blob: e315962981c262ebe96d5dde3f646f7503741f14 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
|
DNS 10 1059 5
HTTP 19 2275 5
TLS 15 1234 10
Google 33 4778 7
Amazon 2 132 1
Sina(Weibo) 419 258077 16
JA3 Host Stats:
IP Address # JA3C
1 192.168.1.105 1
1 TCP 192.168.1.105:35803 <-> 93.188.134.246:80 [proto: 7.200/HTTP.Sina(Weibo)][cat: SocialNetwork/6][52 pkts/5367 bytes <-> 54 pkts/71536 bytes][Host: img.t.sinajs.cn][pktlen c2s avg(stddev)/entropy: 4.4(103.2)/116.5][pktlen s2c avg(stddev)/entropy: 4.8(1324.7)/822.8][bytes ratio: -0.86][PLAIN TEXT (GET /t6/style/css/module/base/f)]
2 TCP 192.168.1.105:35804 <-> 93.188.134.246:80 [proto: 7.200/HTTP.Sina(Weibo)][cat: SocialNetwork/6][32 pkts/3624 bytes <-> 40 pkts/50657 bytes][Host: img.t.sinajs.cn][pktlen c2s avg(stddev)/entropy: 4.4(113.2)/132.2][pktlen s2c avg(stddev)/entropy: 4.8(1266.4)/620.2][bytes ratio: -0.87][PLAIN TEXT (GET /t6/style/css/module/combin)]
3 TCP 192.168.1.105:51698 <-> 93.188.134.137:80 [proto: 7.200/HTTP.Sina(Weibo)][cat: SocialNetwork/6][40 pkts/3462 bytes <-> 39 pkts/34030 bytes][Host: www.weibo.com][pktlen c2s avg(stddev)/entropy: 5.0(86.6)/69.2][pktlen s2c avg(stddev)/entropy: 4.2(872.6)/915.2][bytes ratio: -0.82][PLAIN TEXT (GET /login.php)]
4 TCP 192.168.1.105:35807 <-> 93.188.134.246:80 [proto: 7.200/HTTP.Sina(Weibo)][cat: SocialNetwork/6][27 pkts/2298 bytes <-> 26 pkts/34170 bytes][Host: img.t.sinajs.cn][pktlen c2s avg(stddev)/entropy: 4.4(85.1)/91.2][pktlen s2c avg(stddev)/entropy: 4.6(1314.2)/448.1][bytes ratio: -0.87][PLAIN TEXT (GET /t6/style/images/growth/log)]
5 TCP 192.168.1.105:35805 <-> 93.188.134.246:80 [proto: 7.200/HTTP.Sina(Weibo)][cat: SocialNetwork/6][21 pkts/2323 bytes <-> 20 pkts/20922 bytes][Host: img.t.sinajs.cn][pktlen c2s avg(stddev)/entropy: 3.8(110.6)/126.8][pktlen s2c avg(stddev)/entropy: 4.0(1046.1)/556.9][bytes ratio: -0.80][PLAIN TEXT (GET /t6/skin/default/skin.css)]
6 TCP 192.168.1.105:35809 <-> 93.188.134.246:80 [proto: 7.200/HTTP.Sina(Weibo)][cat: SocialNetwork/6][18 pkts/1681 bytes <-> 17 pkts/20680 bytes][Host: img.t.sinajs.cn][pktlen c2s avg(stddev)/entropy: 3.7(93.4)/108.1][pktlen s2c avg(stddev)/entropy: 3.9(1216.5)/525.5][bytes ratio: -0.85][PLAIN TEXT (GET /t6/style/images/common/fon)]
7 TCP 192.168.1.105:35806 <-> 93.188.134.246:80 [proto: 7.200/HTTP.Sina(Weibo)][cat: SocialNetwork/6][7 pkts/946 bytes <-> 6 pkts/3755 bytes][Host: img.t.sinajs.cn][pktlen c2s avg(stddev)/entropy: 2.1(135.1)/161.3][pktlen s2c avg(stddev)/entropy: 2.1(625.8)/505.1][bytes ratio: -0.60][PLAIN TEXT (GET /t6/style/images/global)]
8 UDP 192.168.1.105:53656 <-> 216.58.210.227:443 [proto: 188.126/QUIC.Google][cat: Web/5][8 pkts/1301 bytes <-> 6 pkts/873 bytes][pktlen c2s avg(stddev)/entropy: 2.6(162.6)/122.4][pktlen s2c avg(stddev)/entropy: 2.2(145.5)/129.3][bytes ratio: 0.20]
9 UDP 216.58.210.14:443 <-> 192.168.1.105:49361 [proto: 188.126/QUIC.Google][cat: Web/5][5 pkts/963 bytes <-> 4 pkts/981 bytes][pktlen c2s avg(stddev)/entropy: 2.2(192.6)/93.4][pktlen s2c avg(stddev)/entropy: 1.4(245.2)/241.0][bytes ratio: -0.01]
10 TCP 192.168.1.105:59119 <-> 114.134.80.162:80 [proto: 7/HTTP][cat: Web/5][5 pkts/736 bytes <-> 4 pkts/863 bytes][Host: weibo.com][pktlen c2s avg(stddev)/entropy: 1.5(147.2)/176.6][pktlen s2c avg(stddev)/entropy: 1.0(215.8)/273.3][bytes ratio: -0.08][PLAIN TEXT (GET /login.php)]
11 TCP 192.168.1.105:35811 <-> 93.188.134.246:80 [proto: 7.200/HTTP.Sina(Weibo)][cat: SocialNetwork/6][3 pkts/604 bytes <-> 2 pkts/140 bytes][Host: js.t.sinajs.cn][pktlen c2s avg(stddev)/entropy: 1.0(201.3)/185.8][pktlen s2c avg(stddev)/entropy: 1.0(70.0)/4.0][bytes ratio: 0.62][PLAIN TEXT (KGET /t)]
12 TCP 192.168.1.105:42275 <-> 222.73.28.96:80 [proto: 7.200/HTTP.Sina(Weibo)][cat: SocialNetwork/6][3 pkts/610 bytes <-> 1 pkts/66 bytes][Host: u1.img.mobile.sina.cn][pktlen c2s avg(stddev)/entropy: 0.9(203.3)/197.2][pktlen s2c avg(stddev)/entropy: 0.0(66.0)/0.0][bytes ratio: 0.80][PLAIN TEXT (GET /public/files/image/620)]
13 TCP 192.168.1.105:50827 <-> 47.89.65.229:443 [proto: 91/TLS][cat: Web/5][3 pkts/382 bytes <-> 1 pkts/66 bytes][pktlen c2s avg(stddev)/entropy: 1.2(127.3)/89.9][pktlen s2c avg(stddev)/entropy: 0.0(66.0)/0.0][bytes ratio: 0.71][TLSv1][client: g.alicdn.com][JA3C: 58e7f64db6e4fe4941dd9691d421196c][PLAIN TEXT (g.alicdn.com)]
14 UDP 192.168.1.105:53543 <-> 192.168.1.1:53 [proto: 5.200/DNS.Sina(Weibo)][cat: SocialNetwork/6][1 pkts/75 bytes <-> 1 pkts/191 bytes][Host: img.t.sinajs.cn][pktlen c2s avg(stddev)/entropy: 0.0(75.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(191.0)/0.0][bytes ratio: -0.44]
15 UDP 192.168.1.105:41352 <-> 192.168.1.1:53 [proto: 5.200/DNS.Sina(Weibo)][cat: SocialNetwork/6][1 pkts/74 bytes <-> 1 pkts/190 bytes][Host: js.t.sinajs.cn][pktlen c2s avg(stddev)/entropy: 0.0(74.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(190.0)/0.0][bytes ratio: -0.44]
16 UDP 192.168.1.105:51440 <-> 192.168.1.1:53 [proto: 5/DNS][cat: Network/14][1 pkts/72 bytes <-> 1 pkts/171 bytes][Host: g.alicdn.com][pktlen c2s avg(stddev)/entropy: 0.0(72.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(171.0)/0.0][bytes ratio: -0.41][PLAIN TEXT (alicdn)]
17 UDP 192.168.1.105:33822 <-> 192.168.1.1:53 [proto: 5/DNS][cat: Network/14][1 pkts/76 bytes <-> 1 pkts/166 bytes][Host: login.taobao.com][pktlen c2s avg(stddev)/entropy: 0.0(76.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(166.0)/0.0][bytes ratio: -0.37][PLAIN TEXT (taobao)]
18 UDP 192.168.1.105:18035 <-> 192.168.1.1:53 [proto: 5.200/DNS.Sina(Weibo)][cat: SocialNetwork/6][1 pkts/81 bytes <-> 1 pkts/159 bytes][Host: u1.img.mobile.sina.cn][pktlen c2s avg(stddev)/entropy: 0.0(81.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(159.0)/0.0][bytes ratio: -0.32][PLAIN TEXT (mobile)]
19 UDP 192.168.1.105:50640 <-> 192.168.1.1:53 [proto: 5/DNS][cat: Network/14][1 pkts/77 bytes <-> 1 pkts/157 bytes][Host: acjstb.aliyun.com][pktlen c2s avg(stddev)/entropy: 0.0(77.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(157.0)/0.0][bytes ratio: -0.34][PLAIN TEXT (alibabadns)]
20 UDP 192.168.1.105:7148 <-> 192.168.1.1:53 [proto: 5.200/DNS.Sina(Weibo)][cat: SocialNetwork/6][1 pkts/73 bytes <-> 1 pkts/142 bytes][Host: www.weibo.com][pktlen c2s avg(stddev)/entropy: 0.0(73.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(142.0)/0.0][bytes ratio: -0.32]
21 TCP 192.168.1.105:35808 <-> 93.188.134.246:80 [proto: 7/HTTP][cat: Web/5][2 pkts/140 bytes <-> 1 pkts/74 bytes][pktlen c2s avg(stddev)/entropy: 1.0(70.0)/4.0][pktlen s2c avg(stddev)/entropy: 0.0(74.0)/0.0][bytes ratio: 0.31]
22 TCP 192.168.1.105:50831 <-> 47.89.65.229:443 [proto: 91/TLS][cat: Web/5][2 pkts/128 bytes <-> 1 pkts/66 bytes][pktlen c2s avg(stddev)/entropy: 1.0(64.0)/10.0][pktlen s2c avg(stddev)/entropy: 0.0(66.0)/0.0][bytes ratio: 0.32]
23 TCP 192.168.1.105:59120 <-> 114.134.80.162:80 [proto: 7/HTTP][cat: Web/5][2 pkts/128 bytes <-> 1 pkts/66 bytes][pktlen c2s avg(stddev)/entropy: 1.0(64.0)/10.0][pktlen s2c avg(stddev)/entropy: 0.0(66.0)/0.0][bytes ratio: 0.32]
24 TCP 192.168.1.105:59121 <-> 114.134.80.162:80 [proto: 7/HTTP][cat: Web/5][2 pkts/128 bytes <-> 1 pkts/66 bytes][pktlen c2s avg(stddev)/entropy: 1.0(64.0)/10.0][pktlen s2c avg(stddev)/entropy: 0.0(66.0)/0.0][bytes ratio: 0.32]
25 UDP 192.168.1.105:53466 <-> 192.168.1.1:53 [proto: 5/DNS][cat: Network/14][1 pkts/74 bytes <-> 1 pkts/112 bytes][Host: log.mmstat.com][pktlen c2s avg(stddev)/entropy: 0.0(74.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(112.0)/0.0][bytes ratio: -0.20][PLAIN TEXT (mmstat)]
26 UDP 192.168.1.105:54988 <-> 192.168.1.1:53 [proto: 5/DNS][cat: Network/14][1 pkts/69 bytes <-> 1 pkts/85 bytes][Host: weibo.com][pktlen c2s avg(stddev)/entropy: 0.0(69.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(85.0)/0.0][bytes ratio: -0.10]
27 TCP 192.168.1.105:34699 <-> 216.58.212.65:443 [proto: 91.126/TLS.Google][cat: Web/5][1 pkts/66 bytes <-> 1 pkts/66 bytes][pktlen c2s avg(stddev)/entropy: 0.0(66.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(66.0)/0.0][bytes ratio: 0.00]
28 TCP 192.168.1.105:35154 <-> 216.58.210.206:443 [proto: 91.126/TLS.Google][cat: Web/5][1 pkts/66 bytes <-> 1 pkts/66 bytes][pktlen c2s avg(stddev)/entropy: 0.0(66.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(66.0)/0.0][bytes ratio: 0.00]
29 TCP 192.168.1.105:37802 <-> 216.58.212.69:443 [proto: 91.126/TLS.Google][cat: Web/5][1 pkts/66 bytes <-> 1 pkts/66 bytes][pktlen c2s avg(stddev)/entropy: 0.0(66.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(66.0)/0.0][bytes ratio: 0.00]
30 TCP 192.168.1.105:40440 <-> 54.225.163.210:443 [proto: 91.178/TLS.Amazon][cat: Web/5][1 pkts/66 bytes <-> 1 pkts/66 bytes][pktlen c2s avg(stddev)/entropy: 0.0(66.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(66.0)/0.0][bytes ratio: 0.00]
31 TCP 192.168.1.105:58480 <-> 216.58.214.78:443 [proto: 91.126/TLS.Google][cat: Web/5][1 pkts/66 bytes <-> 1 pkts/66 bytes][pktlen c2s avg(stddev)/entropy: 0.0(66.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(66.0)/0.0][bytes ratio: 0.00]
32 TCP 192.168.1.105:58481 <-> 216.58.214.78:443 [proto: 91.126/TLS.Google][cat: Web/5][1 pkts/66 bytes <-> 1 pkts/66 bytes][pktlen c2s avg(stddev)/entropy: 0.0(66.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(66.0)/0.0][bytes ratio: 0.00]
33 UDP 192.168.1.105:11798 -> 192.168.1.1:53 [proto: 5.200/DNS.Sina(Weibo)][cat: SocialNetwork/6][1 pkts/77 bytes -> 0 pkts/0 bytes][Host: account.weibo.com][pktlen c2s avg(stddev)/entropy: 0.0(77.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(nan)/0.0][bytes ratio: 1.00][PLAIN TEXT (account)]
34 TCP 192.168.1.105:42280 -> 222.73.28.96:80 [proto: 7/HTTP][cat: Web/5][1 pkts/74 bytes -> 0 pkts/0 bytes][pktlen c2s avg(stddev)/entropy: 0.0(74.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(nan)/0.0][bytes ratio: 1.00]
35 TCP 192.168.1.105:47721 -> 140.205.170.63:443 [proto: 91/TLS][cat: Web/5][1 pkts/74 bytes -> 0 pkts/0 bytes][pktlen c2s avg(stddev)/entropy: 0.0(74.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(nan)/0.0][bytes ratio: 1.00]
36 TCP 192.168.1.105:47723 -> 140.205.170.63:443 [proto: 91/TLS][cat: Web/5][1 pkts/74 bytes -> 0 pkts/0 bytes][pktlen c2s avg(stddev)/entropy: 0.0(74.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(nan)/0.0][bytes ratio: 1.00]
37 TCP 192.168.1.105:48352 -> 140.205.174.1:443 [proto: 91/TLS][cat: Web/5][1 pkts/74 bytes -> 0 pkts/0 bytes][pktlen c2s avg(stddev)/entropy: 0.0(74.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(nan)/0.0][bytes ratio: 1.00]
38 TCP 192.168.1.105:48353 -> 140.205.174.1:443 [proto: 91/TLS][cat: Web/5][1 pkts/74 bytes -> 0 pkts/0 bytes][pktlen c2s avg(stddev)/entropy: 0.0(74.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(nan)/0.0][bytes ratio: 1.00]
39 TCP 192.168.1.105:48356 -> 140.205.174.1:443 [proto: 91/TLS][cat: Web/5][1 pkts/74 bytes -> 0 pkts/0 bytes][pktlen c2s avg(stddev)/entropy: 0.0(74.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(nan)/0.0][bytes ratio: 1.00]
40 TCP 192.168.1.105:52271 -> 42.156.184.19:443 [proto: 91/TLS][cat: Web/5][1 pkts/74 bytes -> 0 pkts/0 bytes][pktlen c2s avg(stddev)/entropy: 0.0(74.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(nan)/0.0][bytes ratio: 1.00]
41 TCP 192.168.1.105:52272 -> 42.156.184.19:443 [proto: 91/TLS][cat: Web/5][1 pkts/74 bytes -> 0 pkts/0 bytes][pktlen c2s avg(stddev)/entropy: 0.0(74.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(nan)/0.0][bytes ratio: 1.00]
42 TCP 192.168.1.105:52274 -> 42.156.184.19:443 [proto: 91/TLS][cat: Web/5][1 pkts/74 bytes -> 0 pkts/0 bytes][pktlen c2s avg(stddev)/entropy: 0.0(74.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(nan)/0.0][bytes ratio: 1.00]
43 UDP 192.168.1.105:50533 -> 192.168.1.1:53 [proto: 5.200/DNS.Sina(Weibo)][cat: SocialNetwork/6][1 pkts/74 bytes -> 0 pkts/0 bytes][Host: data.weibo.com][pktlen c2s avg(stddev)/entropy: 0.0(74.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(nan)/0.0][bytes ratio: 1.00]
44 UDP 192.168.1.105:16804 -> 192.168.1.1:53 [proto: 5.200/DNS.Sina(Weibo)][cat: SocialNetwork/6][1 pkts/70 bytes -> 0 pkts/0 bytes][Host: c.weibo.cn][pktlen c2s avg(stddev)/entropy: 0.0(70.0)/0.0][pktlen s2c avg(stddev)/entropy: 0.0(nan)/0.0][bytes ratio: 1.00]
|