|
|
# |
LOG PREFIX |
SRC HOST |
PORT |
DST HOST |
PORT |
IN |
OUT |
PROTO |
FLAGS |
LENGHT |
FRAG |
SRC MAC |
DST MAC |
ICMP TYPE |
ICMP CODE |
HOUR |
HITS |
1 |
UDP DNS: |
161.148.1.8 |
1032 |
172.16.10.5 |
53 |
eth0 |
- |
UDP |
- |
39 |
- |
00:0c:f1:80:7a:65 |
00:b0:4a:00:08:00 |
- |
- |
00:00:46 |
1 |
2 |
TCP Trojan Port: |
200.187.173.250 |
2583 |
192.168.65.11 |
110 |
eth0 |
- |
TCP |
SYN,URGP=0 |
48 |
DF |
00:0c:f1:80:7a:65 |
00:b0:4a:00:08:00 |
- |
- |
00:00:58 |
1 |
3 |
TCP Trojan Port: |
221.162.140.117 |
3024 |
192.168.65.12 |
25 |
eth0 |
- |
TCP |
SYN,URGP=0 |
48 |
DF |
00:0c:f1:80:7a:65 |
00:b0:4a:00:08:00 |
- |
- |
00:07:48 |
1 |
4 |
TCP Trojan Port: |
200.187.173.250 |
2583 |
192.168.65.12 |
110 |
eth0 |
- |
TCP |
SYN,URGP=0 |
48 |
DF |
00:0c:f1:80:7a:65 |
00:b0:4a:00:08:00 |
- |
- |
00:19:08 |
1 |
5 |
Police Default Reached: |
82.67.237.29 |
3068 |
172.16.10.24 |
25 |
eth0 |
- |
TCP |
SYN,URGP=0 |
48 |
DF |
00:0c:f1:80:7a:65 |
00:b0:4a:00:08:00 |
- |
- |
00:22:34 |
1 |
6 |
TCP Trojan Port: |
221.126.238.122 |
3024 |
172.16.11.132 |
9898 |
eth0 |
- |
TCP |
SYN,URGP=0 |
48 |
DF |
00:0c:f1:80:7a:65 |
00:b0:4a:00:08:00 |
- |
- |
00:29:03 |
1 |
7 |
UDP DNS: |
161.148.1.8 |
1032 |
172.16.10.5 |
53 |
eth0 |
- |
UDP |
- |
40 |
- |
00:0c:f1:80:7a:65 |
00:b0:4a:00:08:00 |
- |
- |
00:37:39 |
1 |
8 |
TCP Trojan Port: |
200.187.173.250 |
4092 |
192.168.65.12 |
110 |
eth0 |
- |
TCP |
SYN,URGP=0 |
48 |
DF |
00:0c:f1:80:7a:65 |
00:b0:4a:00:08:00 |
- |
- |
00:38:00 |
1 |
9 |
Invalid DMZ: |
10.20.1.79 |
25 |
172.16.11.198 |
4950 |
eth0 |
- |
TCP |
ACK,PSH,URGP=0 |
151 |
DF |
00:0c:f1:80:7a:65 |
00:b0:4a:00:08:00 |
- |
- |
00:38:25 |
1 |
10 |
Invalid DMZ: |
10.20.1.79 |
25 |
172.16.11.198 |
4950 |
eth0 |
- |
TCP |
ACK,FIN,URGP=0 |
40 |
DF |
00:0c:f1:80:7a:65 |
00:b0:4a:00:08:00 |
- |
- |
00:38:25 |
1 |
11 |
Invalid DMZ: |
10.20.1.79 |
25 |
172.16.11.198 |
4950 |
eth0 |
- |
TCP |
ACK,PSH,FIN,URGP=0 |
151 |
DF |
00:0c:f1:80:7a:65 |
00:b0:4a:00:08:00 |
- |
- |
00:38:25 |
1 |
12 |
Invalid DMZ: |
10.20.1.79 |
25 |
172.16.11.198 |
4950 |
eth0 |
- |
TCP |
ACK,PSH,FIN,URGP=0 |
151 |
DF |
00:0c:f1:80:7a:65 |
00:b0:4a:00:08:00 |
- |
- |
00:38:25 |
1 |
13 |
Invalid DMZ: |
10.20.1.79 |
25 |
172.16.11.198 |
4950 |
eth0 |
- |
TCP |
ACK,PSH,FIN,URGP=0 |
151 |
DF |
00:0c:f1:80:7a:65 |
00:b0:4a:00:08:00 |
- |
- |
00:38:26 |
1 |
14 |
UDP DNS: |
161.148.1.8 |
1032 |
172.16.10.5 |
53 |
eth0 |
- |
UDP |
- |
39 |
- |
00:0c:f1:80:7a:65 |
00:b0:4a:00:08:00 |
- |
- |
00:39:06 |
1 |
15 |
Police Default Reached: |
64.212.140.5 |
2527 |
192.168.65.12 |
10026 |
eth0 |
- |
TCP |
SYN,URGP=0 |
48 |
DF |
00:0c:f1:80:7a:65 |
00:b0:4a:00:08:00 |
- |
- |
00:40:34 |
1 |
|
| |
|
Page 0 |
|
|
|
