aboutsummaryrefslogtreecommitdiff
path: root/test/results/flow-info/default/fuzz-2006-06-26-2594.pcap.out
diff options
context:
space:
mode:
Diffstat (limited to 'test/results/flow-info/default/fuzz-2006-06-26-2594.pcap.out')
-rw-r--r--test/results/flow-info/default/fuzz-2006-06-26-2594.pcap.out902
1 files changed, 451 insertions, 451 deletions
diff --git a/test/results/flow-info/default/fuzz-2006-06-26-2594.pcap.out b/test/results/flow-info/default/fuzz-2006-06-26-2594.pcap.out
index 42d53ae26..11d285897 100644
--- a/test/results/flow-info/default/fuzz-2006-06-26-2594.pcap.out
+++ b/test/results/flow-info/default/fuzz-2006-06-26-2594.pcap.out
@@ -1,33 +1,33 @@
DAEMON-EVENT: init
DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0]
- new: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137]
+ new: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137]
detected: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
- new: [.....2] [ip4][..udp] [....217.168.1.2][..137] -> [..192.168.1.255][..137]
- new: [.....3] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][...53]
+ new: [.....2] [ip4][..udp] [....217.168.1.2][..137] -> [..192.168.1.255][..137]
+ new: [.....3] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][...53]
detected: [.....3] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
- new: [.....4] [ip4][..udp] [....192.168.1.2][.2712] -> [...192.37.115.0][...53]
+ new: [.....4] [ip4][..udp] [....192.168.1.2][.2712] -> [...192.37.115.0][...53]
detected: [.....4] [ip4][..udp] [....192.168.1.2][.2712] -> [...192.37.115.0][...53] [DNS][Unknown][Network][Acceptable][sip.cybercrty.dk]
- new: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973]
- new: [.....6] [ip4][..udp] [....192.168.1.3][...53] -> [....192.168.1.2][.2712]
+ new: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973]
+ new: [.....6] [ip4][..udp] [....192.168.1.3][...53] -> [....192.168.1.2][.2712]
detected: [.....6] [ip4][..udp] [....192.168.1.3][...53] -> [....192.168.1.2][.2712] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
- new: [.....7] [ip4][..udp] [....192.168.1.2][.2713] -> [....192.168.1.1][...53]
+ new: [.....7] [ip4][..udp] [....192.168.1.2][.2713] -> [....192.168.1.1][...53]
detected: [.....7] [ip4][..udp] [....192.168.1.2][.2713] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- new: [.....8] [ip4][..udp] [..192.168.1.110][.2713] -> [....192.168.1.1][...53]
+ new: [.....8] [ip4][..udp] [..192.168.1.110][.2713] -> [....192.168.1.1][...53]
detected: [.....8] [ip4][..udp] [..192.168.1.110][.2713] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
ERROR-EVENT: Unknown packet type [1/16]
- new: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440]
+ new: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440]
detection-update: [.....7] [ip4][..udp] [....192.168.1.2][.2713] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
- new: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53]
+ new: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53]
detected: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
detection-update: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [....11] [ip4][..udp] [...192.168.1.52][.5060] -> [..212.242.33.35][.5060]
+ new: [....11] [ip4][..udp] [...192.168.1.52][.5060] -> [..212.242.33.35][.5060]
detected: [....11] [ip4][..udp] [...192.168.1.52][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
- new: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060]
+ new: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060]
detected: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
- new: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53]
+ new: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53]
detected: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
@@ -35,20 +35,20 @@
detection-update: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyber?ity.dk]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
- new: [....14] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53]
+ new: [....14] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53]
detected: [....14] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [....15] [ip4][..udp] [....192.168.1.1][.9587] -> [....192.168.1.2][..156]
+ new: [....15] [ip4][..udp] [....192.168.1.1][.9587] -> [....192.168.1.2][..156]
ERROR-EVENT: Unknown packet type [3/16]
- new: [....16] [ip4][..udp] [..208.242.33.35][.5060] -> [....192.168.1.2][.5060]
+ new: [....16] [ip4][..udp] [..208.242.33.35][.5060] -> [....192.168.1.2][.5060]
detected: [....16] [ip4][..udp] [..208.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
- new: [....17] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.251][..138]
+ new: [....17] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.251][..138]
detected: [....17] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.251][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][]
RISK: Unsafe Protocol
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
- update: [.....2] [ip4][..udp] [....217.168.1.2][..137] -> [..192.168.1.255][..137]
- new: [....18] [ip4][..tcp] [....192.168.1.2][.2717] -> [..147.137.21.94][..445]
- new: [....19] [ip4][..tcp] [....192.168.1.2][.2718] -> [..147.137.21.94][..139]
- new: [....20] [ip4][..tcp] [...192.168.1.71][.2718] -> [.147.137.21.122][..139]
+ update: [.....2] [ip4][..udp] [....217.168.1.2][..137] -> [..192.168.1.255][..137]
+ new: [....18] [ip4][..tcp] [....192.168.1.2][.2717] -> [..147.137.21.94][..445]
+ new: [....19] [ip4][..tcp] [....192.168.1.2][.2718] -> [..147.137.21.94][..139]
+ new: [....20] [ip4][..tcp] [...192.168.1.71][.2718] -> [.147.137.21.122][..139]
update: [.....4] [ip4][..udp] [....192.168.1.2][.2712] -> [...192.37.115.0][...53] [DNS][Unknown][Network][Acceptable]
update: [....11] [ip4][..udp] [...192.168.1.52][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
@@ -61,49 +61,49 @@
update: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- update: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440]
- update: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973]
- new: [....21] [ip4][..udp] [....192.114.1.2][.2719] -> [....192.168.1.1][...53]
+ update: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440]
+ update: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973]
+ new: [....21] [ip4][..udp] [....192.114.1.2][.2719] -> [....192.168.1.1][...53]
detected: [....21] [ip4][..udp] [....192.114.1.2][.2719] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][ftp.ecite?e.com]
RISK: Non-Printable/Invalid Chars Detected
- new: [....22] [ip4][..udp] [....192.168.1.2][.2719] -> [....192.168.1.1][...53]
+ new: [....22] [ip4][..udp] [....192.168.1.2][.2719] -> [....192.168.1.1][...53]
detected: [....22] [ip4][..udp] [....192.168.1.2][.2719] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][ftp.ecitele.com]
detection-update: [....22] [ip4][..udp] [....192.168.1.2][.2719] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
- new: [....23] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.234.1.253][...21]
+ new: [....23] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.234.1.253][...21]
ERROR-EVENT: Unknown L3 protocol [1/16]
- new: [....24] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.169.1.2][.2720] [MIDSTREAM]
- new: [....25] [ip4][..tcp] [....192.168.1.2][.2679] -> [..147.234.1.253][...21] [MIDSTREAM]
+ new: [....24] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.169.1.2][.2720] [MIDSTREAM]
+ new: [....25] [ip4][..tcp] [....192.168.1.2][.2679] -> [..147.234.1.253][...21] [MIDSTREAM]
ERROR-EVENT: Unknown L3 protocol [2/16]
- new: [....26] [ip4][..tcp] [..147.234.1.253][...21] -> [......192.2.1.2][.2720] [MIDSTREAM]
- new: [....27] [ip4][..tcp] [..147.234.1.253][...21] -> [...192.168.1.66][.2720] [MIDSTREAM]
- new: [....28] [ip4][..tcp] [..147.234.1.253][..120] -> [....192.168.1.2][.2720] [MIDSTREAM]
- new: [....29] [ip4][..tcp] [..147.234.1.170][43690] -> [170.170.170.170][43690]
- new: [....30] [ip4][..tcp] [..147.234.1.249][.2069] -> [....192.168.1.2][.2720] [MIDSTREAM]
- new: [....31] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.168.1.2][.2208] [MIDSTREAM]
- new: [....32] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.168.1.2][.2732] [MIDSTREAM]
+ new: [....26] [ip4][..tcp] [..147.234.1.253][...21] -> [......192.2.1.2][.2720] [MIDSTREAM]
+ new: [....27] [ip4][..tcp] [..147.234.1.253][...21] -> [...192.168.1.66][.2720] [MIDSTREAM]
+ new: [....28] [ip4][..tcp] [..147.234.1.253][..120] -> [....192.168.1.2][.2720] [MIDSTREAM]
+ new: [....29] [ip4][..tcp] [..147.234.1.170][43690] -> [170.170.170.170][43690]
+ new: [....30] [ip4][..tcp] [..147.234.1.249][.2069] -> [....192.168.1.2][.2720] [MIDSTREAM]
+ new: [....31] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.168.1.2][.2208] [MIDSTREAM]
+ new: [....32] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.168.1.2][.2732] [MIDSTREAM]
detected: [....32] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.168.1.2][.2732] [Protobuf][Unknown][Network][Safe]
- new: [....33] [ip4][..tcp] [..147.234.1.253][.1045] -> [....192.168.1.2][.2720] [MIDSTREAM]
- new: [....34] [ip4][..tcp] [..147.234.1.253][...21] -> [...192.168.65.2][.2720] [MIDSTREAM]
+ new: [....33] [ip4][..tcp] [..147.234.1.253][.1045] -> [....192.168.1.2][.2720] [MIDSTREAM]
+ new: [....34] [ip4][..tcp] [..147.234.1.253][...21] -> [...192.168.65.2][.2720] [MIDSTREAM]
ERROR-EVENT: Unknown L3 protocol [3/16]
- new: [....35] [ip4][..tcp] [..147.234.1.253][...21] -> [.....84.168.1.2][.2720] [MIDSTREAM]
- new: [....36] [ip4][..tcp] [....192.112.1.2][.2720] -> [..147.234.1.253][...21] [MIDSTREAM]
- new: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
- new: [....38] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.117.1.253][...21] [MIDSTREAM]
- new: [....39] [ip4][..tcp] [....192.168.1.6][.2721] -> [..147.234.1.253][58999]
+ new: [....35] [ip4][..tcp] [..147.234.1.253][...21] -> [.....84.168.1.2][.2720] [MIDSTREAM]
+ new: [....36] [ip4][..tcp] [....192.112.1.2][.2720] -> [..147.234.1.253][...21] [MIDSTREAM]
+ new: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
+ new: [....38] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.117.1.253][...21] [MIDSTREAM]
+ new: [....39] [ip4][..tcp] [....192.168.1.6][.2721] -> [..147.234.1.253][58999]
ERROR-EVENT: Unknown packet type [4/16]
- new: [....40] [ip4][..tcp] [...37.115.0.253][58999] -> [....192.168.1.2][.2721]
+ new: [....40] [ip4][..tcp] [...37.115.0.253][58999] -> [....192.168.1.2][.2721]
ERROR-EVENT: TCP packet smaller than expected [5/16]
- new: [....41] [ip4][..tcp] [....192.168.1.2][.2721] -> [..147.234.1.253][58999] [MIDSTREAM]
- new: [....42] [ip4][..tcp] [..147.234.1.253][58999] -> [....192.232.1.2][.2721] [MIDSTREAM]
- new: [....43] [ip4][..tcp] [.....37.115.0.2][.2639] -> [..147.234.1.253][...21] [MIDSTREAM]
+ new: [....41] [ip4][..tcp] [....192.168.1.2][.2721] -> [..147.234.1.253][58999] [MIDSTREAM]
+ new: [....42] [ip4][..tcp] [..147.234.1.253][58999] -> [....192.232.1.2][.2721] [MIDSTREAM]
+ new: [....43] [ip4][..tcp] [.....37.115.0.2][.2639] -> [..147.234.1.253][...21] [MIDSTREAM]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [6/16]
update: [....16] [ip4][..udp] [..208.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [....14] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- update: [....15] [ip4][..udp] [....192.168.1.1][.9587] -> [....192.168.1.2][..156]
- new: [....44] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.136.1.1][...53]
+ update: [....15] [ip4][..udp] [....192.168.1.1][.9587] -> [....192.168.1.2][..156]
+ new: [....44] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.136.1.1][...53]
detected: [....44] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.136.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- new: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53]
+ new: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53]
detected: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
@@ -112,7 +112,7 @@
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....17] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.251][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
- update: [.....2] [ip4][..udp] [....217.168.1.2][..137] -> [..192.168.1.255][..137]
+ update: [.....2] [ip4][..udp] [....217.168.1.2][..137] -> [..192.168.1.255][..137]
update: [....11] [ip4][..udp] [...192.168.1.52][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [.....3] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -124,20 +124,20 @@
update: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- update: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440]
- update: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973]
+ update: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440]
+ update: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973]
detection-update: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
RISK: Unidirectional Traffic
- new: [....46] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2723]
+ new: [....46] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2723]
detected: [....46] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2723] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-adds.arpa]
- new: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587]
- new: [....48] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][...53]
+ new: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587]
+ new: [....48] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][...53]
detected: [....48] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp._s?.cybercity.dk]
RISK: Non-Printable/Invalid Chars Detected
detection-update: [....48] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- new: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481]
- new: [....50] [ip4][..udp] [....192.168.1.2][.2724] -> [...192.168.17.1][...53]
+ new: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481]
+ new: [....50] [ip4][..udp] [....192.168.1.2][.2724] -> [...192.168.17.1][...53]
detected: [....50] [ip4][..udp] [....192.168.1.2][.2724] -> [...192.168.17.1][...53] [DNS][Unknown][Network][Acceptable][_zip._udp.sip.cybercity.dk]
update: [....16] [ip4][..udp] [..208.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [....14] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -145,18 +145,18 @@
RISK: Malformed Packet
update: [....21] [ip4][..udp] [....192.114.1.2][.2719] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
- update: [....15] [ip4][..udp] [....192.168.1.1][.9587] -> [....192.168.1.2][..156]
- new: [....51] [ip4][..udp] [....192.168.1.2][.2725] -> [....192.168.1.1][...53]
+ update: [....15] [ip4][..udp] [....192.168.1.1][.9587] -> [....192.168.1.2][..156]
+ new: [....51] [ip4][..udp] [....192.168.1.2][.2725] -> [....192.168.1.1][...53]
detected: [....51] [ip4][..udp] [....192.168.1.2][.2725] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
detection-update: [....51] [ip4][..udp] [....192.168.1.2][.2725] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [....52] [ip4][..udp] [...192.168.1.46][...53] -> [....192.168.1.2][.2726]
+ new: [....52] [ip4][..udp] [...192.168.1.46][...53] -> [....192.168.1.2][.2726]
detected: [....52] [ip4][..udp] [...192.168.1.46][...53] -> [....192.168.1.2][.2726] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
idle: [.....4] [ip4][..udp] [....192.168.1.2][.2712] -> [...192.37.115.0][...53] [DNS][Unknown][Network][Acceptable]
guessed: [.....2] [ip4][..udp] [....217.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][]
- idle: [.....2] [ip4][..udp] [....217.168.1.2][..137] -> [..192.168.1.255][..137]
+ idle: [.....2] [ip4][..udp] [....217.168.1.2][..137] -> [..192.168.1.255][..137]
idle: [.....3] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- update: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587]
+ update: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....17] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.251][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
@@ -177,9 +177,9 @@
update: [....48] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
update: [....50] [ip4][..udp] [....192.168.1.2][.2724] -> [...192.168.17.1][...53] [DNS][Unknown][Network][Acceptable]
- update: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481]
- update: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440]
- update: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973]
+ update: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481]
+ update: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440]
+ update: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973]
idle: [....17] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.251][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
idle: [....16] [ip4][..udp] [..208.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
@@ -195,20 +195,20 @@
idle: [....14] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
not-detected: [....41] [ip4][..tcp] [....192.168.1.2][.2721] -> [..147.234.1.253][58999] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- end: [....41] [ip4][..tcp] [....192.168.1.2][.2721] -> [..147.234.1.253][58999]
+ end: [....41] [ip4][..tcp] [....192.168.1.2][.2721] -> [..147.234.1.253][58999]
guessed: [....23] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.234.1.253][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
RISK: Unsafe Protocol
- end: [....23] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.234.1.253][...21]
+ end: [....23] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.234.1.253][...21]
not-detected: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440]
+ idle: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440]
not-detected: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973]
+ idle: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973]
not-detected: [....15] [ip4][..udp] [....192.168.1.1][.9587] -> [....192.168.1.2][..156] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [....15] [ip4][..udp] [....192.168.1.1][.9587] -> [....192.168.1.2][..156]
- update: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587]
+ idle: [....15] [ip4][..udp] [....192.168.1.1][.9587] -> [....192.168.1.2][..156]
+ update: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [....22] [ip4][..udp] [....192.168.1.2][.2719] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -222,13 +222,13 @@
update: [....50] [ip4][..udp] [....192.168.1.2][.2724] -> [...192.168.17.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....51] [ip4][..udp] [....192.168.1.2][.2725] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....52] [ip4][..udp] [...192.168.1.46][...53] -> [....192.168.1.2][.2726] [DNS][Unknown][Network][Acceptable]
- update: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481]
+ update: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481]
update: [....21] [ip4][..udp] [....192.114.1.2][.2719] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
- new: [....53] [ip4][..udp] [..192.168.1.202][..137] -> [..192.168.1.255][..137]
+ new: [....53] [ip4][..udp] [..192.168.1.202][..137] -> [..192.168.1.255][..137]
detected: [....53] [ip4][..udp] [..192.168.1.202][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_dom]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
- new: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53]
+ new: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53]
detected: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
detection-update: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
@@ -237,7 +237,7 @@
RISK: Malformed Packet
idle: [....21] [ip4][..udp] [....192.114.1.2][.2719] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
- update: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587]
+ update: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [....44] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.136.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -249,49 +249,49 @@
update: [....50] [ip4][..udp] [....192.168.1.2][.2724] -> [...192.168.17.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....51] [ip4][..udp] [....192.168.1.2][.2725] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....52] [ip4][..udp] [...192.168.1.46][...53] -> [....192.168.1.2][.2726] [DNS][Unknown][Network][Acceptable]
- update: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481]
- update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
- new: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690]
- new: [....56] [ip4][..udp] [....192.168.1.2][.2733] -> [..192.168.115.1][...53]
+ update: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481]
+ update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
+ new: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690]
+ new: [....56] [ip4][..udp] [....192.168.1.2][.2733] -> [..192.168.115.1][...53]
detected: [....56] [ip4][..udp] [....192.168.1.2][.2733] -> [..192.168.115.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arqa]
- new: [....57] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733]
+ new: [....57] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733]
detected: [....57] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35]
- new: [....59] [ip4][..udp] [....192.168.1.2][.2734] -> [....192.168.1.1][...53]
+ new: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35]
+ new: [....59] [ip4][..udp] [....192.168.1.2][.2734] -> [....192.168.1.1][...53]
detected: [....59] [ip4][..udp] [....192.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- new: [....60] [ip4][..udp] [....172.168.1.2][.2734] -> [....192.168.1.1][...53]
+ new: [....60] [ip4][..udp] [....172.168.1.2][.2734] -> [....192.168.1.1][...53]
detected: [....60] [ip4][..udp] [....172.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Azure][Network][Acceptable][_sip._udp.sip.cybercity.dk]
idle: [....44] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.136.1.1][...53] [DNS][Unknown][Network][Acceptable]
detection-update: [....59] [ip4][..udp] [....192.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyberxity.dk]
RISK: Unidirectional Traffic
detection-update: [....59] [ip4][..udp] [....192.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
- new: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53]
+ new: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53]
detected: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-adds.arpa]
- new: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735]
+ new: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735]
detected: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
not-detected: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587]
+ idle: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587]
idle: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
idle: [....46] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2723] [DNS][Unknown][Network][Acceptable]
guessed: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481] [NetBIOS][Unknown][System][Acceptable][]
- idle: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481]
+ idle: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
- new: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169]
+ new: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169]
idle: [....50] [ip4][..udp] [....192.168.1.2][.2724] -> [...192.168.17.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....48] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
update: [....53] [ip4][..udp] [..192.168.1.202][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
- new: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53]
+ new: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53]
detected: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- new: [....65] [ip4][..udp] [....192.168.1.2][.2684] -> [....192.168.1.1][...53]
+ new: [....65] [ip4][..udp] [....192.168.1.2][.2684] -> [....192.168.1.1][...53]
detected: [....65] [ip4][..udp] [....192.168.1.2][.2684] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.dybercity.dk]
ERROR-EVENT: Unknown packet type [1/16]
- new: [....66] [ip4][..udp] [....192.168.1.2][.2736] -> [...192.168.1.17][...53]
+ new: [....66] [ip4][..udp] [....192.168.1.2][.2736] -> [...192.168.1.17][...53]
detected: [....66] [ip4][..udp] [....192.168.1.2][.2736] -> [...192.168.1.17][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
@@ -299,10 +299,10 @@
RISK: Malformed Packet, Unidirectional Traffic
idle: [....51] [ip4][..udp] [....192.168.1.2][.2725] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....52] [ip4][..udp] [...192.168.1.46][...53] -> [....192.168.1.2][.2726] [DNS][Unknown][Network][Acceptable]
- update: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690]
+ update: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....53] [ip4][..udp] [..192.168.1.202][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
- update: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169]
+ update: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [....60] [ip4][..udp] [....172.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Azure][Network][Acceptable]
update: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -313,23 +313,23 @@
RISK: Unidirectional Traffic
update: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735] [DNS][Unknown][Network][Acceptable]
- new: [....67] [ip4][..udp] [....192.168.1.2][.2737] -> [....192.168.1.1][...53]
+ new: [....67] [ip4][..udp] [....192.168.1.2][.2737] -> [....192.168.1.1][...53]
detected: [....67] [ip4][..udp] [....192.168.1.2][.2737] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
detection-update: [....67] [ip4][..udp] [....192.168.1.2][.2737] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [....68] [ip4][..udp] [....192.168.1.2][20932] -> [..212.242.33.35][.5060]
+ new: [....68] [ip4][..udp] [....192.168.1.2][20932] -> [..212.242.33.35][.5060]
detected: [....68] [ip4][..udp] [....192.168.1.2][20932] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
- new: [....69] [ip4][..udp] [....192.168.1.2][.2738] -> [...192.168.84.1][...53]
+ new: [....69] [ip4][..udp] [....192.168.1.2][.2738] -> [...192.168.84.1][...53]
detected: [....69] [ip4][..udp] [....192.168.1.2][.2738] -> [...192.168.84.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercitu.dk]
- new: [....70] [ip4][..udp] [....192.168.1.2][.2738] -> [....192.168.1.1][...53]
+ new: [....70] [ip4][..udp] [....192.168.1.2][.2738] -> [....192.168.1.1][...53]
detected: [....70] [ip4][..udp] [....192.168.1.2][.2738] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [....70] [ip4][..udp] [....192.168.1.2][.2738] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
- new: [....71] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53]
+ new: [....71] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53]
detected: [....71] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- new: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53]
+ new: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53]
detected: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
detection-update: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53]
+ new: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53]
detected: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyberci_s]
RISK: Non-Printable/Invalid Chars Detected
detection-update: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
@@ -337,27 +337,27 @@
ERROR-EVENT: Unknown packet type [1/16]
detection-update: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- new: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329]
- new: [....75] [ip4][..udp] [....192.168.1.2][.2741] -> [....192.168.1.1][...53]
+ new: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329]
+ new: [....75] [ip4][..udp] [....192.168.1.2][.2741] -> [....192.168.1.1][...53]
detected: [....75] [ip4][..udp] [....192.168.1.2][.2741] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [....76] [ip4][..udp] [..192.168.130.1][...53] -> [....192.168.1.2][.2741]
+ new: [....76] [ip4][..udp] [..192.168.130.1][...53] -> [....192.168.1.2][.2741]
detected: [....76] [ip4][..udp] [..192.168.130.1][...53] -> [....192.168.1.2][.2741] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....65] [ip4][..udp] [....192.168.1.2][.2684] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Unidirectional Traffic
update: [....66] [ip4][..udp] [....192.168.1.2][.2736] -> [...192.168.1.17][...53] [DNS][Unknown][Network][Acceptable]
- new: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53]
+ new: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53]
detected: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- new: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
+ new: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
detection-update: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
detection-update: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
- update: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690]
+ update: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690]
update: [....68] [ip4][..udp] [....192.168.1.2][20932] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....53] [ip4][..udp] [..192.168.1.202][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
- update: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169]
+ update: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [....60] [ip4][..udp] [....172.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Azure][Network][Acceptable]
update: [....71] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -373,41 +373,41 @@
RISK: Unidirectional Traffic
update: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735] [DNS][Unknown][Network][Acceptable]
- update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
+ update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
ERROR-EVENT: Unknown packet type [1/16]
- new: [....79] [ip4][..udp] [....192.168.1.2][.2743] -> [....192.168.1.1][...53]
+ new: [....79] [ip4][..udp] [....192.168.1.2][.2743] -> [....192.168.1.1][...53]
detected: [....79] [ip4][..udp] [....192.168.1.2][.2743] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
detection-update: [....79] [ip4][..udp] [....192.168.1.2][.2743] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- update: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35]
+ update: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35]
update: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- new: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53]
+ new: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53]
detected: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
- new: [....81] [ip4][..udp] [....192.168.1.2][...88] -> [..192.168.1.255][..137]
+ new: [....81] [ip4][..udp] [....192.168.1.2][...88] -> [..192.168.1.255][..137]
detected: [....81] [ip4][..udp] [....192.168.1.2][...88] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
not-detected: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690]
+ idle: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690]
idle: [....53] [ip4][..udp] [..192.168.1.202][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
- update: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329]
+ update: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329]
update: [....65] [ip4][..udp] [....192.168.1.2][.2684] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Unidirectional Traffic
update: [....66] [ip4][..udp] [....192.168.1.2][.2736] -> [...192.168.1.17][...53] [DNS][Unknown][Network][Acceptable]
update: [....75] [ip4][..udp] [....192.168.1.2][.2741] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....76] [ip4][..udp] [..192.168.130.1][...53] -> [....192.168.1.2][.2741] [DNS][Unknown][Network][Acceptable]
- new: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690]
- new: [....83] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2745]
+ new: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690]
+ new: [....83] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2745]
detected: [....83] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2745] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [....84] [ip4][..udp] [....192.168.1.2][.2746] -> [....192.168.1.1][...53]
+ new: [....84] [ip4][..udp] [....192.168.1.2][.2746] -> [....192.168.1.1][...53]
detected: [....84] [ip4][..udp] [....192.168.1.2][.2746] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.voip.brujula.net]
- new: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1]
- new: [....86] [ip4][..udp] [...192.168.1.34][.2746] -> [....192.168.1.1][...53]
+ new: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1]
+ new: [....86] [ip4][..udp] [...192.168.1.34][.2746] -> [....192.168.1.1][...53]
detected: [....86] [ip4][..udp] [...192.168.1.34][.2746] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp._s?p.brvjula.net]
RISK: Non-Printable/Invalid Chars Detected
detection-update: [....84] [ip4][..udp] [....192.168.1.2][.2746] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.voip.brujula.net]
@@ -419,7 +419,7 @@
RISK: Unidirectional Traffic
update: [....68] [ip4][..udp] [....192.168.1.2][20932] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
- update: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169]
+ update: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [....71] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....67] [ip4][..udp] [....192.168.1.2][.2737] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -430,16 +430,16 @@
RISK: Unidirectional Traffic
update: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735] [DNS][Unknown][Network][Acceptable]
- update: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
- new: [....87] [ip4][..udp] [....192.168.1.2][.2747] -> [.....67.168.1.1][...53]
+ update: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
+ new: [....87] [ip4][..udp] [....192.168.1.2][.2747] -> [.....67.168.1.1][...53]
detected: [....87] [ip4][..udp] [....192.168.1.2][.2747] -> [.....67.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [....88] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2747]
+ new: [....88] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2747]
detected: [....88] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2747] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [....89] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.4932]
+ new: [....89] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.4932]
detected: [....89] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.4932] [SIP][Unknown][VoIP][Acceptable]
- new: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53]
+ new: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53]
detected: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- new: [....91] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060]
+ new: [....91] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060]
detection-update: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
detected: [....91] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
@@ -449,31 +449,31 @@
detection-update: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
guessed: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169] [NetBIOS][Unknown][System][Acceptable][]
- idle: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169]
+ idle: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169]
idle: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735] [DNS][Unknown][Network][Acceptable]
update: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
update: [....79] [ip4][..udp] [....192.168.1.2][.2743] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- new: [....92] [ip4][..udp] [....192.168.1.2][.2749] -> [....192.168.1.1][...53]
+ new: [....92] [ip4][..udp] [....192.168.1.2][.2749] -> [....192.168.1.1][...53]
detected: [....92] [ip4][..udp] [....192.168.1.2][.2749] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
- new: [....93] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733]
+ new: [....93] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733]
detected: [....93] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
ERROR-EVENT: Unknown packet type [1/16]
- new: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53]
+ new: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53]
detected: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.voip.brujula.net]
detection-update: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.voip.brujula.net]
RISK: Unidirectional Traffic
- new: [....95] [ip4][..udp] [....192.168.1.2][10942] -> [....192.168.1.1][...53]
+ new: [....95] [ip4][..udp] [....192.168.1.2][10942] -> [....192.168.1.1][...53]
detected: [....95] [ip4][..udp] [....192.168.1.2][10942] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.voip.brujula.net]
detection-update: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.voip.brujula.net]
RISK: Malformed Packet, Unidirectional Traffic
detection-update: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.vo_s]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
update: [....81] [ip4][..udp] [....192.168.1.2][...88] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
- update: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329]
+ update: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329]
update: [....65] [ip4][..udp] [....192.168.1.2][.2684] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Unidirectional Traffic
@@ -482,27 +482,27 @@
update: [....76] [ip4][..udp] [..192.168.130.1][...53] -> [....192.168.1.2][.2741] [DNS][Unknown][Network][Acceptable]
update: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
- new: [....96] [ip4][..udp] [...192.168.1.18][.2751] -> [....192.168.1.1][...53]
+ new: [....96] [ip4][..udp] [...192.168.1.18][.2751] -> [....192.168.1.1][...53]
detected: [....96] [ip4][..udp] [...192.168.1.18][.2751] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
- new: [....97] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2751]
+ new: [....97] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2751]
detected: [....97] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2751] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
- new: [....98] [ip4][..udp] [....192.168.1.2][.2752] -> [....192.168.1.1][...53]
+ new: [....98] [ip4][..udp] [....192.168.1.2][.2752] -> [....192.168.1.1][...53]
detected: [....98] [ip4][..udp] [....192.168.1.2][.2752] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [....98] [ip4][..udp] [....192.168.1.2][.2752] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
- new: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060]
+ new: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060]
detected: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060] [SIP][Unknown][VoIP][Acceptable]
- new: [...100] [ip4][..udp] [....192.168.1.2][.4901] -> [..200.68.120.81][29440]
+ new: [...100] [ip4][..udp] [....192.168.1.2][.4901] -> [..200.68.120.81][29440]
detected: [...100] [ip4][..udp] [....192.168.1.2][.4901] -> [..200.68.120.81][29440] [SIP][Unknown][VoIP][Acceptable]
RISK: Known Proto on Non Std Port
- new: [...101] [ip4][..udp] [....192.168.1.2][.2752] -> [....102.168.1.1][...53]
+ new: [...101] [ip4][..udp] [....192.168.1.2][.2752] -> [....102.168.1.1][...53]
detected: [...101] [ip4][..udp] [....192.168.1.2][.2752] -> [....102.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
- new: [...102] [ip4][..udp] [.....192.98.1.2][.2752] -> [.....25.168.1.1][...53]
+ new: [...102] [ip4][..udp] [.....192.98.1.2][.2752] -> [.....25.168.1.1][...53]
detected: [...102] [ip4][..udp] [.....192.98.1.2][.2752] -> [.....25.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- update: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690]
+ update: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690]
update: [....68] [ip4][..udp] [....192.168.1.2][20932] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
@@ -518,13 +518,13 @@
RISK: Unidirectional Traffic
update: [....86] [ip4][..udp] [...192.168.1.34][.2746] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
- update: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
- new: [...103] [ip4][..udp] [....192.169.1.2][.5060] -> [..200.68.120.81][.5060]
+ update: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
+ new: [...103] [ip4][..udp] [....192.169.1.2][.5060] -> [..200.68.120.81][.5060]
detected: [...103] [ip4][..udp] [....192.169.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
- new: [...104] [ip4][..udp] [....192.168.1.2][.2753] -> [....192.168.1.1][...53]
+ new: [...104] [ip4][..udp] [....192.168.1.2][.2753] -> [....192.168.1.1][...53]
detected: [...104] [ip4][..udp] [....192.168.1.2][.2753] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.tn-addr.arpa]
detection-update: [...104] [ip4][..udp] [....192.168.1.2][.2753] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.527.in-addr.arpa]
- new: [...105] [ip4][..udp] [.....192.86.1.2][.5060] -> [..200.68.120.99][.5060]
+ new: [...105] [ip4][..udp] [.....192.86.1.2][.5060] -> [..200.68.120.99][.5060]
update: [....87] [ip4][..udp] [....192.168.1.2][.2747] -> [.....67.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....88] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2747] [DNS][Unknown][Network][Acceptable]
update: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -533,8 +533,8 @@
update: [....91] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
- new: [...106] [ip4][..udp] [....192.168.1.2][.2754] -> [....192.168.1.1][...53]
- new: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
+ new: [...106] [ip4][..udp] [....192.168.1.2][.2754] -> [....192.168.1.1][...53]
+ new: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
detected: [...106] [ip4][..udp] [....192.168.1.2][.2754] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyberciwy.dk]
RISK: Unidirectional Traffic
idle: [....65] [ip4][..udp] [....192.168.1.2][.2684] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -551,7 +551,7 @@
update: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
update: [....95] [ip4][..udp] [....192.168.1.2][10942] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- new: [...108] [ip4][..udp] [.....14.168.1.2][.2754] -> [....192.168.1.1][...53]
+ new: [...108] [ip4][..udp] [.....14.168.1.2][.2754] -> [....192.168.1.1][...53]
detected: [...108] [ip4][..udp] [.....14.168.1.2][.2754] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...106] [ip4][..udp] [....192.168.1.2][.2754] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
@@ -559,12 +559,12 @@
idle: [....67] [ip4][..udp] [....192.168.1.2][.2737] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....69] [ip4][..udp] [....192.168.1.2][.2738] -> [...192.168.84.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....81] [ip4][..udp] [....192.168.1.2][...88] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
- update: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329]
+ update: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329]
update: [....75] [ip4][..udp] [....192.168.1.2][.2741] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....76] [ip4][..udp] [..192.168.130.1][...53] -> [....192.168.1.2][.2741] [DNS][Unknown][Network][Acceptable]
update: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
- new: [...109] [ip4][..udp] [....192.168.1.2][.2755] -> [....192.168.1.1][...53]
+ new: [...109] [ip4][..udp] [....192.168.1.2][.2755] -> [....192.168.1.1][...53]
detected: [...109] [ip4][..udp] [....192.168.1.2][.2755] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
detection-update: [...109] [ip4][..udp] [....192.168.1.2][.2755] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
idle: [....71] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -578,21 +578,21 @@
RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 241 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 63 / 109|skipped: 0|!detected: 6|guessed: 4|detection-updates: 34|updates: 178]
- new: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53]
+ new: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53]
detected: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_?ip._udp.sip.cybercit?.dk]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
detection-update: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
guessed: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329] [NetBIOS][Unknown][System][Acceptable][]
- idle: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329]
+ idle: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329]
idle: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- update: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690]
+ update: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690]
update: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
- update: [...105] [ip4][..udp] [.....192.86.1.2][.5060] -> [..200.68.120.99][.5060]
+ update: [...105] [ip4][..udp] [.....192.86.1.2][.5060] -> [..200.68.120.99][.5060]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [...100] [ip4][..udp] [....192.168.1.2][.4901] -> [..200.68.120.81][29440] [SIP][Unknown][VoIP][Acceptable]
RISK: Known Proto on Non Std Port
@@ -614,10 +614,10 @@
update: [....91] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
RISK: Unidirectional Traffic
update: [...102] [ip4][..udp] [.....192.98.1.2][.2752] -> [.....25.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
+ update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
update: [...103] [ip4][..udp] [....192.169.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
- update: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
- new: [...111] [ip4][..udp] [....192.168.1.2][.2757] -> [....192.168.1.1][...53]
+ update: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
+ new: [...111] [ip4][..udp] [....192.168.1.2][.2757] -> [....192.168.1.1][...53]
detected: [...111] [ip4][..udp] [....192.168.1.2][.2757] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.v.0.127.in-addr.arpa]
detection-update: [...111] [ip4][..udp] [....192.168.1.2][.2757] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
@@ -633,7 +633,7 @@
[ENTROPIES...: 4.3,4.2,4.2,4.3,4.2,4.2,4.2,4.3,4.3,4.3,4.3,4.3,4.3,4.2,4.2,4.2,4.3,4.2,4.2,4.3,4.2,4.2,4.2,4.3,4.2,4.2,4.3,4.3,4.3,4.3,4.2,3.2]
idle: [....76] [ip4][..udp] [..192.168.130.1][...53] -> [....192.168.1.2][.2741] [DNS][Unknown][Network][Acceptable]
idle: [....75] [ip4][..udp] [....192.168.1.2][.2741] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- update: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35]
+ update: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35]
update: [....93] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733] [DNS][Unknown][Network][Acceptable]
update: [....79] [ip4][..udp] [....192.168.1.2][.2743] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....92] [ip4][..udp] [....192.168.1.2][.2749] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -643,13 +643,13 @@
update: [....95] [ip4][..udp] [....192.168.1.2][10942] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...106] [ip4][..udp] [....192.168.1.2][.2754] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
- new: [...112] [ip4][..udp] [....192.168.1.2][.2640] -> [....192.168.1.1][...53]
+ new: [...112] [ip4][..udp] [....192.168.1.2][.2640] -> [....192.168.1.1][...53]
detected: [...112] [ip4][..udp] [....192.168.1.2][.2640] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
- new: [...113] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53]
+ new: [...113] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53]
detected: [...113] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._tdp.sip.cybercity.dk]
- new: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53]
- new: [...115] [ip4][..udp] [....192.168.1.2][.2758] -> [....192.168.1.1][...53]
+ new: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53]
+ new: [...115] [ip4][..udp] [....192.168.1.2][.2758] -> [....192.168.1.1][...53]
detected: [...115] [ip4][..udp] [....192.168.1.2][.2758] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...115] [ip4][..udp] [....192.168.1.2][.2758] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.gybercity.dk]
RISK: Unidirectional Traffic
@@ -657,7 +657,7 @@
RISK: Unidirectional Traffic
not-detected: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
+ idle: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
update: [....81] [ip4][..udp] [....192.168.1.2][...88] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...108] [ip4][..udp] [.....14.168.1.2][.2754] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -669,16 +669,16 @@
update: [....98] [ip4][..udp] [....192.168.1.2][.2752] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
update: [...109] [ip4][..udp] [....192.168.1.2][.2755] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- new: [...116] [ip4][..udp] [....192.168.1.2][.2759] -> [....192.168.1.1][...53]
+ new: [...116] [ip4][..udp] [....192.168.1.2][.2759] -> [....192.168.1.1][...53]
detected: [...116] [ip4][..udp] [....192.168.1.2][.2759] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.sn-addr.arpa]
- new: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
+ new: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
idle: [....79] [ip4][..udp] [....192.168.1.2][.2743] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- update: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1]
+ update: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1]
update: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
- new: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53]
- new: [...119] [ip4][..udp] [....192.168.1.2][.2760] -> [....192.168.1.1][...53]
+ new: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53]
+ new: [...119] [ip4][..udp] [....192.168.1.2][.2760] -> [....192.168.1.1][...53]
detected: [...119] [ip4][..udp] [....192.168.1.2][.2760] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip.eudp.sip.cybercity.dk]
ERROR-EVENT: Unknown packet type [2/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
@@ -688,10 +688,10 @@
idle: [....81] [ip4][..udp] [....192.168.1.2][...88] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
- update: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690]
+ update: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690]
update: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
- update: [...105] [ip4][..udp] [.....192.86.1.2][.5060] -> [..200.68.120.99][.5060]
+ update: [...105] [ip4][..udp] [.....192.86.1.2][.5060] -> [..200.68.120.99][.5060]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [...100] [ip4][..udp] [....192.168.1.2][.4901] -> [..200.68.120.81][29440] [SIP][Unknown][VoIP][Acceptable]
RISK: Known Proto on Non Std Port
@@ -722,9 +722,9 @@
RISK: Unidirectional Traffic
update: [...102] [ip4][..udp] [.....192.98.1.2][.2752] -> [.....25.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...103] [ip4][..udp] [....192.169.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
- new: [...120] [ip4][..udp] [....192.168.1.2][.2761] -> [....192.168.1.1][...53]
+ new: [...120] [ip4][..udp] [....192.168.1.2][.2761] -> [....192.168.1.1][...53]
detected: [...120] [ip4][..udp] [....192.168.1.2][.2761] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53]
+ new: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53]
detected: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Malformed Packet, Unidirectional Traffic
@@ -734,25 +734,25 @@
ERROR-EVENT: Unknown L3 protocol [2/16]
not-detected: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690]
+ idle: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690]
idle: [....83] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2745] [DNS][Unknown][Network][Acceptable]
idle: [....86] [ip4][..udp] [...192.168.1.34][.2746] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
update: [...112] [ip4][..udp] [....192.168.1.2][.2640] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
- update: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53]
+ update: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53]
update: [...113] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
ERROR-EVENT: Unknown packet type [3/16]
- new: [...122] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2763]
+ new: [...122] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2763]
detected: [...122] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2763] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
RISK: Malformed Packet
ERROR-EVENT: Unknown packet type [4/16]
- new: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53]
+ new: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53]
detected: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
ERROR-EVENT: Unknown packet type [5/16]
detection-update: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
- new: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
+ new: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
detection-update: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.s?p.cibercity.dk]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
detection-update: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
@@ -777,19 +777,19 @@
update: [...115] [ip4][..udp] [....192.168.1.2][.2758] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
update: [...116] [ip4][..udp] [....192.168.1.2][.2759] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- new: [...125] [ip4][..udp] [..192.168.1.110][.2765] -> [....192.168.1.1][...53]
+ new: [...125] [ip4][..udp] [..192.168.1.110][.2765] -> [....192.168.1.1][...53]
detected: [...125] [ip4][..udp] [..192.168.1.110][.2765] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [...126] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2765]
+ new: [...126] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2765]
detected: [...126] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2765] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
- new: [...127] [ip4][..udp] [..192.168.1.172][.2766] -> [....192.168.1.1][...53]
+ new: [...127] [ip4][..udp] [..192.168.1.172][.2766] -> [....192.168.1.1][...53]
detected: [...127] [ip4][..udp] [..192.168.1.172][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- new: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53]
+ new: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53]
detected: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybe0city.dk]
RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
- new: [...129] [ip4][..udp] [....192.168.1.2][14798] -> [....192.168.1.1][...53]
+ new: [...129] [ip4][..udp] [....192.168.1.2][14798] -> [....192.168.1.1][...53]
detected: [...129] [ip4][..udp] [....192.168.1.2][14798] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
idle: [....93] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733] [DNS][Unknown][Network][Acceptable]
idle: [....92] [ip4][..udp] [....192.168.1.2][.2749] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -798,9 +798,9 @@
idle: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
update: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060] [SIP][Unknown][VoIP][Acceptable]
- update: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53]
+ update: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
- update: [...105] [ip4][..udp] [.....192.86.1.2][.5060] -> [..200.68.120.99][.5060]
+ update: [...105] [ip4][..udp] [.....192.86.1.2][.5060] -> [..200.68.120.99][.5060]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [...100] [ip4][..udp] [....192.168.1.2][.4901] -> [..200.68.120.81][29440] [SIP][Unknown][VoIP][Acceptable]
RISK: Known Proto on Non Std Port
@@ -817,15 +817,15 @@
RISK: Unidirectional Traffic
update: [...102] [ip4][..udp] [.....192.98.1.2][.2752] -> [.....25.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...103] [ip4][..udp] [....192.169.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
- new: [...130] [ip4][..udp] [....192.168.1.2][.2767] -> [....192.168.1.1][...53]
+ new: [...130] [ip4][..udp] [....192.168.1.2][.2767] -> [....192.168.1.1][...53]
detected: [...130] [ip4][..udp] [....192.168.1.2][.2767] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
detection-update: [...130] [ip4][..udp] [....192.168.1.2][.2767] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [...131] [ip4][..udp] [....192.168.1.2][.2768] -> [....192.168.1.1][...53]
+ new: [...131] [ip4][..udp] [....192.168.1.2][.2768] -> [....192.168.1.1][...53]
detected: [...131] [ip4][..udp] [....192.168.1.2][.2768] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
- new: [...132] [ip4][..udp] [....192.168.1.2][35536] -> [....192.168.1.1][...53]
+ new: [...132] [ip4][..udp] [....192.168.1.2][35536] -> [....192.168.1.1][...53]
detected: [...132] [ip4][..udp] [....192.168.1.2][35536] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- new: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4]
+ new: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4]
detection-update: [...131] [ip4][..udp] [....192.168.1.2][.2768] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Malformed Packet, Unidirectional Traffic
idle: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060] [SIP][Unknown][VoIP][Acceptable]
@@ -842,33 +842,33 @@
idle: [...102] [ip4][..udp] [.....192.98.1.2][.2752] -> [.....25.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...112] [ip4][..udp] [....192.168.1.2][.2640] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
- update: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53]
+ update: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53]
update: [...120] [ip4][..udp] [....192.168.1.2][.2761] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Unidirectional Traffic
update: [...113] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- update: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
- new: [...134] [ip4][..udp] [....192.168.1.2][.2769] -> [....192.168.1.1][...53]
+ update: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
+ new: [...134] [ip4][..udp] [....192.168.1.2][.2769] -> [....192.168.1.1][...53]
detected: [...134] [ip4][..udp] [....192.168.1.2][.2769] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769]
+ new: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769]
guessed: [...105] [ip4][..udp] [.....192.86.1.2][.5060] -> [..200.68.120.99][.5060] [SIP][Unknown][VoIP][Acceptable]
RISK: Unidirectional Traffic
- idle: [...105] [ip4][..udp] [.....192.86.1.2][.5060] -> [..200.68.120.99][.5060]
+ idle: [...105] [ip4][..udp] [.....192.86.1.2][.5060] -> [..200.68.120.99][.5060]
idle: [...104] [ip4][..udp] [....192.168.1.2][.2753] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...103] [ip4][..udp] [....192.169.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
- update: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
+ update: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
update: [...122] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2763] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Error Code, Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
ERROR-EVENT: Unknown packet type [2/16]
- new: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1]
- new: [...137] [ip4][..udp] [....192.168.1.2][.2770] -> [....192.168.1.1][...53]
+ new: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1]
+ new: [...137] [ip4][..udp] [....192.168.1.2][.2770] -> [....192.168.1.1][...53]
detected: [...137] [ip4][..udp] [....192.168.1.2][.2770] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
- new: [...138] [ip4][..udp] [....192.168.1.2][..137] -> [..120.168.1.255][..137]
+ new: [...138] [ip4][..udp] [....192.168.1.2][..137] -> [..120.168.1.255][..137]
detected: [...138] [ip4][..udp] [....192.168.1.2][..137] -> [..120.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_doma]
ERROR-EVENT: Unknown packet type [4/16]
detection-update: [...137] [ip4][..udp] [....192.168.1.2][.2770] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
@@ -878,7 +878,7 @@
RISK: Unidirectional Traffic
idle: [....91] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
RISK: Unidirectional Traffic
- update: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53]
+ update: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [...129] [ip4][..udp] [....192.168.1.2][14798] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -898,38 +898,38 @@
update: [...127] [ip4][..udp] [..192.168.1.172][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
- update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
- new: [...139] [ip4][..udp] [...192.168.1.57][.2771] -> [....192.168.1.1][...53]
+ update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
+ new: [...139] [ip4][..udp] [...192.168.1.57][.2771] -> [....192.168.1.1][...53]
detected: [...139] [ip4][..udp] [...192.168.1.57][.2771] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- new: [...140] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2771]
+ new: [...140] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2771]
detected: [...140] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2771] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
- new: [...141] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138]
+ new: [...141] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138]
detected: [...141] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][d002465]
RISK: Unsafe Protocol
idle: [...109] [ip4][..udp] [....192.168.1.2][.2755] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- update: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35]
+ update: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35]
update: [...130] [ip4][..udp] [....192.168.1.2][.2767] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...131] [ip4][..udp] [....192.168.1.2][.2768] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Unidirectional Traffic
- new: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53]
+ new: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53]
detected: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
detection-update: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
detection-update: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- new: [...143] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.184.1.1][...53]
+ new: [...143] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.184.1.1][...53]
detected: [...143] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.184.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
idle: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- update: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
- update: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4]
+ update: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
+ update: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4]
update: [...112] [ip4][..udp] [....192.168.1.2][.2640] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
- update: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53]
+ update: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53]
update: [...120] [ip4][..udp] [....192.168.1.2][.2761] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Unidirectional Traffic
@@ -940,8 +940,8 @@
update: [...132] [ip4][..udp] [....192.168.1.2][35536] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...134] [ip4][..udp] [....192.168.1.2][.2769] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...113] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- update: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769]
- new: [...144] [ip4][..udp] [....192.168.1.2][.2773] -> [....192.168.1.1][...53]
+ update: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769]
+ new: [...144] [ip4][..udp] [....192.168.1.2][.2773] -> [....192.168.1.1][...53]
detected: [...144] [ip4][..udp] [....192.168.1.2][.2773] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.il-addr.arpa]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
idle: [...112] [ip4][..udp] [....192.168.1.2][.2640] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -949,10 +949,10 @@
idle: [...111] [ip4][..udp] [....192.168.1.2][.2757] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
idle: [...113] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- update: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
+ update: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
update: [...138] [ip4][..udp] [....192.168.1.2][..137] -> [..120.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
- update: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1]
- update: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53]
+ update: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1]
+ update: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [...129] [ip4][..udp] [....192.168.1.2][14798] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -969,20 +969,20 @@
RISK: Unidirectional Traffic
update: [...137] [ip4][..udp] [....192.168.1.2][.2770] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Unidirectional Traffic
- new: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53]
+ new: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53]
detected: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
detection-update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Malformed Packet, Unidirectional Traffic
detection-update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- new: [...146] [ip4][..udp] [....192.168.9.2][.2774] -> [....192.168.1.1][...53]
+ new: [...146] [ip4][..udp] [....192.168.9.2][.2774] -> [....192.168.1.1][...53]
detected: [...146] [ip4][..udp] [....192.168.9.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
guessed: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Unidirectional Traffic
- idle: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53]
+ idle: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53]
idle: [...115] [ip4][..udp] [....192.168.1.2][.2758] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
update: [...141] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
@@ -992,7 +992,7 @@
RISK: Malformed Packet, Unidirectional Traffic
update: [...139] [ip4][..udp] [...192.168.1.57][.2771] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...140] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2771] [DNS][Unknown][Network][Acceptable]
- new: [...147] [ip4][..udp] [....192.168.1.2][.2775] -> [....192.168.1.1][...53]
+ new: [...147] [ip4][..udp] [....192.168.1.2][.2775] -> [....192.168.1.1][...53]
detected: [...147] [ip4][..udp] [....192.168.1.2][.2775] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-aqd?.arpa]
RISK: Non-Printable/Invalid Chars Detected
detection-update: [...147] [ip4][..udp] [....192.168.1.2][.2775] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
@@ -1000,7 +1000,7 @@
idle: [...116] [ip4][..udp] [....192.168.1.2][.2759] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- new: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53]
+ new: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53]
detected: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
@@ -1009,11 +1009,11 @@
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
guessed: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Unidirectional Traffic
- idle: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53]
+ idle: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53]
idle: [...119] [ip4][..udp] [....192.168.1.2][.2760] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
- update: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
- update: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4]
+ update: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
+ update: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4]
update: [...120] [ip4][..udp] [....192.168.1.2][.2761] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Unidirectional Traffic
@@ -1025,14 +1025,14 @@
update: [...134] [ip4][..udp] [....192.168.1.2][.2769] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...143] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.184.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...144] [ip4][..udp] [....192.168.1.2][.2773] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- update: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769]
- new: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255]
- new: [...150] [ip4][..udp] [...192.168.33.2][.2782] -> [....192.168.1.1][...53]
+ update: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769]
+ new: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255]
+ new: [...150] [ip4][..udp] [...192.168.33.2][.2782] -> [....192.168.1.1][...53]
detected: [...150] [ip4][..udp] [...192.168.33.2][.2782] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
- new: [...151] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2782]
+ new: [...151] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2782]
detected: [...151] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2782] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [...152] [ip4][..udp] [....192.168.1.6][.5060] -> [..212.242.33.35][.5060]
+ new: [...152] [ip4][..udp] [....192.168.1.6][.5060] -> [..212.242.33.35][.5060]
ERROR-EVENT: Unknown packet type [1/16]
idle: [...120] [ip4][..udp] [....192.168.1.2][.2761] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1051,18 +1051,18 @@
RISK: Malformed Packet, Unidirectional Traffic
update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- new: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53]
+ new: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53]
detected: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
- new: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53]
+ new: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53]
detected: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Malformed Packet, Unidirectional Traffic
not-detected: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
+ idle: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
idle: [...122] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2763] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
idle: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1079,10 +1079,10 @@
update: [...146] [ip4][..udp] [....192.168.9.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...147] [ip4][..udp] [....192.168.1.2][.2775] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
- new: [...155] [ip4][..udp] [....192.168.1.2][.2784] -> [....192.168.1.1][...53]
+ new: [...155] [ip4][..udp] [....192.168.1.2][.2784] -> [....192.168.1.1][...53]
detected: [...155] [ip4][..udp] [....192.168.1.2][.2784] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
- new: [...156] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.5.2][.2784]
+ new: [...156] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.5.2][.2784]
detected: [...156] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.5.2][.2784] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.aspa]
ERROR-EVENT: Unknown packet type [1/16]
idle: [...129] [ip4][..udp] [....192.168.1.2][14798] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1092,29 +1092,29 @@
idle: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
idle: [...127] [ip4][..udp] [..192.168.1.172][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- update: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4]
+ update: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4]
update: [...132] [ip4][..udp] [....192.168.1.2][35536] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...134] [ip4][..udp] [....192.168.1.2][.2769] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...143] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.184.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...144] [ip4][..udp] [....192.168.1.2][.2773] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- update: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769]
- update: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
- new: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1]
- new: [...158] [ip4][..udp] [....200.168.1.2][.2785] -> [....192.168.1.1][...53]
+ update: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769]
+ update: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
+ new: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1]
+ new: [...158] [ip4][..udp] [....200.168.1.2][.2785] -> [....192.168.1.1][...53]
detected: [...158] [ip4][..udp] [....200.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- new: [...159] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][35721]
- new: [...160] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53]
+ new: [...159] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][35721]
+ new: [...160] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53]
detected: [...160] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybevcity.dk]
not-detected: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35]
+ idle: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35]
idle: [...130] [ip4][..udp] [....192.168.1.2][.2767] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...138] [ip4][..udp] [....192.168.1.2][..137] -> [..120.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
- update: [...152] [ip4][..udp] [....192.168.1.6][.5060] -> [..212.242.33.35][.5060]
+ update: [...152] [ip4][..udp] [....192.168.1.6][.5060] -> [..212.242.33.35][.5060]
update: [...137] [ip4][..udp] [....192.168.1.2][.2770] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Unidirectional Traffic
update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1122,14 +1122,14 @@
update: [...150] [ip4][..udp] [...192.168.33.2][.2782] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...151] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2782] [DNS][Unknown][Network][Acceptable]
- new: [...161] [ip4][..udp] [....192.168.1.2][.2786] -> [....192.168.1.3][...53]
+ new: [...161] [ip4][..udp] [....192.168.1.2][.2786] -> [....192.168.1.3][...53]
detected: [...161] [ip4][..udp] [....192.168.1.2][.2786] -> [....192.168.1.3][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-ad?r.arpa]
RISK: Non-Printable/Invalid Chars Detected
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
- new: [...162] [ip4][..udp] [..212.242.33.35][.9587] -> [....192.168.1.2][..196]
- new: [...163] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.3.1][...53]
+ new: [...162] [ip4][..udp] [..212.242.33.35][.9587] -> [....192.168.1.2][..196]
+ new: [...163] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.3.1][...53]
detected: [...163] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.3.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- new: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53]
+ new: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53]
detected: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Non-Printable/Invalid Chars Detected
detection-update: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
@@ -1140,22 +1140,22 @@
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
not-detected: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4]
+ idle: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4]
idle: [...132] [ip4][..udp] [....192.168.1.2][35536] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...131] [ip4][..udp] [....192.168.1.2][.2768] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Unidirectional Traffic
idle: [...134] [ip4][..udp] [....192.168.1.2][.2769] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
not-detected: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769]
- update: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1]
+ idle: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769]
+ update: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1]
update: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Unidirectional Traffic
- update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
- new: [...165] [ip4][..udp] [....192.168.1.2][.2788] -> [....192.168.1.1][...53]
+ update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
+ new: [...165] [ip4][..udp] [....192.168.1.2][.2788] -> [....192.168.1.1][...53]
detected: [...165] [ip4][..udp] [....192.168.1.2][.2788] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2]
+ new: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2]
analyse: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
min| max| avg| stddev| variance| entropy
[IAT.........: 0.026| 279.042| 51.474| 59.389| 3527099352.613| 4.200]
@@ -1168,7 +1168,7 @@
[ENTROPIES...: 5.8,5.8,5.8,5.8,5.8,1.5,3.4,2.9,5.8,4.1,5.8,3.2,4.1,4.1,4.1,4.1,4.1,4.1,4.1,4.1,5.8,5.8,5.7,4.1,1.5,5.8,4.6,4.1,4.0,4.1,3.3,2.3]
ERROR-EVENT: Unknown packet type [1/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
- new: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53]
+ new: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53]
detected: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Unidirectional Traffic
@@ -1188,20 +1188,20 @@
update: [...155] [ip4][..udp] [....192.168.1.2][.2784] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...156] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.5.2][.2784] [DNS][Unknown][Network][Acceptable]
- new: [...168] [ip4][..udp] [....192.168.1.2][.2790] -> [....192.168.1.1][...53]
+ new: [...168] [ip4][..udp] [....192.168.1.2][.2790] -> [....192.168.1.1][...53]
detected: [...168] [ip4][..udp] [....192.168.1.2][.2790] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
- new: [...169] [ip4][..udp] [..212.242.33.35][.5060] -> [...192.37.115.0][.5060]
+ new: [...169] [ip4][..udp] [..212.242.33.35][.5060] -> [...192.37.115.0][.5060]
detected: [...169] [ip4][..udp] [..212.242.33.35][.5060] -> [...192.37.115.0][.5060] [SIP][Unknown][VoIP][Acceptable]
- new: [...170] [ip4][..udp] [...192.168.79.2][.2791] -> [....192.168.1.1][...53]
+ new: [...170] [ip4][..udp] [...192.168.79.2][.2791] -> [....192.168.1.1][...53]
detected: [...170] [ip4][..udp] [...192.168.79.2][.2791] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- new: [...171] [ip4][..udp] [...192.168.1.53][.2791] -> [....192.168.1.1][...53]
+ new: [...171] [ip4][..udp] [...192.168.1.53][.2791] -> [....192.168.1.1][...53]
detected: [...171] [ip4][..udp] [...192.168.1.53][.2791] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
- new: [...172] [ip4][..udp] [....192.168.1.2][..137] -> [..192.194.1.255][..137]
+ new: [...172] [ip4][..udp] [....192.168.1.2][..137] -> [..192.194.1.255][..137]
detected: [...172] [ip4][..udp] [....192.168.1.2][..137] -> [..192.194.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
- new: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
- new: [...174] [ip4][..udp] [....192.168.1.2][.2791] -> [....192.168.1.1][...53]
+ new: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
+ new: [...174] [ip4][..udp] [....192.168.1.2][.2791] -> [....192.168.1.1][...53]
detected: [...174] [ip4][..udp] [....192.168.1.2][.2791] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
idle: [...138] [ip4][..udp] [....192.168.1.2][..137] -> [..120.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [...141] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
@@ -1212,7 +1212,7 @@
idle: [...139] [ip4][..udp] [...192.168.1.57][.2771] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
- update: [...152] [ip4][..udp] [....192.168.1.6][.5060] -> [..212.242.33.35][.5060]
+ update: [...152] [ip4][..udp] [....192.168.1.6][.5060] -> [..212.242.33.35][.5060]
update: [...143] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.184.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...144] [ip4][..udp] [....192.168.1.2][.2773] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1224,19 +1224,19 @@
update: [...151] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2782] [DNS][Unknown][Network][Acceptable]
update: [...160] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...158] [ip4][..udp] [....200.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- update: [...159] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][35721]
- new: [...175] [ip4][..udp] [....192.168.1.2][.2791] -> [...192.168.67.1][...53]
+ update: [...159] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][35721]
+ new: [...175] [ip4][..udp] [....192.168.1.2][.2791] -> [...192.168.67.1][...53]
detected: [...175] [ip4][..udp] [....192.168.1.2][.2791] -> [...192.168.67.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
- new: [...176] [ip4][..udp] [....192.168.1.2][.2792] -> [....192.168.1.1][...53]
+ new: [...176] [ip4][..udp] [....192.168.1.2][.2792] -> [....192.168.1.1][...53]
detected: [...176] [ip4][..udp] [....192.168.1.2][.2792] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [...177] [ip4][..udp] [....192.168.1.1][...53] -> [....240.168.1.2][.2792]
+ new: [...177] [ip4][..udp] [....192.168.1.1][...53] -> [....240.168.1.2][.2792]
detected: [...177] [ip4][..udp] [....192.168.1.1][...53] -> [....240.168.1.2][.2792] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-a?dr.arpa]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
- update: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
- update: [...162] [ip4][..udp] [..212.242.33.35][.9587] -> [....192.168.1.2][..196]
- update: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1]
+ update: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
+ update: [...162] [ip4][..udp] [..212.242.33.35][.9587] -> [....192.168.1.2][..196]
+ update: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1]
update: [...161] [ip4][..udp] [....192.168.1.2][.2786] -> [....192.168.1.3][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
update: [...163] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.3.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1249,9 +1249,9 @@
idle: [...146] [ip4][..udp] [....192.168.9.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...169] [ip4][..udp] [..212.242.33.35][.5060] -> [...192.37.115.0][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
- update: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
+ update: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
- update: [...152] [ip4][..udp] [....192.168.1.6][.5060] -> [..212.242.33.35][.5060]
+ update: [...152] [ip4][..udp] [....192.168.1.6][.5060] -> [..212.242.33.35][.5060]
update: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
@@ -1277,14 +1277,14 @@
update: [...174] [ip4][..udp] [....192.168.1.2][.2791] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...171] [ip4][..udp] [...192.168.1.53][.2791] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...158] [ip4][..udp] [....200.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- update: [...159] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][35721]
- new: [...178] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.112][..137]
+ update: [...159] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][35721]
+ new: [...178] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.112][..137]
detected: [...178] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.112][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
- new: [...179] [ip4][..udp] [....192.136.1.2][..137] -> [..192.168.1.255][..137]
+ new: [...179] [ip4][..udp] [....192.136.1.2][..137] -> [..192.168.1.255][..137]
detected: [...179] [ip4][..udp] [....192.136.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][5ci_dombin]
guessed: [...152] [ip4][..udp] [....192.168.1.6][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
RISK: Unidirectional Traffic
- idle: [...152] [ip4][..udp] [....192.168.1.6][.5060] -> [..212.242.33.35][.5060]
+ idle: [...152] [ip4][..udp] [....192.168.1.6][.5060] -> [..212.242.33.35][.5060]
idle: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
idle: [...147] [ip4][..udp] [....192.168.1.2][.2775] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1295,10 +1295,10 @@
idle: [...150] [ip4][..udp] [...192.168.33.2][.2782] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...169] [ip4][..udp] [..212.242.33.35][.5060] -> [...192.37.115.0][.5060] [SIP][Unknown][VoIP][Acceptable]
- update: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255]
- update: [...162] [ip4][..udp] [..212.242.33.35][.9587] -> [....192.168.1.2][..196]
+ update: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255]
+ update: [...162] [ip4][..udp] [..212.242.33.35][.9587] -> [....192.168.1.2][..196]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
- update: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
+ update: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...172] [ip4][..udp] [....192.168.1.2][..137] -> [..192.194.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
@@ -1326,15 +1326,15 @@
update: [...158] [ip4][..udp] [....200.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...177] [ip4][..udp] [....192.168.1.1][...53] -> [....240.168.1.2][.2792] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
- update: [...159] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][35721]
- update: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
+ update: [...159] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][35721]
+ update: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
not-detected: [...162] [ip4][..udp] [..212.242.33.35][.9587] -> [....192.168.1.2][..196] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...162] [ip4][..udp] [..212.242.33.35][.9587] -> [....192.168.1.2][..196]
+ idle: [...162] [ip4][..udp] [..212.242.33.35][.9587] -> [....192.168.1.2][..196]
not-detected: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1]
+ idle: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1]
idle: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Unidirectional Traffic
@@ -1347,15 +1347,15 @@
idle: [...163] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.3.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...158] [ip4][..udp] [....200.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
guessed: [...159] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][35721] [NetBIOS][Unknown][System][Acceptable][]
- idle: [...159] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][35721]
+ idle: [...159] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][35721]
update: [...169] [ip4][..udp] [..212.242.33.35][.5060] -> [...192.37.115.0][.5060] [SIP][Unknown][VoIP][Acceptable]
- update: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2]
- update: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1]
- update: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1]
+ update: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2]
+ update: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1]
+ update: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...179] [ip4][..udp] [....192.136.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...178] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.112][..137] [NetBIOS][Unknown][System][Acceptable]
- update: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
+ update: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [...172] [ip4][..udp] [....192.168.1.2][..137] -> [..192.194.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1372,17 +1372,17 @@
update: [...176] [ip4][..udp] [....192.168.1.2][.2792] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...177] [ip4][..udp] [....192.168.1.1][...53] -> [....240.168.1.2][.2792] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
- update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
- new: [...180] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..138]
+ update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
+ new: [...180] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..138]
detected: [...180] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][lab111]
RISK: Unsafe Protocol
- new: [...181] [ip4][..udp] [.192.184.189.41][..137] -> [..192.168.1.255][..137]
+ new: [...181] [ip4][..udp] [.192.184.189.41][..137] -> [..192.168.1.255][..137]
detected: [...181] [ip4][..udp] [.192.184.189.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][workg]
- new: [...182] [ip4][..udp] [...192.168.1.41][..137] -> [..192.168.1.255][..137]
+ new: [...182] [ip4][..udp] [...192.168.1.41][..137] -> [..192.168.1.255][..137]
detected: [...182] [ip4][..udp] [...192.168.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][workgroup]
- new: [...183] [ip4][..udp] [...192.168.1.41][..137] -> [..107.168.1.255][..137]
+ new: [...183] [ip4][..udp] [...192.168.1.41][..137] -> [..107.168.1.255][..137]
detected: [...183] [ip4][..udp] [...192.168.1.41][..137] -> [..107.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][workgroup]
- new: [...184] [ip4][..udp] [.....115.0.1.41][..137] -> [..192.168.1.255][..137]
+ new: [...184] [ip4][..udp] [.....115.0.1.41][..137] -> [..192.168.1.255][..137]
detected: [...184] [ip4][..udp] [.....115.0.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][workgroup]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
idle: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1390,19 +1390,19 @@
idle: [...165] [ip4][..udp] [....192.168.1.2][.2788] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Unidirectional Traffic
- update: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
- new: [...185] [ip4][..udp] [...192.168.1.41][..137] -> [.192.168.37.115][..137]
+ update: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
+ new: [...185] [ip4][..udp] [...192.168.1.41][..137] -> [.192.168.37.115][..137]
detected: [...185] [ip4][..udp] [...192.168.1.41][..137] -> [.192.168.37.115][..137] [NetBIOS][Unknown][System][Acceptable][workgroup]
idle: [...169] [ip4][..udp] [..212.242.33.35][.5060] -> [...192.37.115.0][.5060] [SIP][Unknown][VoIP][Acceptable]
idle: [...168] [ip4][..udp] [....192.168.1.2][.2790] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...171] [ip4][..udp] [...192.168.1.53][.2791] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...170] [ip4][..udp] [...192.168.79.2][.2791] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- new: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690]
- new: [...187] [ip4][..udp] [....192.168.1.2][..137] -> [..200.168.1.255][..137]
+ new: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690]
+ new: [...187] [ip4][..udp] [....192.168.1.2][..137] -> [..200.168.1.255][..137]
detected: [...187] [ip4][..udp] [....192.168.1.2][..137] -> [..200.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
not-detected: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
+ idle: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
idle: [...172] [ip4][..udp] [....192.168.1.2][..137] -> [..192.194.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [...175] [ip4][..udp] [....192.168.1.2][.2791] -> [...192.168.67.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
@@ -1414,16 +1414,16 @@
update: [...176] [ip4][..udp] [....192.168.1.2][.2792] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...177] [ip4][..udp] [....192.168.1.1][...53] -> [....240.168.1.2][.2792] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
- new: [...188] [ip4][..udp] [....192.168.1.2][...68] -> [....192.168.1.1][...67]
+ new: [...188] [ip4][..udp] [....192.168.1.2][...68] -> [....192.168.1.1][...67]
detected: [...188] [ip4][..udp] [....192.168.1.2][...68] -> [....192.168.1.1][...67] [DHCP][Unknown][Network][Acceptable][d002465]
- new: [...189] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..394]
+ new: [...189] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..394]
idle: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
idle: [...176] [ip4][..udp] [....192.168.1.2][.2792] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...177] [ip4][..udp] [....192.168.1.1][...53] -> [....240.168.1.2][.2792] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
not-detected: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
+ idle: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
update: [...183] [ip4][..udp] [...192.168.1.41][..137] -> [..107.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...184] [ip4][..udp] [.....115.0.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...181] [ip4][..udp] [.192.184.189.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
@@ -1435,21 +1435,21 @@
update: [...179] [ip4][..udp] [....192.136.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...178] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.112][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...187] [ip4][..udp] [....192.168.1.2][..137] -> [..200.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
- update: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690]
+ update: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690]
DAEMON-EVENT: [Processed: 409 pkts][ZLib][compressions: 0|diff: 0 / 0]
DAEMON-EVENT: [Flows][active: 40 / 189|skipped: 0|!detected: 16|guessed: 10|detection-updates: 65|updates: 489]
- new: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53]
+ new: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53]
detected: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][re-.sippstar.com]
detection-update: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][reg.sip?star.com]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
detection-update: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][reg.sippstar.com]
RISK: Non-Printable/Invalid Chars Detected
- new: [...191] [ip4][..udp] [....192.168.1.2][.2794] -> [..192.168.108.1][...53]
+ new: [...191] [ip4][..udp] [....192.168.1.2][.2794] -> [..192.168.108.1][...53]
detected: [...191] [ip4][..udp] [....192.168.1.2][.2794] -> [..192.168.108.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
idle: [...178] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.112][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [...179] [ip4][..udp] [....192.136.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
- update: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255]
+ update: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255]
update: [...188] [ip4][..udp] [....192.168.1.2][...68] -> [....192.168.1.1][...67] [DHCP][Unknown][Network][Acceptable]
update: [...183] [ip4][..udp] [...192.168.1.41][..137] -> [..107.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...184] [ip4][..udp] [.....115.0.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
@@ -1458,10 +1458,10 @@
update: [...182] [ip4][..udp] [...192.168.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...180] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
- update: [...189] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..394]
- new: [...192] [ip4][..udp] [....192.168.1.2][.2795] -> [....192.168.1.1][...53]
+ update: [...189] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..394]
+ new: [...192] [ip4][..udp] [....192.168.1.2][.2795] -> [....192.168.1.1][...53]
detected: [...192] [ip4][..udp] [....192.168.1.2][.2795] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
- new: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53]
+ new: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53]
detected: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
detection-update: [...192] [ip4][..udp] [....192.168.1.2][.2795] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
RISK: Unidirectional Traffic
@@ -1470,49 +1470,49 @@
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
detection-update: [...192] [ip4][..udp] [....192.168.1.2][.2795] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
detection-update: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
- new: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53]
+ new: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53]
detected: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.ak]
detection-update: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- new: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
+ new: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
detection-update: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...187] [ip4][..udp] [....192.168.1.2][..137] -> [..200.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
- update: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690]
- new: [...196] [ip4][..udp] [....192.168.1.2][.2796] -> [..192.168.1.129][...53]
+ update: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690]
+ new: [...196] [ip4][..udp] [....192.168.1.2][.2796] -> [..192.168.1.129][...53]
detected: [...196] [ip4][..udp] [....192.168.1.2][.2796] -> [..192.168.1.129][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
- new: [...197] [ip4][..udp] [....192.168.1.2][.2797] -> [....192.168.1.1][...53]
+ new: [...197] [ip4][..udp] [....192.168.1.2][.2797] -> [....192.168.1.1][...53]
detected: [...197] [ip4][..udp] [....192.168.1.2][.2797] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arp_]
RISK: Non-Printable/Invalid Chars Detected
detection-update: [...197] [ip4][..udp] [....192.168.1.2][.2797] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
RISK: Non-Printable/Invalid Chars Detected
- new: [...198] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060]
+ new: [...198] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060]
detected: [...198] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
- new: [...199] [ip4][..udp] [....192.168.1.2][.2798] -> [....192.168.1.1][...53]
+ new: [...199] [ip4][..udp] [....192.168.1.2][.2798] -> [....192.168.1.1][...53]
detected: [...199] [ip4][..udp] [....192.168.1.2][.2798] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- update: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2]
- update: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1]
- update: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1]
- update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
+ update: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2]
+ update: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1]
+ update: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1]
+ update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
detection-update: [...199] [ip4][..udp] [....192.168.1.2][.2798] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [2/16]
- new: [...200] [ip4][..udp] [....192.168.1.2][.2799] -> [....192.168.1.1][...53]
+ new: [...200] [ip4][..udp] [....192.168.1.2][.2799] -> [....192.168.1.1][...53]
detected: [...200] [ip4][..udp] [....192.168.1.2][.2799] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [...201] [ip4][..udp] [....192.168.1.1][...53] -> [..192.168.119.2][.2799]
+ new: [...201] [ip4][..udp] [....192.168.1.1][...53] -> [..192.168.119.2][.2799]
detected: [...201] [ip4][..udp] [....192.168.1.1][...53] -> [..192.168.119.2][.2799] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53]
+ new: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53]
detected: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_s?p._udp.sip.cybercity.dk]
RISK: Non-Printable/Invalid Chars Detected
detection-update: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- new: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21]
+ new: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21]
ERROR-EVENT: Unknown packet type [1/16]
- update: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
+ update: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
update: [...188] [ip4][..udp] [....192.168.1.2][...68] -> [....192.168.1.1][...67] [DHCP][Unknown][Network][Acceptable]
update: [...183] [ip4][..udp] [...192.168.1.41][..137] -> [..107.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...184] [ip4][..udp] [.....115.0.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
@@ -1521,24 +1521,24 @@
update: [...182] [ip4][..udp] [...192.168.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...180] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
- update: [...189] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..394]
+ update: [...189] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..394]
update: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
update: [...191] [ip4][..udp] [....192.168.1.2][.2794] -> [..192.168.108.1][...53] [DNS][Unknown][Network][Acceptable]
- new: [...204] [ip4][..udp] [....192.168.1.2][.2801] -> [....192.168.1.1][...53]
+ new: [...204] [ip4][..udp] [....192.168.1.2][.2801] -> [....192.168.1.1][...53]
detected: [...204] [ip4][..udp] [....192.168.1.2][.2801] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
detection-update: [...204] [ip4][..udp] [....192.168.1.2][.2801] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
- new: [...205] [ip4][....0] [....192.168.1.2] -> [..212.242.33.35]
- new: [...206] [ip4][..udp] [....192.168.1.2][.2568] -> [....192.168.1.1][...53]
+ new: [...205] [ip4][....0] [....192.168.1.2] -> [..212.242.33.35]
+ new: [...206] [ip4][..udp] [....192.168.1.2][.2568] -> [....192.168.1.1][...53]
detected: [...206] [ip4][..udp] [....192.168.1.2][.2568] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- new: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53]
+ new: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53]
detected: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- new: [...208] [ip4][..udp] [....192.168.1.2][18162] -> [....192.168.1.1][...53]
+ new: [...208] [ip4][..udp] [....192.168.1.2][18162] -> [....192.168.1.1][...53]
detected: [...208] [ip4][..udp] [....192.168.1.2][18162] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyhercity.dk]
detection-update: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
- update: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
+ update: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...187] [ip4][..udp] [....192.168.1.2][..137] -> [..200.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1547,11 +1547,11 @@
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
update: [...196] [ip4][..udp] [....192.168.1.2][.2796] -> [..192.168.1.129][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
- update: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690]
- new: [...209] [ip4][..udp] [....192.168.1.2][.2803] -> [....192.168.1.1][...53]
+ update: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690]
+ new: [...209] [ip4][..udp] [....192.168.1.2][.2803] -> [....192.168.1.1][...53]
detected: [...209] [ip4][..udp] [....192.168.1.2][.2803] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
detection-update: [...209] [ip4][..udp] [....192.168.1.2][.2803] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53]
+ new: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53]
detected: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
ERROR-EVENT: Unknown L3 protocol [1/16]
detection-update: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyberc?ty.dk]
@@ -1571,10 +1571,10 @@
ERROR-EVENT: Unknown packet type [2/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
idle: [...185] [ip4][..udp] [...192.168.1.41][..137] -> [.192.168.37.115][..137] [NetBIOS][Unknown][System][Acceptable]
- new: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
- new: [...212] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2805]
+ new: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
+ new: [...212] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2805]
detected: [...212] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2805] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53]
+ new: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53]
detected: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sim._udp.sip.c_ber_itm.dk]
RISK: Non-Printable/Invalid Chars Detected
detection-update: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.c4bercity.dk]
@@ -1589,10 +1589,10 @@
idle: [...187] [ip4][..udp] [....192.168.1.2][..137] -> [..200.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
not-detected: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690]
+ idle: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690]
update: [...188] [ip4][..udp] [....192.168.1.2][...68] -> [....192.168.1.1][...67] [DHCP][Unknown][Network][Acceptable]
- update: [...189] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..394]
- update: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21]
+ update: [...189] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..394]
+ update: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21]
update: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
update: [...191] [ip4][..udp] [....192.168.1.2][.2794] -> [..192.168.108.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1601,16 +1601,16 @@
update: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
- new: [...214] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2807]
+ new: [...214] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2807]
detected: [...214] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2807] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
- new: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709]
- new: [...216] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][...53]
+ new: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709]
+ new: [...216] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][...53]
detected: [...216] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...216] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
update: [...208] [ip4][..udp] [....192.168.1.2][18162] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- update: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
+ update: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...206] [ip4][..udp] [....192.168.1.2][.2568] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1624,28 +1624,28 @@
update: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [2/16]
- new: [...217] [ip4][..udp] [....192.168.1.2][19192] -> [....192.168.1.1][...53]
+ new: [...217] [ip4][..udp] [....192.168.1.2][19192] -> [....192.168.1.1][...53]
detected: [...217] [ip4][..udp] [....192.168.1.2][19192] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- new: [...218] [ip4][..udp] [....192.168.1.2][.2809] -> [....192.168.1.1][...53]
+ new: [...218] [ip4][..udp] [....192.168.1.2][.2809] -> [....192.168.1.1][...53]
detected: [...218] [ip4][..udp] [....192.168.1.2][.2809] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
detection-update: [...218] [ip4][..udp] [....192.168.1.2][.2809] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [...219] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][17860]
- new: [...220] [ip4][..udp] [....192.170.1.2][.2810] -> [....192.168.1.1][...53]
+ new: [...219] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][17860]
+ new: [...220] [ip4][..udp] [....192.170.1.2][.2810] -> [....192.168.1.1][...53]
detected: [...220] [ip4][..udp] [....192.170.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
- new: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53]
+ new: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53]
detected: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udq.sip.mybercity.dk]
detection-update: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
detection-update: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.nybercity.dk]
RISK: Unidirectional Traffic
- new: [...222] [ip4][..udp] [....128.168.1.2][.2810] -> [....192.168.1.1][...53]
+ new: [...222] [ip4][..udp] [....128.168.1.2][.2810] -> [....192.168.1.1][...53]
not-detected: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1]
+ idle: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1]
idle: [...188] [ip4][..udp] [....192.168.1.2][...68] -> [....192.168.1.1][...67] [DHCP][Unknown][Network][Acceptable]
guessed: [...189] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..394] [NetBIOS][Unknown][System][Acceptable][]
- idle: [...189] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..394]
+ idle: [...189] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..394]
update: [...198] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [...197] [ip4][..udp] [....192.168.1.2][.2797] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
@@ -1654,16 +1654,16 @@
update: [...209] [ip4][..udp] [....192.168.1.2][.2803] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- new: [...223] [ip4][..udp] [....192.168.1.2][.2811] -> [....192.168.1.1][...53]
+ new: [...223] [ip4][..udp] [....192.168.1.2][.2811] -> [....192.168.1.1][...53]
detected: [...223] [ip4][..udp] [....192.168.1.2][.2811] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
- new: [...224] [ip4][..udp] [..192.168.233.1][...53] -> [....192.168.1.2][.2811]
+ new: [...224] [ip4][..udp] [..192.168.233.1][...53] -> [....192.168.1.2][.2811]
detected: [...224] [ip4][..udp] [..192.168.233.1][...53] -> [....192.168.1.2][.2811] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
ERROR-EVENT: Unknown packet type [1/16]
ERROR-EVENT: Unknown packet type [2/16]
- new: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905]
- update: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255]
- update: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21]
+ new: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905]
+ update: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255]
+ update: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21]
update: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
update: [...191] [ip4][..udp] [....192.168.1.2][.2794] -> [..192.168.108.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1671,11 +1671,11 @@
update: [...201] [ip4][..udp] [....192.168.1.1][...53] -> [..192.168.119.2][.2799] [DNS][Unknown][Network][Acceptable]
update: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- update: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
+ update: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
update: [...212] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2805] [DNS][Unknown][Network][Acceptable]
update: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- new: [...226] [ip4][..udp] [....192.168.1.2][.2812] -> [....192.168.1.1][...53]
+ new: [...226] [ip4][..udp] [....192.168.1.2][.2812] -> [....192.168.1.1][...53]
detected: [...226] [ip4][..udp] [....192.168.1.2][.2812] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyaercity.dk]
detection-update: [...226] [ip4][..udp] [....192.168.1.2][.2812] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
@@ -1684,14 +1684,14 @@
RISK: Non-Printable/Invalid Chars Detected
idle: [...191] [ip4][..udp] [....192.168.1.2][.2794] -> [..192.168.108.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...208] [ip4][..udp] [....192.168.1.2][18162] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- update: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
- update: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2]
- update: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1]
+ update: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
+ update: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2]
+ update: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...198] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
- update: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709]
+ update: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709]
update: [...206] [ip4][..udp] [....192.168.1.2][.2568] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- update: [...222] [ip4][..udp] [....128.168.1.2][.2810] -> [....192.168.1.1][...53]
+ update: [...222] [ip4][..udp] [....128.168.1.2][.2810] -> [....192.168.1.1][...53]
update: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...192] [ip4][..udp] [....192.168.1.2][.2795] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1717,66 +1717,66 @@
update: [...218] [ip4][..udp] [....192.168.1.2][.2809] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
- update: [...219] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][17860]
- update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
+ update: [...219] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][17860]
+ update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
update: [...220] [ip4][..udp] [....192.170.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
- new: [...227] [ip4][..udp] [....192.168.1.2][.2813] -> [....192.168.1.1][...53]
+ new: [...227] [ip4][..udp] [....192.168.1.2][.2813] -> [....192.168.1.1][...53]
detected: [...227] [ip4][..udp] [....192.168.1.2][.2813] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127?in-ad_r?arpa???]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
- new: [...228] [ip4][..udp] [....192.168.1.2][.2814] -> [....192.168.1.1][...53]
+ new: [...228] [ip4][..udp] [....192.168.1.2][.2814] -> [....192.168.1.1][...53]
detected: [...228] [ip4][..udp] [....192.168.1.2][.2814] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
ERROR-EVENT: Unknown packet type [4/16]
ERROR-EVENT: Unknown packet type [5/16]
- new: [...229] [ip4][..udp] [....192.168.1.2][29440] -> [...192.168.1.37][..137]
+ new: [...229] [ip4][..udp] [....192.168.1.2][29440] -> [...192.168.1.37][..137]
detected: [...229] [ip4][..udp] [....192.168.1.2][29440] -> [...192.168.1.37][..137] [NetBIOS][Unknown][System][Acceptable][]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [6/16]
detection-update: [...228] [ip4][..udp] [....192.168.1.2][.2814] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sib._udp.sip.cybercity.dk]
RISK: Malformed Packet, Unidirectional Traffic
not-detected: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
+ idle: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
idle: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...192] [ip4][..udp] [....192.168.1.2][.2795] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...196] [ip4][..udp] [....192.168.1.2][.2796] -> [..192.168.1.129][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
idle: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- update: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
- update: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21]
+ update: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
+ update: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21]
update: [...200] [ip4][..udp] [....192.168.1.2][.2799] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...201] [ip4][..udp] [....192.168.1.1][...53] -> [..192.168.119.2][.2799] [DNS][Unknown][Network][Acceptable]
update: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- update: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
+ update: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
update: [...212] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2805] [DNS][Unknown][Network][Acceptable]
update: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
update: [...223] [ip4][..udp] [....192.168.1.2][.2811] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...224] [ip4][..udp] [..192.168.233.1][...53] -> [....192.168.1.2][.2811] [DNS][Unknown][Network][Acceptable]
- update: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905]
- new: [...230] [ip4][..udp] [....192.168.1.2][.2815] -> [....192.168.1.1][...53]
+ update: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905]
+ new: [...230] [ip4][..udp] [....192.168.1.2][.2815] -> [....192.168.1.1][...53]
detected: [...230] [ip4][..udp] [....192.168.1.2][.2815] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Error Code
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
- new: [...231] [ip4][..udp] [....192.168.1.2][.2816] -> [....192.168.1.1][...53]
+ new: [...231] [ip4][..udp] [....192.168.1.2][.2816] -> [....192.168.1.1][...53]
detected: [...231] [ip4][..udp] [....192.168.1.2][.2816] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][?sip._udp.shp.cybercity.dk]
RISK: Non-Printable/Invalid Chars Detected
- new: [...232] [ip4][..udp] [....192.168.1.2][.5060] -> [.212.242.33.201][.5060]
+ new: [...232] [ip4][..udp] [....192.168.1.2][.5060] -> [.212.242.33.201][.5060]
detected: [...232] [ip4][..udp] [....192.168.1.2][.5060] -> [.212.242.33.201][.5060] [SIP][Unknown][VoIP][Acceptable]
detection-update: [...231] [ip4][..udp] [....192.168.1.2][.2816] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udq.sip.cybercity.dk]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- new: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392]
- new: [...234] [ip4][..udp] [....192.168.1.2][30000] -> [....37.115.0.36][40392]
- new: [...235] [ip4][..udp] [....192.168.1.2][30000] -> [..212.242.33.36][40392]
+ new: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392]
+ new: [...234] [ip4][..udp] [....192.168.1.2][30000] -> [....37.115.0.36][40392]
+ new: [...235] [ip4][..udp] [....192.168.1.2][30000] -> [..212.242.33.36][40392]
detected: [...235] [ip4][..udp] [....192.168.1.2][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
- new: [...236] [ip4][..udp] [....192.168.1.2][30000] -> [..214.242.33.36][40392]
- new: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392]
+ new: [...236] [ip4][..udp] [....192.168.1.2][30000] -> [..214.242.33.36][40392]
+ new: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392]
ERROR-EVENT: Unknown packet type [2/16]
detection-update: [...231] [ip4][..udp] [....192.168.1.2][.2816] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
@@ -1785,14 +1785,14 @@
RISK: Non-Printable/Invalid Chars Detected
idle: [...199] [ip4][..udp] [....192.168.1.2][.2798] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
- update: [...205] [ip4][....0] [....192.168.1.2] -> [..212.242.33.35]
- new: [...238] [ip4][..udp] [....192.168.1.2][.2822] -> [....192.168.1.1][...53]
+ update: [...205] [ip4][....0] [....192.168.1.2] -> [..212.242.33.35]
+ new: [...238] [ip4][..udp] [....192.168.1.2][.2822] -> [....192.168.1.1][...53]
detected: [...238] [ip4][..udp] [....192.168.1.2][.2822] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.1?7.in-addr.arpa]
RISK: Non-Printable/Invalid Chars Detected
- new: [...239] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.234.33.35][.5060]
+ new: [...239] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.234.33.35][.5060]
detected: [...239] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.234.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
- new: [...240] [ip4][..udp] [....192.168.1.2][.2823] -> [....192.168.1.1][...53]
+ new: [...240] [ip4][..udp] [....192.168.1.2][.2823] -> [....192.168.1.1][...53]
detected: [...240] [ip4][..udp] [....192.168.1.2][.2823] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...240] [ip4][..udp] [....192.168.1.2][.2823] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
@@ -1802,10 +1802,10 @@
detection-update: [...240] [ip4][..udp] [....192.168.1.2][.2823] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
not-detected: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255] [Unknown][Unknown][Unrated]
- idle: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255]
+ idle: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255]
not-detected: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21]
+ idle: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21]
idle: [...201] [ip4][..udp] [....192.168.1.1][...53] -> [..192.168.119.2][.2799] [DNS][Unknown][Network][Acceptable]
idle: [...200] [ip4][..udp] [....192.168.1.2][.2799] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1813,9 +1813,9 @@
update: [...208] [ip4][..udp] [....192.168.1.2][18162] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...198] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
- update: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709]
+ update: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709]
update: [...206] [ip4][..udp] [....192.168.1.2][.2568] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- update: [...222] [ip4][..udp] [....128.168.1.2][.2810] -> [....192.168.1.1][...53]
+ update: [...222] [ip4][..udp] [....128.168.1.2][.2810] -> [....192.168.1.1][...53]
update: [...204] [ip4][..udp] [....192.168.1.2][.2801] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1833,14 +1833,14 @@
RISK: Unidirectional Traffic
update: [...226] [ip4][..udp] [....192.168.1.2][.2812] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
- update: [...219] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][17860]
+ update: [...219] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][17860]
update: [...220] [ip4][..udp] [....192.170.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
- new: [...241] [ip4][..udp] [....192.168.1.2][.2824] -> [....192.168.1.1][...53]
+ new: [...241] [ip4][..udp] [....192.168.1.2][.2824] -> [....192.168.1.1][...53]
detected: [...241] [ip4][..udp] [....192.168.1.2][.2824] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
detection-update: [...241] [ip4][..udp] [....192.168.1.2][.2824] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
- new: [...242] [ip4][..udp] [....192.168.1.2][.2825] -> [....192.168.1.1][...53]
+ new: [...242] [ip4][..udp] [....192.168.1.2][.2825] -> [....192.168.1.1][...53]
detected: [...242] [ip4][..udp] [....192.168.1.2][.2825] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...242] [ip4][..udp] [....192.168.1.2][.2825] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Unidirectional Traffic
@@ -1854,7 +1854,7 @@
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
idle: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
- update: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
+ update: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
update: [...212] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2805] [DNS][Unknown][Network][Acceptable]
update: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
@@ -1866,11 +1866,11 @@
update: [...228] [ip4][..udp] [....192.168.1.2][.2814] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Unidirectional Traffic
update: [...229] [ip4][..udp] [....192.168.1.2][29440] -> [...192.168.1.37][..137] [NetBIOS][Unknown][System][Acceptable]
- update: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905]
- new: [...243] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138]
+ update: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905]
+ new: [...243] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138]
detected: [...243] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][d00]
RISK: Unsafe Protocol
- new: [...244] [ip4][..udp] [....192.168.1.2][.2826] -> [....192.168.1.1][...53]
+ new: [...244] [ip4][..udp] [....192.168.1.2][.2826] -> [....192.168.1.1][...53]
detected: [...244] [ip4][..udp] [....192.168.1.2][.2826] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.?.0.127.in-addr.arpa]
RISK: Non-Printable/Invalid Chars Detected
detection-update: [...244] [ip4][..udp] [....192.168.1.2][.2826] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
@@ -1883,47 +1883,47 @@
RISK: Malformed Packet, Error Code
update: [...231] [ip4][..udp] [....192.168.1.2][.2816] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- update: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392]
- update: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392]
+ update: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392]
+ update: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392]
update: [...235] [ip4][..udp] [....192.168.1.2][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
- update: [...236] [ip4][..udp] [....192.168.1.2][30000] -> [..214.242.33.36][40392]
- update: [...234] [ip4][..udp] [....192.168.1.2][30000] -> [....37.115.0.36][40392]
- new: [...245] [ip4][..udp] [....192.168.1.2][.2827] -> [..192.168.1.114][...53]
+ update: [...236] [ip4][..udp] [....192.168.1.2][30000] -> [..214.242.33.36][40392]
+ update: [...234] [ip4][..udp] [....192.168.1.2][30000] -> [....37.115.0.36][40392]
+ new: [...245] [ip4][..udp] [....192.168.1.2][.2827] -> [..192.168.1.114][...53]
detected: [...245] [ip4][..udp] [....192.168.1.2][.2827] -> [..192.168.1.114][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- new: [...246] [ip4][..udp] [....192.168.1.2][.2827] -> [....192.168.1.1][...53]
+ new: [...246] [ip4][..udp] [....192.168.1.2][.2827] -> [....192.168.1.1][...53]
detected: [...246] [ip4][..udp] [....192.168.1.2][.2827] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercimy.v?]
RISK: Non-Printable/Invalid Chars Detected
ERROR-EVENT: Unknown packet type [1/16]
- new: [...247] [ip4][..udp] [....192.168.1.2][.2827] -> [....192.170.1.1][...53]
+ new: [...247] [ip4][..udp] [....192.168.1.2][.2827] -> [....192.170.1.1][...53]
detected: [...247] [ip4][..udp] [....192.168.1.2][.2827] -> [....192.170.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyberc?ty.dk]
RISK: Non-Printable/Invalid Chars Detected
ERROR-EVENT: Unknown L3 protocol [2/16]
not-detected: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1]
+ idle: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1]
not-detected: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2] [Unknown][Unknown][Unrated]
- idle: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
+ idle: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
not-detected: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
+ idle: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
idle: [...212] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2805] [DNS][Unknown][Network][Acceptable]
update: [...239] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.234.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [...238] [ip4][..udp] [....192.168.1.2][.2822] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
update: [...240] [ip4][..udp] [....192.168.1.2][.2823] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- new: [...248] [ip4][..udp] [....192.168.1.2][.2828] -> [....192.168.1.1][...53]
+ new: [...248] [ip4][..udp] [....192.168.1.2][.2828] -> [....192.168.1.1][...53]
detected: [...248] [ip4][..udp] [....192.168.1.2][.2828] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- new: [...249] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2572]
+ new: [...249] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2572]
detected: [...249] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2572] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
- new: [...250] [ip4][..udp] [....192.168.1.2][...11] -> [..192.168.1.255][..137]
+ new: [...250] [ip4][..udp] [....192.168.1.2][...11] -> [..192.168.1.255][..137]
detected: [...250] [ip4][..udp] [....192.168.1.2][...11] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
- new: [...251] [ip4][..udp] [.....62.168.1.2][..137] -> [..192.168.1.255][..137]
+ new: [...251] [ip4][..udp] [.....62.168.1.2][..137] -> [..192.168.1.255][..137]
detected: [...251] [ip4][..udp] [.....62.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
not-detected: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709]
+ idle: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709]
idle: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
idle: [...214] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2807] [DNS][Unknown][Network][Acceptable]
@@ -1932,7 +1932,7 @@
RISK: Unidirectional Traffic
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...198] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
- update: [...222] [ip4][..udp] [....128.168.1.2][.2810] -> [....192.168.1.1][...53]
+ update: [...222] [ip4][..udp] [....128.168.1.2][.2810] -> [....192.168.1.1][...53]
update: [...217] [ip4][..udp] [....192.168.1.2][19192] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...218] [ip4][..udp] [....192.168.1.2][.2809] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1942,33 +1942,33 @@
update: [...241] [ip4][..udp] [....192.168.1.2][.2824] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...242] [ip4][..udp] [....192.168.1.2][.2825] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- update: [...219] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][17860]
+ update: [...219] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][17860]
update: [...220] [ip4][..udp] [....192.170.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
- new: [...252] [ip4][..udp] [....192.168.1.2][.2829] -> [....192.168.1.1][...53]
+ new: [...252] [ip4][..udp] [....192.168.1.2][.2829] -> [....192.168.1.1][...53]
detected: [...252] [ip4][..udp] [....192.168.1.2][.2829] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...252] [ip4][..udp] [....192.168.1.2][.2829] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
- new: [...253] [ip4][..udp] [...192.168.54.2][.2829] -> [....192.168.1.1][...53]
+ new: [...253] [ip4][..udp] [...192.168.54.2][.2829] -> [....192.168.1.1][...53]
detected: [...253] [ip4][..udp] [...192.168.54.2][.2829] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
- new: [...254] [ip4][..udp] [....192.168.1.2][.2830] -> [....192.168.1.1][...53]
+ new: [...254] [ip4][..udp] [....192.168.1.2][.2830] -> [....192.168.1.1][...53]
detected: [...254] [ip4][..udp] [....192.168.1.2][.2830] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
detection-update: [...254] [ip4][..udp] [....192.168.1.2][.2830] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
RISK: Unidirectional Traffic
- new: [...255] [ip4][..udp] [....116.168.1.2][.2829] -> [....192.168.1.1][...53]
+ new: [...255] [ip4][..udp] [....116.168.1.2][.2829] -> [....192.168.1.1][...53]
detected: [...255] [ip4][..udp] [....116.168.1.2][.2829] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
not-detected: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2]
+ idle: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2]
idle: [...217] [ip4][..udp] [....192.168.1.2][19192] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...218] [ip4][..udp] [....192.168.1.2][.2809] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Unidirectional Traffic
guessed: [...219] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][17860] [SIP][Unknown][VoIP][Acceptable]
RISK: Unidirectional Traffic
- idle: [...219] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][17860]
+ idle: [...219] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][17860]
idle: [...220] [ip4][..udp] [....192.170.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...243] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
@@ -1988,42 +1988,42 @@
update: [...244] [ip4][..udp] [....192.168.1.2][.2826] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
update: [...229] [ip4][..udp] [....192.168.1.2][29440] -> [...192.168.1.37][..137] [NetBIOS][Unknown][System][Acceptable]
- update: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905]
- update: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392]
- update: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392]
+ update: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905]
+ update: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392]
+ update: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392]
update: [...235] [ip4][..udp] [....192.168.1.2][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
- update: [...236] [ip4][..udp] [....192.168.1.2][30000] -> [..214.242.33.36][40392]
- update: [...234] [ip4][..udp] [....192.168.1.2][30000] -> [....37.115.0.36][40392]
+ update: [...236] [ip4][..udp] [....192.168.1.2][30000] -> [..214.242.33.36][40392]
+ update: [...234] [ip4][..udp] [....192.168.1.2][30000] -> [....37.115.0.36][40392]
detection-update: [...254] [ip4][..udp] [....192.168.1.2][.2830] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
- new: [...256] [ip4][..udp] [....192.168.1.2][.2831] -> [....192.168.1.1][...53]
+ new: [...256] [ip4][..udp] [....192.168.1.2][.2831] -> [....192.168.1.1][...53]
detected: [...256] [ip4][..udp] [....192.168.1.2][.2831] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
detection-update: [...256] [ip4][..udp] [....192.168.1.2][.2831] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
guessed: [...222] [ip4][..udp] [....128.168.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Unidirectional Traffic
- idle: [...222] [ip4][..udp] [....128.168.1.2][.2810] -> [....192.168.1.1][...53]
+ idle: [...222] [ip4][..udp] [....128.168.1.2][.2810] -> [....192.168.1.1][...53]
update: [...245] [ip4][..udp] [....192.168.1.2][.2827] -> [..192.168.1.114][...53] [DNS][Unknown][Network][Acceptable]
update: [...246] [ip4][..udp] [....192.168.1.2][.2827] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
- new: [...257] [ip4][..udp] [....192.168.1.2][.2832] -> [....192.168.1.1][...53]
+ new: [...257] [ip4][..udp] [....192.168.1.2][.2832] -> [....192.168.1.1][...53]
detected: [...257] [ip4][..udp] [....192.168.1.2][.2832] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
guessed: [....26] [ip4][..tcp] [..147.234.1.253][...21] -> [......192.2.1.2][.2720] [FTP_CONTROL][Unknown][Download][Unsafe]
RISK: Unsafe Protocol, Unidirectional Traffic
- idle: [....26] [ip4][..tcp] [..147.234.1.253][...21] -> [......192.2.1.2][.2720]
+ idle: [....26] [ip4][..tcp] [..147.234.1.253][...21] -> [......192.2.1.2][.2720]
guessed: [....43] [ip4][..tcp] [.....37.115.0.2][.2639] -> [..147.234.1.253][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
RISK: Unsafe Protocol, Unidirectional Traffic
- idle: [....43] [ip4][..tcp] [.....37.115.0.2][.2639] -> [..147.234.1.253][...21]
+ idle: [....43] [ip4][..tcp] [.....37.115.0.2][.2639] -> [..147.234.1.253][...21]
guessed: [....38] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.117.1.253][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
RISK: Unsafe Protocol, Unidirectional Traffic
- idle: [....38] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.117.1.253][...21]
+ idle: [....38] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.117.1.253][...21]
not-detected: [....33] [ip4][..tcp] [..147.234.1.253][.1045] -> [....192.168.1.2][.2720] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [....33] [ip4][..tcp] [..147.234.1.253][.1045] -> [....192.168.1.2][.2720]
+ idle: [....33] [ip4][..tcp] [..147.234.1.253][.1045] -> [....192.168.1.2][.2720]
idle: [...251] [ip4][..udp] [.....62.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [...250] [ip4][..udp] [....192.168.1.2][...11] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
not-detected: [....29] [ip4][..tcp] [..147.234.1.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [....29] [ip4][..tcp] [..147.234.1.170][43690] -> [170.170.170.170][43690]
+ idle: [....29] [ip4][..tcp] [..147.234.1.170][43690] -> [170.170.170.170][43690]
idle: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable]
idle: [...243] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
RISK: Unsafe Protocol
@@ -2032,18 +2032,18 @@
idle: [...198] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
not-detected: [...205] [ip4][....0] [....192.168.1.2] -> [..212.242.33.35] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...205] [ip4][....0] [....192.168.1.2] -> [..212.242.33.35]
+ idle: [...205] [ip4][....0] [....192.168.1.2] -> [..212.242.33.35]
idle: [...249] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2572] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
guessed: [....31] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.168.1.2][.2208] [FTP_CONTROL][Unknown][Download][Unsafe]
RISK: Unsafe Protocol, Unidirectional Traffic
- idle: [....31] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.168.1.2][.2208]
+ idle: [....31] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.168.1.2][.2208]
not-detected: [....42] [ip4][..tcp] [..147.234.1.253][58999] -> [....192.232.1.2][.2721] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [....42] [ip4][..tcp] [..147.234.1.253][58999] -> [....192.232.1.2][.2721]
+ idle: [....42] [ip4][..tcp] [..147.234.1.253][58999] -> [....192.232.1.2][.2721]
not-detected: [....39] [ip4][..tcp] [....192.168.1.6][.2721] -> [..147.234.1.253][58999] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [....39] [ip4][..tcp] [....192.168.1.6][.2721] -> [..147.234.1.253][58999]
+ idle: [....39] [ip4][..tcp] [....192.168.1.6][.2721] -> [..147.234.1.253][58999]
idle: [...255] [ip4][..udp] [....116.168.1.2][.2829] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...224] [ip4][..udp] [..192.168.233.1][...53] -> [....192.168.1.2][.2811] [DNS][Unknown][Network][Acceptable]
idle: [...223] [ip4][..udp] [....192.168.1.2][.2811] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -2080,60 +2080,60 @@
idle: [...257] [ip4][..udp] [....192.168.1.2][.2832] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
not-detected: [....40] [ip4][..tcp] [...37.115.0.253][58999] -> [....192.168.1.2][.2721] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [....40] [ip4][..tcp] [...37.115.0.253][58999] -> [....192.168.1.2][.2721]
+ idle: [....40] [ip4][..tcp] [...37.115.0.253][58999] -> [....192.168.1.2][.2721]
idle: [...229] [ip4][..udp] [....192.168.1.2][29440] -> [...192.168.1.37][..137] [NetBIOS][Unknown][System][Acceptable]
guessed: [....20] [ip4][..tcp] [...192.168.1.71][.2718] -> [.147.137.21.122][..139] [NetBIOS][Unknown][System][Acceptable][]
RISK: Unidirectional Traffic
- idle: [....20] [ip4][..tcp] [...192.168.1.71][.2718] -> [.147.137.21.122][..139]
+ idle: [....20] [ip4][..tcp] [...192.168.1.71][.2718] -> [.147.137.21.122][..139]
guessed: [....19] [ip4][..tcp] [....192.168.1.2][.2718] -> [..147.137.21.94][..139] [NetBIOS][Unknown][System][Acceptable][]
RISK: Unidirectional Traffic
- idle: [....19] [ip4][..tcp] [....192.168.1.2][.2718] -> [..147.137.21.94][..139]
+ idle: [....19] [ip4][..tcp] [....192.168.1.2][.2718] -> [..147.137.21.94][..139]
guessed: [....35] [ip4][..tcp] [..147.234.1.253][...21] -> [.....84.168.1.2][.2720] [FTP_CONTROL][Unknown][Download][Unsafe]
RISK: Unsafe Protocol, Unidirectional Traffic
- idle: [....35] [ip4][..tcp] [..147.234.1.253][...21] -> [.....84.168.1.2][.2720]
+ idle: [....35] [ip4][..tcp] [..147.234.1.253][...21] -> [.....84.168.1.2][.2720]
guessed: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905] [NetBIOS][Unknown][System][Acceptable][]
- idle: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905]
+ idle: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905]
guessed: [....25] [ip4][..tcp] [....192.168.1.2][.2679] -> [..147.234.1.253][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
RISK: Unsafe Protocol, Clear-Text Credentials, Unidirectional Traffic
- idle: [....25] [ip4][..tcp] [....192.168.1.2][.2679] -> [..147.234.1.253][...21]
+ idle: [....25] [ip4][..tcp] [....192.168.1.2][.2679] -> [..147.234.1.253][...21]
not-detected: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
+ idle: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
guessed: [....36] [ip4][..tcp] [....192.112.1.2][.2720] -> [..147.234.1.253][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
RISK: Unsafe Protocol, Unidirectional Traffic
- idle: [....36] [ip4][..tcp] [....192.112.1.2][.2720] -> [..147.234.1.253][...21]
+ idle: [....36] [ip4][..tcp] [....192.112.1.2][.2720] -> [..147.234.1.253][...21]
not-detected: [....30] [ip4][..tcp] [..147.234.1.249][.2069] -> [....192.168.1.2][.2720] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [....30] [ip4][..tcp] [..147.234.1.249][.2069] -> [....192.168.1.2][.2720]
+ idle: [....30] [ip4][..tcp] [..147.234.1.249][.2069] -> [....192.168.1.2][.2720]
guessed: [....27] [ip4][..tcp] [..147.234.1.253][...21] -> [...192.168.1.66][.2720] [FTP_CONTROL][Unknown][Download][Unsafe]
RISK: Unsafe Protocol, Unidirectional Traffic
- idle: [....27] [ip4][..tcp] [..147.234.1.253][...21] -> [...192.168.1.66][.2720]
+ idle: [....27] [ip4][..tcp] [..147.234.1.253][...21] -> [...192.168.1.66][.2720]
guessed: [....34] [ip4][..tcp] [..147.234.1.253][...21] -> [...192.168.65.2][.2720] [FTP_CONTROL][Unknown][Download][Unsafe]
RISK: Unsafe Protocol, Unidirectional Traffic
- idle: [....34] [ip4][..tcp] [..147.234.1.253][...21] -> [...192.168.65.2][.2720]
+ idle: [....34] [ip4][..tcp] [..147.234.1.253][...21] -> [...192.168.65.2][.2720]
idle: [....32] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.168.1.2][.2732] [Protobuf][Unknown][Network][Safe]
not-detected: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392]
+ idle: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392]
not-detected: [....28] [ip4][..tcp] [..147.234.1.253][..120] -> [....192.168.1.2][.2720] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [....28] [ip4][..tcp] [..147.234.1.253][..120] -> [....192.168.1.2][.2720]
+ idle: [....28] [ip4][..tcp] [..147.234.1.253][..120] -> [....192.168.1.2][.2720]
idle: [...235] [ip4][..udp] [....192.168.1.2][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
not-detected: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392]
+ idle: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392]
not-detected: [...236] [ip4][..udp] [....192.168.1.2][30000] -> [..214.242.33.36][40392] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...236] [ip4][..udp] [....192.168.1.2][30000] -> [..214.242.33.36][40392]
+ idle: [...236] [ip4][..udp] [....192.168.1.2][30000] -> [..214.242.33.36][40392]
guessed: [....18] [ip4][..tcp] [....192.168.1.2][.2717] -> [..147.137.21.94][..445] [SMBv23][Unknown][System][Acceptable]
RISK: Unidirectional Traffic
- idle: [....18] [ip4][..tcp] [....192.168.1.2][.2717] -> [..147.137.21.94][..445]
+ idle: [....18] [ip4][..tcp] [....192.168.1.2][.2717] -> [..147.137.21.94][..445]
idle: [...247] [ip4][..udp] [....192.168.1.2][.2827] -> [....192.170.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
not-detected: [...234] [ip4][..udp] [....192.168.1.2][30000] -> [....37.115.0.36][40392] [Unknown][Unknown][Unrated]
RISK: Unidirectional Traffic
- idle: [...234] [ip4][..udp] [....192.168.1.2][30000] -> [....37.115.0.36][40392]
+ idle: [...234] [ip4][..udp] [....192.168.1.2][30000] -> [....37.115.0.36][40392]
guessed: [....24] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.169.1.2][.2720] [FTP_CONTROL][Unknown][Download][Unsafe]
RISK: Unsafe Protocol, Unidirectional Traffic
- idle: [....24] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.169.1.2][.2720]
+ idle: [....24] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.169.1.2][.2720]
DAEMON-EVENT: shutdown
Powered by cgit, Themed by Ted Yin.