Linux
Analysis Report
7vbrDg2AF5.elf
Overview
General Information
Detection
Mirai
Score: | 100 |
Range: | 0 - 100 |
Whitelisted: | false |
Signatures
Antivirus / Scanner detection for submitted sample
Yara detected Mirai
Multi AV Scanner detection for submitted file
Malicious sample detected (through community Yara rule)
Detected Mirai
Snort IDS alert for network traffic
Connects to many ports of the same IP (likely port scanning)
Uses known network protocols on non-standard ports
Sample tries to kill multiple processes (SIGKILL)
Yara signature match
Uses the "uname" system call to query kernel version information (possible evasion)
Enumerates processes within the "proc" file system
Detected TCP or UDP traffic on non-standard ports
Sample listens on a socket
Sample tries to kill a process (SIGKILL)
Sample has stripped symbol table
HTTP GET or POST without a user agent
Sample contains strings indicative of BusyBox which embeds multiple Unix commands in a single executable
Classification
Analysis Advice
Some HTTP requests failed (404). It is likely that the sample will exhibit less behavior. |
Static ELF header machine description suggests that the sample might not execute correctly on this machine. |
Static ELF header machine description suggests that the sample might only run correctly on MIPS or ARM architectures. |
Joe Sandbox Version: | 38.0.0 Ammolite |
Analysis ID: | 1346285 |
Start date and time: | 2023-11-22 08:37:09 +01:00 |
Joe Sandbox Product: | CloudBasic |
Overall analysis duration: | 0h 6m 40s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | defaultlinuxfilecookbook.jbs |
Analysis system description: | Ubuntu Linux 20.04 x64 (Kernel 5.4.0-72, Firefox 91.0, Evince Document Viewer 3.36.10, LibreOffice 6.4.7.2, OpenJDK 11.0.11) |
Analysis Mode: | default |
Sample file name: | 7vbrDg2AF5.elfrenamed because original name is a hash value |
Original Sample Name: | 03820eb28af050fd869894d3e25fd86e.elf |
Detection: | MAL |
Classification: | mal100.spre.troj.linELF@0/0@2/0 |
- Report size exceeded maximum capacity and may have missing network information.
Command: | /tmp/7vbrDg2AF5.elf |
PID: | 5418 |
Exit Code: | 0 |
Exit Code Info: | |
Killed: | False |
Standard Output: | Infected By Cult |
Standard Error: |
- system is lnxubuntu20
- 7vbrDg2AF5.elf New Fork (PID: 5421, Parent: 5418)
- 7vbrDg2AF5.elf New Fork (PID: 5422, Parent: 5418)
- 7vbrDg2AF5.elf New Fork (PID: 5423, Parent: 5418)
- 7vbrDg2AF5.elf New Fork (PID: 5427, Parent: 5423)
- 7vbrDg2AF5.elf New Fork (PID: 5429, Parent: 5423)
- 7vbrDg2AF5.elf New Fork (PID: 5431, Parent: 5423)
- 7vbrDg2AF5.elf New Fork (PID: 5434, Parent: 5423)
- 7vbrDg2AF5.elf New Fork (PID: 5436, Parent: 5423)
- 7vbrDg2AF5.elf New Fork (PID: 5437, Parent: 5423)
- cleanup
Name | Description | Attribution | Blogpost URLs | Link |
---|---|---|---|---|
Mirai | Mirai is one of the first significant botnets targeting exposed networking devices running Linux. Found in August 2016 by MalwareMustDie, its name means "future" in Japanese. Nowadays it targets a wide range of networked embedded devices such as IP cameras, home routers (many vendors involved), and other IoT devices. Since the source code was published on "Hack Forums" many variants of the Mirai family appeared, infecting mostly home networks all around the world. | No Attribution |
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_Mirai_8 | Yara detected Mirai | Joe Security | ||
Linux_Trojan_Gafgyt_28a2fe0c | unknown | unknown |
| |
Linux_Trojan_Gafgyt_ea92cca8 | unknown | unknown |
|
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_Mirai_12 | Yara detected Mirai | Joe Security |
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_Mirai_8 | Yara detected Mirai | Joe Security | ||
Linux_Trojan_Gafgyt_28a2fe0c | unknown | unknown |
| |
Linux_Trojan_Gafgyt_ea92cca8 | unknown | unknown |
| |
JoeSecurity_Mirai_8 | Yara detected Mirai | Joe Security | ||
Linux_Trojan_Gafgyt_28a2fe0c | unknown | unknown |
| |
Click to see the 40 entries |
Timestamp: | 192.168.2.13112.78.126.13554022802839471 11/22/23-08:38:39.466461 |
SID: | 2839471 |
Source Port: | 54022 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.125.252.5534972802839471 11/22/23-08:38:10.321447 |
SID: | 2839471 |
Source Port: | 34972 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.126.227.10639358802839471 11/22/23-08:38:46.300126 |
SID: | 2839471 |
Source Port: | 39358 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.189.24432962802839471 11/22/23-08:39:26.084974 |
SID: | 2839471 |
Source Port: | 32962 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.98.192.445674802839471 11/22/23-08:40:20.867125 |
SID: | 2839471 |
Source Port: | 45674 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.167.133.16652980802839471 11/22/23-08:38:41.288103 |
SID: | 2839471 |
Source Port: | 52980 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.117.11.18934916802839471 11/22/23-08:40:11.420226 |
SID: | 2839471 |
Source Port: | 34916 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.126.206.24158744802839471 11/22/23-08:39:42.602826 |
SID: | 2839471 |
Source Port: | 58744 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.74.230.21154102802839471 11/22/23-08:39:06.157009 |
SID: | 2839471 |
Source Port: | 54102 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.125.239.21047324802839471 11/22/23-08:40:29.723928 |
SID: | 2839471 |
Source Port: | 47324 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.175.183.14135102802839471 11/22/23-08:39:06.124890 |
SID: | 2839471 |
Source Port: | 35102 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.149.17132922802839471 11/22/23-08:39:37.911045 |
SID: | 2839471 |
Source Port: | 32922 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.29.236.19139558802839471 11/22/23-08:39:40.509676 |
SID: | 2839471 |
Source Port: | 39558 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.181.205.12050178802839471 11/22/23-08:39:26.054890 |
SID: | 2839471 |
Source Port: | 50178 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.86.81.1043866802839471 11/22/23-08:39:57.812990 |
SID: | 2839471 |
Source Port: | 43866 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.255.66.15241320802839471 11/22/23-08:39:36.617839 |
SID: | 2839471 |
Source Port: | 41320 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.101.50.950376802839471 11/22/23-08:38:43.872914 |
SID: | 2839471 |
Source Port: | 50376 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.74.91.2858368802839471 11/22/23-08:39:56.357134 |
SID: | 2839471 |
Source Port: | 58368 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.118.172.23451340802839471 11/22/23-08:39:59.372462 |
SID: | 2839471 |
Source Port: | 51340 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.111.227.5848078802839471 11/22/23-08:38:26.333952 |
SID: | 2839471 |
Source Port: | 48078 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.48.8.1060126802839471 11/22/23-08:38:43.216905 |
SID: | 2839471 |
Source Port: | 60126 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.120.47.1143870802839471 11/22/23-08:39:01.752555 |
SID: | 2839471 |
Source Port: | 43870 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.17.55.2035004802839471 11/22/23-08:38:23.222471 |
SID: | 2839471 |
Source Port: | 35004 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.217.184.24035006802839471 11/22/23-08:39:59.567622 |
SID: | 2839471 |
Source Port: | 35006 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.29.156.8451742802839471 11/22/23-08:38:16.778129 |
SID: | 2839471 |
Source Port: | 51742 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.221.167.10247432802839471 11/22/23-08:38:36.360307 |
SID: | 2839471 |
Source Port: | 47432 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.198.185.13052944802839471 11/22/23-08:39:36.398956 |
SID: | 2839471 |
Source Port: | 52944 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.184.163.5333992802839471 11/22/23-08:40:25.586463 |
SID: | 2839471 |
Source Port: | 33992 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.150.140.20738292802839471 11/22/23-08:39:32.278008 |
SID: | 2839471 |
Source Port: | 38292 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.86.103.17041414802839471 11/22/23-08:38:41.533658 |
SID: | 2839471 |
Source Port: | 41414 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.114.22145908802839471 11/22/23-08:38:44.364622 |
SID: | 2839471 |
Source Port: | 45908 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.187.163.11959890802839471 11/22/23-08:38:03.806900 |
SID: | 2839471 |
Source Port: | 59890 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.177.211.4549068802839471 11/22/23-08:38:32.565922 |
SID: | 2839471 |
Source Port: | 49068 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.126.201.23446432802839471 11/22/23-08:39:28.501092 |
SID: | 2839471 |
Source Port: | 46432 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.197.252.20154472802839471 11/22/23-08:39:42.712259 |
SID: | 2839471 |
Source Port: | 54472 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.221.20451502802839471 11/22/23-08:38:25.924435 |
SID: | 2839471 |
Source Port: | 51502 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.17.17.20448888802839471 11/22/23-08:38:48.333330 |
SID: | 2839471 |
Source Port: | 48888 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.6.82.14157304802839471 11/22/23-08:39:08.460494 |
SID: | 2839471 |
Source Port: | 57304 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.101.17.11341836802839471 11/22/23-08:38:57.493996 |
SID: | 2839471 |
Source Port: | 41836 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.172.15.2135606802839471 11/22/23-08:40:05.116149 |
SID: | 2839471 |
Source Port: | 35606 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.82.214.1149152802839471 11/22/23-08:38:38.998589 |
SID: | 2839471 |
Source Port: | 49152 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.126.220.12834588802839471 11/22/23-08:39:57.266531 |
SID: | 2839471 |
Source Port: | 34588 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.150.13034904802839471 11/22/23-08:39:40.294076 |
SID: | 2839471 |
Source Port: | 34904 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.249.69.17348744802839471 11/22/23-08:39:47.602041 |
SID: | 2839471 |
Source Port: | 48744 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.151.253.23957308802839471 11/22/23-08:39:06.570780 |
SID: | 2839471 |
Source Port: | 57308 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.249.243.7656124802839471 11/22/23-08:38:34.621979 |
SID: | 2839471 |
Source Port: | 56124 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.213.168.9843502802839471 11/22/23-08:40:22.916667 |
SID: | 2839471 |
Source Port: | 43502 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.106.163.22553450802839471 11/22/23-08:38:44.395630 |
SID: | 2839471 |
Source Port: | 53450 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.124.7.5245800802839471 11/22/23-08:38:12.658143 |
SID: | 2839471 |
Source Port: | 45800 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.216.169.7448074802839471 11/22/23-08:39:40.488601 |
SID: | 2839471 |
Source Port: | 48074 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.101.213.13952266802839471 11/22/23-08:39:55.832398 |
SID: | 2839471 |
Source Port: | 52266 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.7.99.14341428802839471 11/22/23-08:39:36.441332 |
SID: | 2839471 |
Source Port: | 41428 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.74.88.4650252802839471 11/22/23-08:37:53.878153 |
SID: | 2839471 |
Source Port: | 50252 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.125.248.24937870802839471 11/22/23-08:38:03.824234 |
SID: | 2839471 |
Source Port: | 37870 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.160.16.8959134802839471 11/22/23-08:39:53.220851 |
SID: | 2839471 |
Source Port: | 59134 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.198.226.2651334802839471 11/22/23-08:38:50.271206 |
SID: | 2839471 |
Source Port: | 51334 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.26.201.24458824802839471 11/22/23-08:38:54.063266 |
SID: | 2839471 |
Source Port: | 58824 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.106.188.11657542802839471 11/22/23-08:39:17.683084 |
SID: | 2839471 |
Source Port: | 57542 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.182.192.1459658802839471 11/22/23-08:39:46.568799 |
SID: | 2839471 |
Source Port: | 59658 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.136.80.949182802839471 11/22/23-08:39:00.226617 |
SID: | 2839471 |
Source Port: | 49182 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.216.157.18254404802839471 11/22/23-08:38:41.264951 |
SID: | 2839471 |
Source Port: | 54404 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.190.13044918802839471 11/22/23-08:39:53.421679 |
SID: | 2839471 |
Source Port: | 44918 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.197.222.16944184802839471 11/22/23-08:37:53.927216 |
SID: | 2839471 |
Source Port: | 44184 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.126.73.22045586802839471 11/22/23-08:38:16.418020 |
SID: | 2839471 |
Source Port: | 45586 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.67.70.12249082802839471 11/22/23-08:38:41.286591 |
SID: | 2839471 |
Source Port: | 49082 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.211.189.24548752802839471 11/22/23-08:39:50.081365 |
SID: | 2839471 |
Source Port: | 48752 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.175.88.8158808802839471 11/22/23-08:39:42.572753 |
SID: | 2839471 |
Source Port: | 58808 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.110.159.16450814802839471 11/22/23-08:40:03.530281 |
SID: | 2839471 |
Source Port: | 50814 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.138.24237066802839471 11/22/23-08:40:24.652708 |
SID: | 2839471 |
Source Port: | 37066 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.154.208.7257280802839471 11/22/23-08:38:41.241776 |
SID: | 2839471 |
Source Port: | 57280 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.101.241.2441234802839471 11/22/23-08:38:26.252040 |
SID: | 2839471 |
Source Port: | 41234 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.99.49.12560270802839471 11/22/23-08:39:34.634064 |
SID: | 2839471 |
Source Port: | 60270 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.164.143.21154134802839471 11/22/23-08:39:00.473632 |
SID: | 2839471 |
Source Port: | 54134 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.126.145.24646432802839471 11/22/23-08:38:48.568469 |
SID: | 2839471 |
Source Port: | 46432 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.218.118.10441882802839471 11/22/23-08:37:56.946295 |
SID: | 2839471 |
Source Port: | 41882 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.101.43.12441346802839471 11/22/23-08:37:53.334993 |
SID: | 2839471 |
Source Port: | 41346 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.197.222.3655516802839471 11/22/23-08:40:29.802055 |
SID: | 2839471 |
Source Port: | 55516 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.107.255.3045286802839471 11/22/23-08:39:59.599231 |
SID: | 2839471 |
Source Port: | 45286 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.218.105.3059658802839471 11/22/23-08:40:14.149709 |
SID: | 2839471 |
Source Port: | 59658 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.221.40.6134480802839471 11/22/23-08:38:03.342106 |
SID: | 2839471 |
Source Port: | 34480 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.101.184.5441286802839471 11/22/23-08:38:41.444114 |
SID: | 2839471 |
Source Port: | 41286 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.91.65.1642058802839471 11/22/23-08:38:29.283990 |
SID: | 2839471 |
Source Port: | 42058 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.133.222.8248854802839471 11/22/23-08:39:46.615359 |
SID: | 2839471 |
Source Port: | 48854 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.74.139.22142276802839471 11/22/23-08:39:06.154943 |
SID: | 2839471 |
Source Port: | 42276 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.172.191.6449632802839471 11/22/23-08:39:17.273509 |
SID: | 2839471 |
Source Port: | 49632 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.86.70.4848800802839471 11/22/23-08:39:06.360883 |
SID: | 2839471 |
Source Port: | 48800 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.147.195.11042210802839471 11/22/23-08:40:29.043357 |
SID: | 2839471 |
Source Port: | 42210 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.200.201.15142504802839471 11/22/23-08:40:26.104774 |
SID: | 2839471 |
Source Port: | 42504 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.136.80.949174802839471 11/22/23-08:38:59.966013 |
SID: | 2839471 |
Source Port: | 49174 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.56.21.15834620802839471 11/22/23-08:38:29.518204 |
SID: | 2839471 |
Source Port: | 34620 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.217.81.18150928802839471 11/22/23-08:39:12.795368 |
SID: | 2839471 |
Source Port: | 50928 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.99.172.21660402802839471 11/22/23-08:38:21.849673 |
SID: | 2839471 |
Source Port: | 60402 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.169.169.9033660802839471 11/22/23-08:38:14.630192 |
SID: | 2839471 |
Source Port: | 33660 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.101.149.654442802839471 11/22/23-08:39:40.500569 |
SID: | 2839471 |
Source Port: | 54442 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.112.196.14146738802839471 11/22/23-08:39:20.710951 |
SID: | 2839471 |
Source Port: | 46738 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.197.182.14255526802839471 11/22/23-08:38:12.347218 |
SID: | 2839471 |
Source Port: | 55526 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.197.190.19754854802839471 11/22/23-08:39:59.464500 |
SID: | 2839471 |
Source Port: | 54854 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.216.179.22537984802839471 11/22/23-08:38:41.481809 |
SID: | 2839471 |
Source Port: | 37984 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.57.203.24049532802839471 11/22/23-08:40:05.173082 |
SID: | 2839471 |
Source Port: | 49532 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.209.158.7056870802839471 11/22/23-08:40:05.333098 |
SID: | 2839471 |
Source Port: | 56870 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.125.147.940704802839471 11/22/23-08:40:14.055742 |
SID: | 2839471 |
Source Port: | 40704 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.99.112.20446162802839471 11/22/23-08:39:01.936765 |
SID: | 2839471 |
Source Port: | 46162 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.67.55.21251294802839471 11/22/23-08:40:22.922361 |
SID: | 2839471 |
Source Port: | 51294 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.172.224.6046356802839471 11/22/23-08:38:03.805794 |
SID: | 2839471 |
Source Port: | 46356 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.86.98.20236756802839471 11/22/23-08:38:19.421237 |
SID: | 2839471 |
Source Port: | 36756 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.140.95.258850802839471 11/22/23-08:40:21.012112 |
SID: | 2839471 |
Source Port: | 58850 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.210.141.19760296802839471 11/22/23-08:38:32.185935 |
SID: | 2839471 |
Source Port: | 60296 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.83.164.17051464802839471 11/22/23-08:39:40.527247 |
SID: | 2839471 |
Source Port: | 51464 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.91.217.9858874802839471 11/22/23-08:37:53.894158 |
SID: | 2839471 |
Source Port: | 58874 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.225.12550656802839471 11/22/23-08:39:23.138114 |
SID: | 2839471 |
Source Port: | 50656 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.241.102.23356236802839471 11/22/23-08:38:32.010532 |
SID: | 2839471 |
Source Port: | 56236 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.91.67.22836248802839471 11/22/23-08:39:36.599344 |
SID: | 2839471 |
Source Port: | 36248 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.214.218.21351018802839471 11/22/23-08:38:44.354561 |
SID: | 2839471 |
Source Port: | 51018 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.203.230.14441408802839471 11/22/23-08:39:42.287249 |
SID: | 2839471 |
Source Port: | 41408 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.85.37.19948410802839471 11/22/23-08:40:08.247185 |
SID: | 2839471 |
Source Port: | 48410 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.212.79.24544896802839471 11/22/23-08:38:32.035197 |
SID: | 2839471 |
Source Port: | 44896 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.56.128.17854980802839471 11/22/23-08:38:26.576880 |
SID: | 2839471 |
Source Port: | 54980 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.101.99.247606802839471 11/22/23-08:38:41.525607 |
SID: | 2839471 |
Source Port: | 47606 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.208.242.8452070802839471 11/22/23-08:39:34.621326 |
SID: | 2839471 |
Source Port: | 52070 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.120.54.20655404802839471 11/22/23-08:37:53.875300 |
SID: | 2839471 |
Source Port: | 55404 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.125.238.10435534802839471 11/22/23-08:39:44.394165 |
SID: | 2839471 |
Source Port: | 35534 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.45.122.12233052802839471 11/22/23-08:39:56.411898 |
SID: | 2839471 |
Source Port: | 33052 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.217.161.17650190802839471 11/22/23-08:38:29.060232 |
SID: | 2839471 |
Source Port: | 50190 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.128.184.3141274802839471 11/22/23-08:40:05.344632 |
SID: | 2839471 |
Source Port: | 41274 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.19.212.9852772802839471 11/22/23-08:38:08.287963 |
SID: | 2839471 |
Source Port: | 52772 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.124.37.5738998802839471 11/22/23-08:39:11.205993 |
SID: | 2839471 |
Source Port: | 38998 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.183.53.6735142802839471 11/22/23-08:39:12.787497 |
SID: | 2839471 |
Source Port: | 35142 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.101.158.7435268802839471 11/22/23-08:38:36.199628 |
SID: | 2839471 |
Source Port: | 35268 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.217.46.20235322802839471 11/22/23-08:38:41.265346 |
SID: | 2839471 |
Source Port: | 35322 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.125.226.18951188802839471 11/22/23-08:39:17.692048 |
SID: | 2839471 |
Source Port: | 51188 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.17.17.20448886802839471 11/22/23-08:38:48.326850 |
SID: | 2839471 |
Source Port: | 48886 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.158.149.24734002802839471 11/22/23-08:39:26.056352 |
SID: | 2839471 |
Source Port: | 34002 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.216.76.8659260802839471 11/22/23-08:40:11.202518 |
SID: | 2839471 |
Source Port: | 59260 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.212.253.11260700802839471 11/22/23-08:38:50.106926 |
SID: | 2839471 |
Source Port: | 60700 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.116.38.5050350802839471 11/22/23-08:37:56.525271 |
SID: | 2839471 |
Source Port: | 50350 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.25.57.4633068802839471 11/22/23-08:40:29.818422 |
SID: | 2839471 |
Source Port: | 33068 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.101.128.15244274802839471 11/22/23-08:38:25.882731 |
SID: | 2839471 |
Source Port: | 44274 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.160.171.18555996802839471 11/22/23-08:39:46.560659 |
SID: | 2839471 |
Source Port: | 55996 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.46.150.25337382802839471 11/22/23-08:39:18.101161 |
SID: | 2839471 |
Source Port: | 37382 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.140.203.16348924802839471 11/22/23-08:38:16.676202 |
SID: | 2839471 |
Source Port: | 48924 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.56.156.16959948802839471 11/22/23-08:39:26.119963 |
SID: | 2839471 |
Source Port: | 59948 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.56.133.14759304802839471 11/22/23-08:39:00.030611 |
SID: | 2839471 |
Source Port: | 59304 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.212.1.10653706802839471 11/22/23-08:40:11.007225 |
SID: | 2839471 |
Source Port: | 53706 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.124.57.19852652802839471 11/22/23-08:38:46.310492 |
SID: | 2839471 |
Source Port: | 52652 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.249.231.22056926802839471 11/22/23-08:39:21.135024 |
SID: | 2839471 |
Source Port: | 56926 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.25.90.6444834802839471 11/22/23-08:38:05.048834 |
SID: | 2839471 |
Source Port: | 44834 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.171.210.1755214802839471 11/22/23-08:40:20.801601 |
SID: | 2839471 |
Source Port: | 55214 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.232.11336448802839471 11/22/23-08:38:19.380527 |
SID: | 2839471 |
Source Port: | 36448 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.181.119.15342780802839471 11/22/23-08:40:08.507107 |
SID: | 2839471 |
Source Port: | 42780 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.150.171.19946026802839471 11/22/23-08:38:21.833006 |
SID: | 2839471 |
Source Port: | 46026 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.125.134.5149596802839471 11/22/23-08:39:00.478357 |
SID: | 2839471 |
Source Port: | 49596 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.99.114.438520802839471 11/22/23-08:38:32.199018 |
SID: | 2839471 |
Source Port: | 38520 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.28.249.22152506802839471 11/22/23-08:38:39.562440 |
SID: | 2839471 |
Source Port: | 52506 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.125.149.6233156802839471 11/22/23-08:39:34.445491 |
SID: | 2839471 |
Source Port: | 33156 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.217.35.3834776802839471 11/22/23-08:40:08.269970 |
SID: | 2839471 |
Source Port: | 34776 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.150.13034952802839471 11/22/23-08:39:42.139112 |
SID: | 2839471 |
Source Port: | 34952 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.172.86.18545094802839471 11/22/23-08:40:18.279195 |
SID: | 2839471 |
Source Port: | 45094 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.101.154.4860822802839471 11/22/23-08:40:11.195665 |
SID: | 2839471 |
Source Port: | 60822 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.165.183.10236706802839471 11/22/23-08:38:16.631129 |
SID: | 2839471 |
Source Port: | 36706 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.163.234.20935392802839471 11/22/23-08:38:29.296572 |
SID: | 2839471 |
Source Port: | 35392 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.59.32.1957778802839471 11/22/23-08:40:21.079551 |
SID: | 2839471 |
Source Port: | 57778 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.15.25.840758802839471 11/22/23-08:38:03.368973 |
SID: | 2839471 |
Source Port: | 40758 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.208.14439810802839471 11/22/23-08:38:43.784424 |
SID: | 2839471 |
Source Port: | 39810 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.146.223.5060800802839471 11/22/23-08:40:24.839840 |
SID: | 2839471 |
Source Port: | 60800 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13197.1.208.16852636372152829579 11/22/23-08:39:58.986336 |
SID: | 2829579 |
Source Port: | 52636 |
Destination Port: | 37215 |
Protocol: | TCP |
Classtype: | A Network Trojan was detected |
Timestamp: | 192.168.2.1395.215.251.1344830802839471 11/22/23-08:40:11.462392 |
SID: | 2839471 |
Source Port: | 44830 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.161.140.2757354802839471 11/22/23-08:40:25.585301 |
SID: | 2839471 |
Source Port: | 57354 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.124.21.1039918802839471 11/22/23-08:39:01.744639 |
SID: | 2839471 |
Source Port: | 39918 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.96.166.10955364802839471 11/22/23-08:38:34.101956 |
SID: | 2839471 |
Source Port: | 55364 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.121.179.4360414802839471 11/22/23-08:38:39.507320 |
SID: | 2839471 |
Source Port: | 60414 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.43.220.21445938802839471 11/22/23-08:39:45.704121 |
SID: | 2839471 |
Source Port: | 45938 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.221.140.13739978802839471 11/22/23-08:40:14.240634 |
SID: | 2839471 |
Source Port: | 39978 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.126.165.19455458802839471 11/22/23-08:39:08.399545 |
SID: | 2839471 |
Source Port: | 55458 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.14.30.13142526802839471 11/22/23-08:39:46.957014 |
SID: | 2839471 |
Source Port: | 42526 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.125.173.356616802839471 11/22/23-08:38:12.276127 |
SID: | 2839471 |
Source Port: | 56616 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.17.55.2034998802839471 11/22/23-08:38:22.964290 |
SID: | 2839471 |
Source Port: | 34998 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.180.164.24538884802839471 11/22/23-08:38:25.924474 |
SID: | 2839471 |
Source Port: | 38884 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.169.104.3434060802839471 11/22/23-08:39:44.675959 |
SID: | 2839471 |
Source Port: | 34060 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.216.246.20735014802839471 11/22/23-08:38:36.189617 |
SID: | 2839471 |
Source Port: | 35014 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.221.127.3147594802839471 11/22/23-08:39:19.313329 |
SID: | 2839471 |
Source Port: | 47594 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.217.72.5441172802839471 11/22/23-08:39:36.224043 |
SID: | 2839471 |
Source Port: | 41172 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.212.185.5040414802839471 11/22/23-08:40:24.833955 |
SID: | 2839471 |
Source Port: | 40414 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.85.238.10741338802839471 11/22/23-08:39:30.325608 |
SID: | 2839471 |
Source Port: | 41338 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.218.118.4538098802839471 11/22/23-08:39:20.721161 |
SID: | 2839471 |
Source Port: | 38098 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.86.40.4956754802839471 11/22/23-08:38:29.083284 |
SID: | 2839471 |
Source Port: | 56754 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.101.153.11654814802839471 11/22/23-08:40:05.292567 |
SID: | 2839471 |
Source Port: | 54814 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.74.86.958428802839471 11/22/23-08:40:14.751693 |
SID: | 2839471 |
Source Port: | 58428 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.101.193.4645606802839471 11/22/23-08:39:50.069754 |
SID: | 2839471 |
Source Port: | 45606 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.103.135.10248366802839471 11/22/23-08:39:12.255457 |
SID: | 2839471 |
Source Port: | 48366 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13197.1.208.16852636372152835222 11/22/23-08:39:58.986336 |
SID: | 2835222 |
Source Port: | 52636 |
Destination Port: | 37215 |
Protocol: | TCP |
Classtype: | A Network Trojan was detected |
Timestamp: | 192.168.2.1395.170.147.15036920802839471 11/22/23-08:39:59.625335 |
SID: | 2839471 |
Source Port: | 36920 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.124.109.1949582802839471 11/22/23-08:39:03.469641 |
SID: | 2839471 |
Source Port: | 49582 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.213.33.20844498802839471 11/22/23-08:38:12.276443 |
SID: | 2839471 |
Source Port: | 44498 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.31.114.2138416802839471 11/22/23-08:39:00.527875 |
SID: | 2839471 |
Source Port: | 38416 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.208.36.24560426802839471 11/22/23-08:40:28.995379 |
SID: | 2839471 |
Source Port: | 60426 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.216.1.17041986802839471 11/22/23-08:40:20.996732 |
SID: | 2839471 |
Source Port: | 41986 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.138.24237200802839471 11/22/23-08:40:29.020693 |
SID: | 2839471 |
Source Port: | 37200 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.56.212.20238828802839471 11/22/23-08:39:36.477299 |
SID: | 2839471 |
Source Port: | 38828 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.208.199.19542626802839471 11/22/23-08:39:23.313361 |
SID: | 2839471 |
Source Port: | 42626 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.213.192.11541432802839471 11/22/23-08:38:41.263828 |
SID: | 2839471 |
Source Port: | 41432 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.126.145.18658236802839471 11/22/23-08:39:38.402863 |
SID: | 2839471 |
Source Port: | 58236 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.126.220.12834680802839471 11/22/23-08:40:00.403545 |
SID: | 2839471 |
Source Port: | 34680 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.154.208.9233882802839471 11/22/23-08:39:57.846006 |
SID: | 2839471 |
Source Port: | 33882 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.99.59.14234106802839471 11/22/23-08:40:07.877563 |
SID: | 2839471 |
Source Port: | 34106 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.137.173.20952344802839471 11/22/23-08:39:32.765840 |
SID: | 2839471 |
Source Port: | 52344 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.47.127.11157050802839471 11/22/23-08:39:50.148147 |
SID: | 2839471 |
Source Port: | 57050 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.179.153.20439278802839471 11/22/23-08:38:25.891657 |
SID: | 2839471 |
Source Port: | 39278 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.78.112.8035950802839471 11/22/23-08:38:22.304842 |
SID: | 2839471 |
Source Port: | 35950 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.165.39.5659564802839471 11/22/23-08:38:38.998516 |
SID: | 2839471 |
Source Port: | 59564 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.124.21.1255358802839471 11/22/23-08:38:46.613912 |
SID: | 2839471 |
Source Port: | 55358 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.157.158.2638768802839471 11/22/23-08:38:54.079250 |
SID: | 2839471 |
Source Port: | 38768 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.174.14.14658234802839471 11/22/23-08:38:29.248767 |
SID: | 2839471 |
Source Port: | 58234 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.26.228.1659248802839471 11/22/23-08:39:25.904369 |
SID: | 2839471 |
Source Port: | 59248 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.181.172.2758822802839471 11/22/23-08:40:21.287291 |
SID: | 2839471 |
Source Port: | 58822 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.208.242.8452144802839471 11/22/23-08:39:36.028108 |
SID: | 2839471 |
Source Port: | 52144 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.149.17132982802839471 11/22/23-08:39:39.927952 |
SID: | 2839471 |
Source Port: | 32982 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.200.201.15142478802839471 11/22/23-08:40:25.065449 |
SID: | 2839471 |
Source Port: | 42478 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.216.75.18056666802839471 11/22/23-08:39:57.767556 |
SID: | 2839471 |
Source Port: | 56666 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.110.215.11047752802839471 11/22/23-08:38:52.664818 |
SID: | 2839471 |
Source Port: | 47752 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.171.227.5454354802839471 11/22/23-08:38:22.853934 |
SID: | 2839471 |
Source Port: | 54354 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.101.251.22643370802839471 11/22/23-08:40:04.922873 |
SID: | 2839471 |
Source Port: | 43370 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.35.17.17342048802839471 11/22/23-08:38:14.705885 |
SID: | 2839471 |
Source Port: | 42048 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.29.156.8451728802839471 11/22/23-08:38:16.471309 |
SID: | 2839471 |
Source Port: | 51728 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.213.32.4253072802839471 11/22/23-08:39:38.400270 |
SID: | 2839471 |
Source Port: | 53072 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.48.217.8743960802839471 11/22/23-08:39:28.594987 |
SID: | 2839471 |
Source Port: | 43960 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.86.78.22238946802839471 11/22/23-08:39:50.108164 |
SID: | 2839471 |
Source Port: | 38946 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.196.7.5148110802839471 11/22/23-08:39:16.979296 |
SID: | 2839471 |
Source Port: | 48110 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.165.240.18258916802839471 11/22/23-08:38:39.757680 |
SID: | 2839471 |
Source Port: | 58916 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.174.1.6360108802839471 11/22/23-08:38:57.487603 |
SID: | 2839471 |
Source Port: | 60108 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.196.37.238306802839471 11/22/23-08:39:40.670301 |
SID: | 2839471 |
Source Port: | 38306 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.119.167.5059278802839471 11/22/23-08:40:07.877642 |
SID: | 2839471 |
Source Port: | 59278 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.97.191.10639970802839471 11/22/23-08:38:32.010469 |
SID: | 2839471 |
Source Port: | 39970 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.198.53.18245154802839471 11/22/23-08:39:32.247339 |
SID: | 2839471 |
Source Port: | 45154 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.125.199.20242160802839471 11/22/23-08:38:10.333974 |
SID: | 2839471 |
Source Port: | 42160 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.216.68.17058162802839471 11/22/23-08:40:29.215320 |
SID: | 2839471 |
Source Port: | 58162 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.76.18734388802839471 11/22/23-08:39:53.400482 |
SID: | 2839471 |
Source Port: | 34388 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.126.229.9037356802839471 11/22/23-08:39:34.453903 |
SID: | 2839471 |
Source Port: | 37356 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.110.227.4346682802839471 11/22/23-08:38:29.066688 |
SID: | 2839471 |
Source Port: | 46682 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.208.58.3141780802839471 11/22/23-08:38:50.108650 |
SID: | 2839471 |
Source Port: | 41780 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.221.7.1053942802839471 11/22/23-08:39:18.286832 |
SID: | 2839471 |
Source Port: | 53942 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.56.56.16749042802839471 11/22/23-08:39:26.105853 |
SID: | 2839471 |
Source Port: | 49042 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.115.5548548802839471 11/22/23-08:40:18.305356 |
SID: | 2839471 |
Source Port: | 48548 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.86.95.19050952802839471 11/22/23-08:38:08.091818 |
SID: | 2839471 |
Source Port: | 50952 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.18.85.23353210802839471 11/22/23-08:38:36.400999 |
SID: | 2839471 |
Source Port: | 53210 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.25.240.23157874802839471 11/22/23-08:39:28.580327 |
SID: | 2839471 |
Source Port: | 57874 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.171.3.20039828802839471 11/22/23-08:39:06.124760 |
SID: | 2839471 |
Source Port: | 39828 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.45.115.19843960802839471 11/22/23-08:39:52.927833 |
SID: | 2839471 |
Source Port: | 43960 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.173.137.6053720802839471 11/22/23-08:38:41.301069 |
SID: | 2839471 |
Source Port: | 53720 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.149.17132888802839471 11/22/23-08:39:36.390213 |
SID: | 2839471 |
Source Port: | 32888 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.156.226.10340908802839471 11/22/23-08:39:36.212091 |
SID: | 2839471 |
Source Port: | 40908 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.17.17.20448884802839471 11/22/23-08:38:48.332444 |
SID: | 2839471 |
Source Port: | 48884 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.47.148.7454026802839471 11/22/23-08:38:57.518423 |
SID: | 2839471 |
Source Port: | 54026 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.142.205.15749426802839471 11/22/23-08:39:14.234544 |
SID: | 2839471 |
Source Port: | 49426 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.235.7250046802839471 11/22/23-08:40:03.324186 |
SID: | 2839471 |
Source Port: | 50046 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.126.70.13248428802839471 11/22/23-08:38:03.834481 |
SID: | 2839471 |
Source Port: | 48428 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.164.233.8945444802839471 11/22/23-08:39:17.592111 |
SID: | 2839471 |
Source Port: | 45444 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.57.249.13358742802839471 11/22/23-08:40:23.179152 |
SID: | 2839471 |
Source Port: | 58742 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.31.241.5160894802839471 11/22/23-08:38:23.465804 |
SID: | 2839471 |
Source Port: | 60894 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.217.6.19459942802839471 11/22/23-08:39:55.833853 |
SID: | 2839471 |
Source Port: | 59942 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.86.29.3059466802839471 11/22/23-08:40:05.418874 |
SID: | 2839471 |
Source Port: | 59466 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.162.240.10033538802839471 11/22/23-08:39:28.466800 |
SID: | 2839471 |
Source Port: | 33538 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.216.148.18752352802839471 11/22/23-08:38:44.359651 |
SID: | 2839471 |
Source Port: | 52352 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.74.189.22539690802839471 11/22/23-08:39:34.469518 |
SID: | 2839471 |
Source Port: | 39690 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.58.238.3954900802839471 11/22/23-08:39:36.465195 |
SID: | 2839471 |
Source Port: | 54900 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.198.54.2746676802839471 11/22/23-08:38:50.272825 |
SID: | 2839471 |
Source Port: | 46676 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.198.72.13338870802839471 11/22/23-08:39:06.549570 |
SID: | 2839471 |
Source Port: | 38870 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.221.141.2934184802839471 11/22/23-08:38:05.241418 |
SID: | 2839471 |
Source Port: | 34184 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.126.172.21735230802839471 11/22/23-08:40:29.723991 |
SID: | 2839471 |
Source Port: | 35230 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.221.44.21535414802839471 11/22/23-08:39:01.945287 |
SID: | 2839471 |
Source Port: | 35414 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.45.115.19843958802839471 11/22/23-08:39:52.927775 |
SID: | 2839471 |
Source Port: | 43958 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.80.20.14445986802839471 11/22/23-08:40:21.280928 |
SID: | 2839471 |
Source Port: | 45986 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.221.61.13038922802839471 11/22/23-08:38:14.165253 |
SID: | 2839471 |
Source Port: | 38922 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.198.129.21139502802839471 11/22/23-08:38:50.084374 |
SID: | 2839471 |
Source Port: | 39502 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.57.79.21751116802839471 11/22/23-08:39:14.262842 |
SID: | 2839471 |
Source Port: | 51116 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.25.126.11656294802839471 11/22/23-08:40:20.911832 |
SID: | 2839471 |
Source Port: | 56294 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.101.161.6436540802839471 11/22/23-08:40:20.955753 |
SID: | 2839471 |
Source Port: | 36540 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.126.156.19148536802839471 11/22/23-08:38:10.643464 |
SID: | 2839471 |
Source Port: | 48536 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.138.24236934802839471 11/22/23-08:40:21.003675 |
SID: | 2839471 |
Source Port: | 36934 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.78.125.1742682802839471 11/22/23-08:38:22.564689 |
SID: | 2839471 |
Source Port: | 42682 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.165.27.17758272802839471 11/22/23-08:40:05.133217 |
SID: | 2839471 |
Source Port: | 58272 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.172.15.2135558802839471 11/22/23-08:40:02.946295 |
SID: | 2839471 |
Source Port: | 35558 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.209.135.252298802839471 11/22/23-08:38:36.333995 |
SID: | 2839471 |
Source Port: | 52298 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.221.9.6437984802839471 11/22/23-08:39:01.951073 |
SID: | 2839471 |
Source Port: | 37984 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.125.132.24037700802839471 11/22/23-08:39:30.732658 |
SID: | 2839471 |
Source Port: | 37700 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.6.8.21143952802839471 11/22/23-08:40:08.475248 |
SID: | 2839471 |
Source Port: | 43952 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.181.224.4253710802839471 11/22/23-08:39:06.718301 |
SID: | 2839471 |
Source Port: | 53710 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.77.223.13949360802839471 11/22/23-08:40:26.564489 |
SID: | 2839471 |
Source Port: | 49360 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.124.185.7345512802839471 11/22/23-08:39:53.236718 |
SID: | 2839471 |
Source Port: | 45512 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.124.46.7934126802839471 11/22/23-08:39:56.350379 |
SID: | 2839471 |
Source Port: | 34126 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.125.91.845488802839471 11/22/23-08:39:06.130700 |
SID: | 2839471 |
Source Port: | 45488 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.14.180.25037926802839471 11/22/23-08:39:20.918586 |
SID: | 2839471 |
Source Port: | 37926 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.126.199.19240160802839471 11/22/23-08:39:44.391502 |
SID: | 2839471 |
Source Port: | 40160 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.7.112.14935792802839471 11/22/23-08:38:32.062555 |
SID: | 2839471 |
Source Port: | 35792 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.118.31.18942984802839471 11/22/23-08:39:08.415672 |
SID: | 2839471 |
Source Port: | 42984 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.50.148.5339280802839471 11/22/23-08:39:40.525265 |
SID: | 2839471 |
Source Port: | 39280 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.105.89.1357792802839471 11/22/23-08:39:45.779984 |
SID: | 2839471 |
Source Port: | 57792 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.176.198.24855854802839471 11/22/23-08:39:55.846955 |
SID: | 2839471 |
Source Port: | 55854 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.51.208.5457740802839471 11/22/23-08:39:26.502675 |
SID: | 2839471 |
Source Port: | 57740 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.215.58.12154614802839471 11/22/23-08:38:07.848633 |
SID: | 2839471 |
Source Port: | 54614 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.126.156.9435232802839471 11/22/23-08:40:20.837356 |
SID: | 2839471 |
Source Port: | 35232 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.61.16146042802839471 11/22/23-08:39:40.481027 |
SID: | 2839471 |
Source Port: | 46042 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.191.130.21145906802839471 11/22/23-08:38:08.107755 |
SID: | 2839471 |
Source Port: | 45906 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.101.255.5238352802839471 11/22/23-08:38:43.389106 |
SID: | 2839471 |
Source Port: | 38352 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.131.251.5353186802839471 11/22/23-08:38:34.793223 |
SID: | 2839471 |
Source Port: | 53186 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.215.243.21955926802839471 11/22/23-08:39:23.184253 |
SID: | 2839471 |
Source Port: | 55926 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.25.47.22340070802839471 11/22/23-08:39:45.073802 |
SID: | 2839471 |
Source Port: | 40070 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.87.31.11444612802839471 11/22/23-08:38:07.673593 |
SID: | 2839471 |
Source Port: | 44612 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.177.119.19254310802839471 11/22/23-08:38:34.807051 |
SID: | 2839471 |
Source Port: | 54310 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.124.237.16938992802839471 11/22/23-08:39:03.485148 |
SID: | 2839471 |
Source Port: | 38992 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.101.81.13041608802839471 11/22/23-08:38:29.292859 |
SID: | 2839471 |
Source Port: | 41608 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.182.122.13434444802839471 11/22/23-08:39:51.244063 |
SID: | 2839471 |
Source Port: | 34444 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.213.91.11457344802839471 11/22/23-08:39:06.168378 |
SID: | 2839471 |
Source Port: | 57344 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.31.214.8236018802839471 11/22/23-08:39:40.493546 |
SID: | 2839471 |
Source Port: | 36018 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.101.209.23459448802839471 11/22/23-08:40:20.996459 |
SID: | 2839471 |
Source Port: | 59448 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.98.192.445672802839471 11/22/23-08:40:20.876140 |
SID: | 2839471 |
Source Port: | 45672 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.212.32.5239446802839471 11/22/23-08:39:47.551330 |
SID: | 2839471 |
Source Port: | 39446 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.29.185.759280802839471 11/22/23-08:40:29.819457 |
SID: | 2839471 |
Source Port: | 59280 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.208.46.23452008802839471 11/22/23-08:39:20.938620 |
SID: | 2839471 |
Source Port: | 52008 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.125.237.14449612802839471 11/22/23-08:38:48.249022 |
SID: | 2839471 |
Source Port: | 49612 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.255.234.3840878802839471 11/22/23-08:39:26.498117 |
SID: | 2839471 |
Source Port: | 40878 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.111.199.19153184802839471 11/22/23-08:39:45.882434 |
SID: | 2839471 |
Source Port: | 53184 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.86.102.12746584802839471 11/22/23-08:38:19.421371 |
SID: | 2839471 |
Source Port: | 46584 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.86.126.20643512802839471 11/22/23-08:38:36.223145 |
SID: | 2839471 |
Source Port: | 43512 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.98.192.445666802839471 11/22/23-08:40:20.875882 |
SID: | 2839471 |
Source Port: | 45666 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.181.228.3949342802839471 11/22/23-08:38:08.644725 |
SID: | 2839471 |
Source Port: | 49342 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.100.138.24237030802839471 11/22/23-08:40:22.710101 |
SID: | 2839471 |
Source Port: | 37030 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.198.163.16448674802839471 11/22/23-08:39:28.655736 |
SID: | 2839471 |
Source Port: | 48674 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.74.169.6647164802839471 11/22/23-08:38:48.292239 |
SID: | 2839471 |
Source Port: | 47164 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.164.8.3945004802839471 11/22/23-08:39:23.136496 |
SID: | 2839471 |
Source Port: | 45004 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1388.208.239.741500802839471 11/22/23-08:39:30.245134 |
SID: | 2839471 |
Source Port: | 41500 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.211.212.647852802839471 11/22/23-08:39:40.329729 |
SID: | 2839471 |
Source Port: | 47852 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.46.150.25337378802839471 11/22/23-08:39:17.978372 |
SID: | 2839471 |
Source Port: | 37378 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.13112.26.9.445864802839471 11/22/23-08:38:22.976358 |
SID: | 2839471 |
Source Port: | 45864 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
Timestamp: | 192.168.2.1395.83.144.15435276802839471 11/22/23-08:38:57.070317 |
SID: | 2839471 |
Source Port: | 35276 |
Destination Port: | 80 |
Protocol: | TCP |
Classtype: | Web Application Attack |
- • AV Detection
- • Networking
- • System Summary
- • Persistence and Installation Behavior
- • Hooking and other Techniques for Hiding and Protection
- • Malware Analysis System Evasion
- • Stealing of Sensitive Information
- • Remote Access Functionality
Click to jump to signature section
Show All Signature Results
AV Detection |
---|
Source: | Avira: |
Source: | ReversingLabs: | |||
Source: | Virustotal: | Perma Link |
Networking |
---|
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: |
Source: | TCP traffic: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: |
Source: | Socket: | Jump to behavior |
Source: | HTTP traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: | ||
Source: | HTTP traffic detected: |