39258 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14104.17.197.9451508802030092 09/28/23-09:53:17.192464 |
SID: | 2030092 |
Source Port: | 51508 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1418.154.214.12154476802030092 09/28/23-09:51:57.645091 |
SID: | 2030092 |
Source Port: | 54476 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14104.105.101.1533952802025883 09/28/23-09:52:41.411069 |
SID: | 2025883 |
Source Port: | 33952 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1445.77.101.16551534802030092 09/28/23-09:53:09.625597 |
SID: | 2030092 |
Source Port: | 51534 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14116.80.110.4250982802025883 09/28/23-09:53:20.835873 |
SID: | 2025883 |
Source Port: | 50982 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14159.192.167.13056408802025883 09/28/23-09:53:14.054579 |
SID: | 2025883 |
Source Port: | 56408 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.14164.40.200.20140530802030092 09/28/23-09:53:30.931721 |
SID: | 2030092 |
Source Port: | 40530 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.14185.41.89.6851502802030092 09/28/23-09:53:02.135586 |
SID: | 2030092 |
Source Port: | 51502 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1461.64.230.18838774802025883 09/28/23-09:53:48.701830 |
SID: | 2025883 |
Source Port: | 38774 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Attempted Administrator Privilege Gain |
Timestamp: | 192.168.2.1418.136.162.2735260802030092 09/28/23-09:53:48.746356 |
SID: | 2030092 |
Source Port: | 35260 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
- • AV Detection
- • Networking
- • System Summary
- • Data Obfuscation
- • Persistence and Installation Behavior
- • Hooking and other Techniques for Hiding and Protection
- • Malware Analysis System Evasion
- • Stealing of Sensitive Information
- • Remote Access Functionality
Click to jump to signature section
Show All Signature Results
AV Detection |
---|
Source: | Virustotal: | Perma Link |
Source: | Joe Sandbox ML: |
Networking |
---|
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |