aboutsummaryrefslogtreecommitdiff
path: root/test/results/flow-info/default/fuzz-2006-06-26-2594.pcap.out
diff options
context:
space:
mode:
Diffstat (limited to 'test/results/flow-info/default/fuzz-2006-06-26-2594.pcap.out')
-rw-r--r--test/results/flow-info/default/fuzz-2006-06-26-2594.pcap.out493
1 files changed, 184 insertions, 309 deletions
diff --git a/test/results/flow-info/default/fuzz-2006-06-26-2594.pcap.out b/test/results/flow-info/default/fuzz-2006-06-26-2594.pcap.out
index 3cc19b520..596013478 100644
--- a/test/results/flow-info/default/fuzz-2006-06-26-2594.pcap.out
+++ b/test/results/flow-info/default/fuzz-2006-06-26-2594.pcap.out
@@ -19,7 +19,6 @@
ERROR-EVENT: Unknown packet type [1/16]
new: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440]
detection-update: [.....7] [ip4][..udp] [....192.168.1.2][.2713] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
new: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53]
detected: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
detection-update: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
@@ -29,11 +28,9 @@
detected: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
new: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53]
detected: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- detection-update: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
detection-update: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyber?ity.dk]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
new: [....14] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53]
detected: [....14] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
@@ -57,12 +54,11 @@
update: [.....3] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [.....6] [ip4][..udp] [....192.168.1.3][...53] -> [....192.168.1.2][.2712] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
update: [.....7] [ip4][..udp] [....192.168.1.2][.2713] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [..192.168.1.110][.2713] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
new: [....21] [ip4][..udp] [....192.114.1.2][.2719] -> [....192.168.1.1][...53]
detected: [....21] [ip4][..udp] [....192.114.1.2][.2719] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][ftp.ecite?e.com]
RISK: Non-Printable/Invalid Chars Detected
@@ -104,8 +100,6 @@
detected: [....44] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.136.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
new: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53]
detected: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- detection-update: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
update: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973]
update: [....11] [ip4][..udp] [...192.168.1.52][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
@@ -119,14 +113,12 @@
update: [.....3] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [.....6] [ip4][..udp] [....192.168.1.3][...53] -> [....192.168.1.2][.2712] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
update: [.....7] [ip4][..udp] [....192.168.1.2][.2713] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [..192.168.1.110][.2713] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
detection-update: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- RISK: Unidirectional Traffic
new: [....46] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2723]
detected: [....46] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2723] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-adds.arpa]
new: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587]
@@ -134,7 +126,7 @@
detected: [....48] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp._s?.cybercity.dk]
RISK: Non-Printable/Invalid Chars Detected
detection-update: [....48] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
new: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481]
new: [....50] [ip4][..udp] [....192.168.1.2][.2724] -> [...192.168.17.1][...53]
detected: [....50] [ip4][..udp] [....192.168.1.2][.2724] -> [...192.168.17.1][...53] [DNS][Unknown][Network][Acceptable][_zip._udp.sip.cybercity.dk]
@@ -167,30 +159,28 @@
RISK: Unsafe Protocol
update: [.....6] [ip4][..udp] [....192.168.1.3][...53] -> [....192.168.1.2][.2712] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
update: [.....7] [ip4][..udp] [....192.168.1.2][.2713] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [.....8] [ip4][..udp] [..192.168.1.110][.2713] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
update: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....46] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2723] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-adds.arpa]
update: [....48] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [....50] [ip4][..udp] [....192.168.1.2][.2724] -> [...192.168.17.1][...53] [DNS][Unknown][Network][Acceptable]
- not-detected: [....41] [ip4][..tcp] [....192.168.1.2][.2721] -> [..147.234.1.253][58999] [Unknown][Unknown][Unrated]
+ not-detected: [....41] [ip4][..tcp] [....192.168.1.2][.2721] -> [..147.234.1.253][58999] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
end: [....41] [ip4][..tcp] [....192.168.1.2][.2721] -> [..147.234.1.253][58999]
guessed: [....23] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.234.1.253][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
RISK: Unsafe Protocol
end: [....23] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.234.1.253][...21]
- not-detected: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973] [Unknown][Unknown][Unrated]
+ not-detected: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [.....5] [ip4][..udp] [....192.168.1.2][.2712] -> [....192.168.1.1][49973]
idle: [....16] [ip4][..udp] [..208.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
idle: [....11] [ip4][..udp] [...192.168.1.52][.5060] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
- not-detected: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440] [Unknown][Unknown][Unrated]
+ not-detected: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [.....9] [ip4][..udp] [....192.168.1.2][.2597] -> [....192.168.1.1][29440]
idle: [....17] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.251][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous]
@@ -199,12 +189,11 @@
idle: [.....8] [ip4][..udp] [..192.168.1.110][.2713] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
idle: [.....7] [ip4][..udp] [....192.168.1.2][.2713] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
idle: [....10] [ip4][..udp] [....192.168.1.2][.2714] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
idle: [....13] [ip4][..udp] [....192.168.1.2][.2715] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
idle: [....14] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- not-detected: [....15] [ip4][..udp] [....192.168.1.1][.9587] -> [....192.168.1.2][..156] [Unknown][Unknown][Unrated]
+ not-detected: [....15] [ip4][..udp] [....192.168.1.1][.9587] -> [....192.168.1.2][..156] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [....15] [ip4][..udp] [....192.168.1.1][.9587] -> [....192.168.1.2][..156]
update: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587]
@@ -217,10 +206,9 @@
update: [....22] [ip4][..udp] [....192.168.1.2][.2719] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....46] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2723] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-adds.arpa]
update: [....48] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [....50] [ip4][..udp] [....192.168.1.2][.2724] -> [...192.168.17.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....51] [ip4][..udp] [....192.168.1.2][.2725] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....52] [ip4][..udp] [...192.168.1.46][...53] -> [....192.168.1.2][.2726] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
@@ -230,8 +218,6 @@
new: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53]
detected: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
- detection-update: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
idle: [....21] [ip4][..udp] [....192.114.1.2][.2719] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
idle: [....22] [ip4][..udp] [....192.168.1.2][.2719] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -243,10 +229,9 @@
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
update: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....46] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2723] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-adds.arpa]
update: [....48] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [....50] [ip4][..udp] [....192.168.1.2][.2724] -> [...192.168.17.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....51] [ip4][..udp] [....192.168.1.2][.2725] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....52] [ip4][..udp] [...192.168.1.46][...53] -> [....192.168.1.2][.2726] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
@@ -262,31 +247,27 @@
detected: [....60] [ip4][..udp] [....172.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Azure][Network][Acceptable][_sip._udp.sip.cybercity.dk]
idle: [....44] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.136.1.1][...53] [DNS][Unknown][Network][Acceptable]
detection-update: [....59] [ip4][..udp] [....192.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyberxity.dk]
- RISK: Unidirectional Traffic
detection-update: [....59] [ip4][..udp] [....192.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
detection-update: [....59] [ip4][..udp] [....192.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
new: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53]
detected: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-adds.arpa]
new: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735]
detected: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
- not-detected: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587] [Unknown][Unknown][Unrated]
+ not-detected: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [....47] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][.9587]
guessed: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481] [NetBIOS][Unknown][System][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....49] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][25481]
idle: [....45] [ip4][..udp] [....192.168.1.2][.2722] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
idle: [....46] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2723] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-adds.arpa]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169]
idle: [....50] [ip4][..udp] [....192.168.1.2][.2724] -> [...192.168.17.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....48] [ip4][..udp] [....192.168.1.2][.2724] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [....53] [ip4][..udp] [..192.168.1.202][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_dom]
update: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
new: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53]
detected: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
new: [....65] [ip4][..udp] [....192.168.1.2][.2684] -> [....192.168.1.1][...53]
@@ -295,9 +276,7 @@
new: [....66] [ip4][..udp] [....192.168.1.2][.2736] -> [...192.168.1.17][...53]
detected: [....66] [ip4][..udp] [....192.168.1.2][.2736] -> [...192.168.1.17][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
- detection-update: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
idle: [....51] [ip4][..udp] [....192.168.1.2][.2725] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
idle: [....52] [ip4][..udp] [...192.168.1.46][...53] -> [....192.168.1.2][.2726] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
update: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690]
@@ -307,11 +286,9 @@
update: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169]
update: [....60] [ip4][..udp] [....172.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Azure][Network][Acceptable]
update: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....56] [ip4][..udp] [....192.168.1.2][.2733] -> [..192.168.115.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....57] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....59] [ip4][..udp] [....192.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
new: [....67] [ip4][..udp] [....192.168.1.2][.2737] -> [....192.168.1.1][...53]
@@ -323,8 +300,6 @@
detected: [....69] [ip4][..udp] [....192.168.1.2][.2738] -> [...192.168.84.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercitu.dk]
new: [....70] [ip4][..udp] [....192.168.1.2][.2738] -> [....192.168.1.1][...53]
detected: [....70] [ip4][..udp] [....192.168.1.2][.2738] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- detection-update: [....70] [ip4][..udp] [....192.168.1.2][.2738] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
new: [....71] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53]
detected: [....71] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
new: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53]
@@ -334,10 +309,10 @@
detected: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyberci_s]
RISK: Non-Printable/Invalid Chars Detected
detection-update: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
ERROR-EVENT: Unknown packet type [1/16]
detection-update: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
new: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329]
new: [....75] [ip4][..udp] [....192.168.1.2][.2741] -> [....192.168.1.1][...53]
detected: [....75] [ip4][..udp] [....192.168.1.2][.2741] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
@@ -345,13 +320,11 @@
detected: [....76] [ip4][..udp] [..192.168.130.1][...53] -> [....192.168.1.2][.2741] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....65] [ip4][..udp] [....192.168.1.2][.2684] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [....66] [ip4][..udp] [....192.168.1.2][.2736] -> [...192.168.1.17][...53] [DNS][Unknown][Network][Acceptable]
new: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53]
detected: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
new: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
- detection-update: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
update: [....68] [ip4][..udp] [....192.168.1.2][20932] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
@@ -362,15 +335,12 @@
update: [....60] [ip4][..udp] [....172.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Azure][Network][Acceptable]
update: [....71] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....56] [ip4][..udp] [....192.168.1.2][.2733] -> [..192.168.115.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....57] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....59] [ip4][..udp] [....192.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....67] [ip4][..udp] [....192.168.1.2][.2737] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....69] [ip4][..udp] [....192.168.1.2][.2738] -> [...192.168.84.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....70] [ip4][..udp] [....192.168.1.2][.2738] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
ERROR-EVENT: Unknown packet type [1/16]
@@ -380,22 +350,19 @@
update: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35]
update: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
new: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53]
detected: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- detection-update: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
new: [....81] [ip4][..udp] [....192.168.1.2][...88] -> [..192.168.1.255][..137]
detected: [....81] [ip4][..udp] [....192.168.1.2][...88] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
- not-detected: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690] [Unknown][Unknown][Unrated]
+ not-detected: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [....55] [ip4][..udp] [....192.168.1.2][43690] -> [192.170.170.170][43690]
idle: [....53] [ip4][..udp] [..192.168.1.202][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_dom]
idle: [....54] [ip4][..udp] [....192.168.1.2][.2732] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....65] [ip4][..udp] [....192.168.1.2][.2684] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [....66] [ip4][..udp] [....192.168.1.2][.2736] -> [...192.168.1.17][...53] [DNS][Unknown][Network][Acceptable]
update: [....75] [ip4][..udp] [....192.168.1.2][.2741] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....76] [ip4][..udp] [..192.168.130.1][...53] -> [....192.168.1.2][.2741] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
@@ -409,13 +376,10 @@
new: [....86] [ip4][..udp] [...192.168.1.34][.2746] -> [....192.168.1.1][...53]
detected: [....86] [ip4][..udp] [...192.168.1.34][.2746] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp._s?p.brvjula.net]
RISK: Non-Printable/Invalid Chars Detected
- detection-update: [....84] [ip4][..udp] [....192.168.1.2][.2746] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.voip.brujula.net]
- RISK: Unidirectional Traffic
idle: [....60] [ip4][..udp] [....172.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Azure][Network][Acceptable]
idle: [....57] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
idle: [....56] [ip4][..udp] [....192.168.1.2][.2733] -> [..192.168.115.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....59] [ip4][..udp] [....192.168.1.2][.2734] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....68] [ip4][..udp] [....192.168.1.2][20932] -> [..212.242.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
@@ -425,9 +389,7 @@
update: [....67] [ip4][..udp] [....192.168.1.2][.2737] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....69] [ip4][..udp] [....192.168.1.2][.2738] -> [...192.168.84.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....70] [ip4][..udp] [....192.168.1.2][.2738] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
new: [....87] [ip4][..udp] [....192.168.1.2][.2747] -> [.....67.168.1.1][...53]
@@ -439,19 +401,17 @@
new: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53]
detected: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
new: [....91] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060]
- detection-update: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
detected: [....91] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
RISK: Unidirectional Traffic
detection-update: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
guessed: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169] [NetBIOS][Unknown][System][Acceptable][]
idle: [....63] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..169]
idle: [....61] [ip4][..udp] [....200.168.1.2][.2735] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....62] [ip4][..udp] [....253.168.1.1][...53] -> [....192.168.1.2][.2735] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [....79] [ip4][..udp] [....192.168.1.2][.2743] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
new: [....92] [ip4][..udp] [....192.168.1.2][.2749] -> [....192.168.1.1][...53]
detected: [....92] [ip4][..udp] [....192.168.1.2][.2749] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
@@ -461,23 +421,20 @@
ERROR-EVENT: Unknown packet type [1/16]
new: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53]
detected: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.voip.brujula.net]
- detection-update: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.voip.brujula.net]
- RISK: Unidirectional Traffic
new: [....95] [ip4][..udp] [....192.168.1.2][10942] -> [....192.168.1.1][...53]
detected: [....95] [ip4][..udp] [....192.168.1.2][10942] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.voip.brujula.net]
detection-update: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.voip.brujula.net]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
detection-update: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.vo_s]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [....81] [ip4][..udp] [....192.168.1.2][...88] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
update: [....65] [ip4][..udp] [....192.168.1.2][.2684] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [....66] [ip4][..udp] [....192.168.1.2][.2736] -> [...192.168.1.17][...53] [DNS][Unknown][Network][Acceptable]
update: [....75] [ip4][..udp] [....192.168.1.2][.2741] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....76] [ip4][..udp] [..192.168.130.1][...53] -> [....192.168.1.2][.2741] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329]
new: [....96] [ip4][..udp] [...192.168.1.18][.2751] -> [....192.168.1.1][...53]
detected: [....96] [ip4][..udp] [...192.168.1.18][.2751] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
@@ -487,8 +444,6 @@
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
new: [....98] [ip4][..udp] [....192.168.1.2][.2752] -> [....192.168.1.1][...53]
detected: [....98] [ip4][..udp] [....192.168.1.2][.2752] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- detection-update: [....98] [ip4][..udp] [....192.168.1.2][.2752] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
new: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060]
detected: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060] [SIP][Unknown][VoIP][Acceptable]
new: [...100] [ip4][..udp] [....192.168.1.2][.4901] -> [..200.68.120.81][29440]
@@ -508,12 +463,9 @@
update: [....67] [ip4][..udp] [....192.168.1.2][.2737] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....69] [ip4][..udp] [....192.168.1.2][.2738] -> [...192.168.84.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....70] [ip4][..udp] [....192.168.1.2][.2738] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....83] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2745] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....84] [ip4][..udp] [....192.168.1.2][.2746] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....86] [ip4][..udp] [...192.168.1.34][.2746] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
new: [...103] [ip4][..udp] [....192.169.1.2][.5060] -> [..200.68.120.81][.5060]
@@ -528,23 +480,23 @@
update: [....87] [ip4][..udp] [....192.168.1.2][.2747] -> [.....67.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....88] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2747] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
ERROR-EVENT: Unknown packet type [1/16]
new: [...106] [ip4][..udp] [....192.168.1.2][.2754] -> [....192.168.1.1][...53]
new: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
idle: [....65] [ip4][..udp] [....192.168.1.2][.2684] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....66] [ip4][..udp] [....192.168.1.2][.2736] -> [...192.168.1.17][...53] [DNS][Unknown][Network][Acceptable]
idle: [....64] [ip4][..udp] [....192.168.1.2][.2736] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [....93] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [....79] [ip4][..udp] [....192.168.1.2][.2743] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....92] [ip4][..udp] [....192.168.1.2][.2749] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [....95] [ip4][..udp] [....192.168.1.2][10942] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
new: [...108] [ip4][..udp] [.....14.168.1.2][.2754] -> [....192.168.1.1][...53]
detected: [...108] [ip4][..udp] [.....14.168.1.2][.2754] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
@@ -555,32 +507,30 @@
update: [....75] [ip4][..udp] [....192.168.1.2][.2741] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....76] [ip4][..udp] [..192.168.130.1][...53] -> [....192.168.1.2][.2741] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329]
new: [...109] [ip4][..udp] [....192.168.1.2][.2755] -> [....192.168.1.1][...53]
detected: [...109] [ip4][..udp] [....192.168.1.2][.2755] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
detection-update: [...109] [ip4][..udp] [....192.168.1.2][.2755] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
idle: [....71] [ip4][..udp] [....192.168.1.2][.2716] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....70] [ip4][..udp] [....192.168.1.2][.2738] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....96] [ip4][..udp] [...192.168.1.18][.2751] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [....97] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2751] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [....98] [ip4][..udp] [....192.168.1.2][.2752] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
DAEMON-EVENT: [Processed: 241 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 63 / 109|skipped: 0|!detected: 6|guessed: 4|detection-updates: 32|updates: 178]
+ DAEMON-EVENT: [Flows][active: 63 / 109|skipped: 0|!detected: 6|guessed: 4|detection-updates: 21|updates: 178]
new: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53]
detected: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_?ip._udp.sip.cybercit?.dk]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
detection-update: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
idle: [....72] [ip4][..udp] [....192.168.1.2][.2739] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
idle: [....73] [ip4][..udp] [....192.168.1.2][.2740] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
guessed: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329] [NetBIOS][Unknown][System][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [....74] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][.8329]
update: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
update: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060] [SIP][Unknown][VoIP][Acceptable]
@@ -598,15 +548,13 @@
update: [...101] [ip4][..udp] [....192.168.1.2][.2752] -> [....102.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....83] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2745] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....84] [ip4][..udp] [....192.168.1.2][.2746] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....86] [ip4][..udp] [...192.168.1.34][.2746] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
update: [....88] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2747] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...104] [ip4][..udp] [....192.168.1.2][.2753] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.527.in-addr.arpa]
update: [...100] [ip4][..udp] [....192.168.1.2][.4901] -> [..200.68.120.81][29440] [SIP][Unknown][VoIP][Acceptable]
RISK: Known Proto on Non Std Port
@@ -632,7 +580,7 @@
update: [....92] [ip4][..udp] [....192.168.1.2][.2749] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...106] [ip4][..udp] [....192.168.1.2][.2754] -> [....192.168.1.1][...53]
update: [....95] [ip4][..udp] [....192.168.1.2][10942] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
new: [...112] [ip4][..udp] [....192.168.1.2][.2640] -> [....192.168.1.1][...53]
@@ -644,22 +592,18 @@
new: [...115] [ip4][..udp] [....192.168.1.2][.2758] -> [....192.168.1.1][...53]
detected: [...115] [ip4][..udp] [....192.168.1.2][.2758] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...115] [ip4][..udp] [....192.168.1.2][.2758] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.gybercity.dk]
- RISK: Unidirectional Traffic
- not-detected: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690] [Unknown][Unknown][Unrated]
+ not-detected: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [....78] [ip4][..udp] [....192.168.1.2][.2730] -> [....192.168.1.1][43690]
idle: [....77] [ip4][..udp] [....192.168.1.2][.2742] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....81] [ip4][..udp] [....192.168.1.2][...88] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
update: [...108] [ip4][..udp] [.....14.168.1.2][.2754] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....96] [ip4][..udp] [...192.168.1.18][.2751] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [....97] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2751] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [....98] [ip4][..udp] [....192.168.1.2][.2752] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...109] [ip4][..udp] [....192.168.1.2][.2755] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
new: [...116] [ip4][..udp] [....192.168.1.2][.2759] -> [....192.168.1.1][...53]
detected: [...116] [ip4][..udp] [....192.168.1.2][.2759] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.sn-addr.arpa]
@@ -667,7 +611,7 @@
idle: [....79] [ip4][..udp] [....192.168.1.2][.2743] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1]
update: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53]
new: [...119] [ip4][..udp] [....192.168.1.2][.2760] -> [....192.168.1.1][...53]
@@ -676,10 +620,8 @@
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
ERROR-EVENT: Unknown packet type [4/16]
detection-update: [...119] [ip4][..udp] [....192.168.1.2][.2760] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
idle: [....81] [ip4][..udp] [....192.168.1.2][...88] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
idle: [....80] [ip4][..udp] [....192.168.1.2][.2744] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [....89] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.4932] [SIP][Unknown][VoIP][Acceptable]
update: [....91] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
@@ -696,16 +638,15 @@
update: [....93] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2733] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....83] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2745] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....84] [ip4][..udp] [....192.168.1.2][.2746] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [....86] [ip4][..udp] [...192.168.1.34][.2746] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
update: [....88] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2747] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [....92] [ip4][..udp] [....192.168.1.2][.2749] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...104] [ip4][..udp] [....192.168.1.2][.2753] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.527.in-addr.arpa]
update: [...106] [ip4][..udp] [....192.168.1.2][.2754] -> [....192.168.1.1][...53]
update: [...111] [ip4][..udp] [....192.168.1.2][.2757] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -717,12 +658,12 @@
new: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53]
detected: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
detection-update: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.sk]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
ERROR-EVENT: Unknown packet type [1/16]
ERROR-EVENT: Unknown L3 protocol [2/16]
- not-detected: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unrated]
+ not-detected: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [....82] [ip4][..udp] [..192.168.1.170][43690] -> [170.170.170.170][43690]
idle: [....83] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2745] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
@@ -738,32 +679,27 @@
new: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53]
detected: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
ERROR-EVENT: Unknown packet type [5/16]
- detection-update: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
new: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
detection-update: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.s?p.cibercity.dk]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
detection-update: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.s?p.cibercity.dk]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
idle: [....89] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.4932] [SIP][Unknown][VoIP][Acceptable]
idle: [....87] [ip4][..udp] [....192.168.1.2][.2747] -> [.....67.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [....84] [ip4][..udp] [....192.168.1.2][.2746] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
idle: [....88] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2747] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
idle: [....90] [ip4][..udp] [....192.168.1.2][.2748] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...108] [ip4][..udp] [.....14.168.1.2][.2754] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....96] [ip4][..udp] [...192.168.1.18][.2751] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [....97] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2751] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [....98] [ip4][..udp] [....192.168.1.2][.2752] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...109] [ip4][..udp] [....192.168.1.2][.2755] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
update: [...115] [ip4][..udp] [....192.168.1.2][.2758] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...116] [ip4][..udp] [....192.168.1.2][.2759] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
new: [...125] [ip4][..udp] [..192.168.1.110][.2765] -> [....192.168.1.1][...53]
detected: [...125] [ip4][..udp] [..192.168.1.110][.2765] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
@@ -775,7 +711,6 @@
new: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53]
detected: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybe0city.dk]
- RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
new: [...129] [ip4][..udp] [....192.168.1.2][14798] -> [....192.168.1.1][...53]
detected: [...129] [ip4][..udp] [....192.168.1.2][14798] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
@@ -783,7 +718,7 @@
idle: [....92] [ip4][..udp] [....192.168.1.2][.2749] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
idle: [....94] [ip4][..udp] [....192.168.1.2][.2750] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
idle: [....95] [ip4][..udp] [....192.168.1.2][10942] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [....91] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
@@ -801,7 +736,6 @@
update: [...111] [ip4][..udp] [....192.168.1.2][.2757] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...119] [ip4][..udp] [....192.168.1.2][.2760] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...100] [ip4][..udp] [....192.168.1.2][.4901] -> [..200.68.120.81][29440] [SIP][Unknown][VoIP][Acceptable]
RISK: Known Proto on Non Std Port
new: [...130] [ip4][..udp] [....192.168.1.2][.2767] -> [....192.168.1.1][...53]
@@ -814,7 +748,7 @@
detected: [...132] [ip4][..udp] [....192.168.1.2][35536] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
new: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4]
detection-update: [...131] [ip4][..udp] [....192.168.1.2][.2768] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
idle: [....99] [ip4][..udp] [....192.168.1.2][.4292] -> [..200.68.37.115][.5060] [SIP][Unknown][VoIP][Acceptable]
idle: [...102] [ip4][..udp] [.....192.98.1.2][.2752] -> [.....25.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...101] [ip4][..udp] [....192.168.1.2][.2752] -> [....102.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -824,7 +758,6 @@
idle: [....96] [ip4][..udp] [...192.168.1.18][.2751] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
idle: [....98] [ip4][..udp] [....192.168.1.2][.2752] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
idle: [...100] [ip4][..udp] [....192.168.1.2][.4901] -> [..200.68.120.81][29440] [SIP][Unknown][VoIP][Acceptable]
RISK: Known Proto on Non Std Port
update: [...112] [ip4][..udp] [....192.168.1.2][.2640] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -832,7 +765,7 @@
update: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53]
update: [...120] [ip4][..udp] [....192.168.1.2][.2761] -> [....192.168.1.1][...53]
update: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [...113] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
new: [...134] [ip4][..udp] [....192.168.1.2][.2769] -> [....192.168.1.1][...53]
@@ -846,7 +779,7 @@
update: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
update: [...122] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2763]
update: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
ERROR-EVENT: Unknown packet type [1/16]
ERROR-EVENT: Unknown packet type [2/16]
new: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1]
@@ -857,8 +790,6 @@
new: [...138] [ip4][..udp] [....192.168.1.2][..137] -> [..120.168.1.255][..137]
detected: [...138] [ip4][..udp] [....192.168.1.2][..137] -> [..120.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_doma]
ERROR-EVENT: Unknown packet type [4/16]
- detection-update: [...137] [ip4][..udp] [....192.168.1.2][.2770] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet, Unidirectional Traffic
idle: [....91] [ip4][..udp] [....192.168.1.2][.5060] -> [..200.68.120.81][.5060] [SIP][Unknown][VoIP][Acceptable]
RISK: Unidirectional Traffic
idle: [...108] [ip4][..udp] [.....14.168.1.2][.2754] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -872,20 +803,17 @@
update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
update: [...109] [ip4][..udp] [....192.168.1.2][.2755] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
update: [...111] [ip4][..udp] [....192.168.1.2][.2757] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...115] [ip4][..udp] [....192.168.1.2][.2758] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...116] [ip4][..udp] [....192.168.1.2][.2759] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...119] [ip4][..udp] [....192.168.1.2][.2760] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...125] [ip4][..udp] [..192.168.1.110][.2765] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...126] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2765] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...127] [ip4][..udp] [..192.168.1.172][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
new: [...139] [ip4][..udp] [...192.168.1.57][.2771] -> [....192.168.1.1][...53]
detected: [...139] [ip4][..udp] [...192.168.1.57][.2771] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
new: [...140] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2771]
@@ -897,20 +825,18 @@
update: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35]
update: [...130] [ip4][..udp] [....192.168.1.2][.2767] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...131] [ip4][..udp] [....192.168.1.2][.2768] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
new: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53]
detected: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
- detection-update: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
detection-update: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
new: [...143] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.184.1.1][...53]
detected: [...143] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.184.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
idle: [...110] [ip4][..udp] [....192.168.1.2][.2756] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
update: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
update: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4]
update: [...112] [ip4][..udp] [....192.168.1.2][.2640] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -918,10 +844,10 @@
update: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53]
update: [...120] [ip4][..udp] [....192.168.1.2][.2761] -> [....192.168.1.1][...53]
update: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [...122] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2763]
update: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...132] [ip4][..udp] [....192.168.1.2][35536] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...134] [ip4][..udp] [....192.168.1.2][.2769] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...113] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -942,38 +868,34 @@
update: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
update: [...115] [ip4][..udp] [....192.168.1.2][.2758] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...116] [ip4][..udp] [....192.168.1.2][.2759] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...119] [ip4][..udp] [....192.168.1.2][.2760] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...125] [ip4][..udp] [..192.168.1.110][.2765] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...126] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2765] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...127] [ip4][..udp] [..192.168.1.172][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...137] [ip4][..udp] [....192.168.1.2][.2770] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
new: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53]
detected: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
detection-update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
detection-update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
new: [...146] [ip4][..udp] [....192.168.9.2][.2774] -> [....192.168.1.1][...53]
detected: [...146] [ip4][..udp] [....192.168.9.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
detection-update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
guessed: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Unidirectional Traffic
idle: [...114] [ip4][..udp] [.192.168.37.115][.2758] -> [....128.168.1.1][...53]
idle: [...115] [ip4][..udp] [....192.168.1.2][.2758] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...141] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][d002465]
update: [...130] [ip4][..udp] [....192.168.1.2][.2767] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...131] [ip4][..udp] [....192.168.1.2][.2768] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [...139] [ip4][..udp] [...192.168.1.57][.2771] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...140] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2771] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
new: [...147] [ip4][..udp] [....192.168.1.2][.2775] -> [....192.168.1.1][...53]
@@ -983,27 +905,26 @@
RISK: Non-Printable/Invalid Chars Detected
idle: [...116] [ip4][..udp] [....192.168.1.2][.2759] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
new: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53]
detected: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
ERROR-EVENT: Unknown packet type [1/16]
detection-update: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
guessed: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Unidirectional Traffic
idle: [...118] [ip4][..udp] [.....192.22.1.2][.2760] -> [....192.168.1.1][...53]
idle: [...119] [ip4][..udp] [....192.168.1.2][.2760] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
update: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4]
update: [...120] [ip4][..udp] [....192.168.1.2][.2761] -> [....192.168.1.1][...53]
update: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [...122] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2763]
update: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...132] [ip4][..udp] [....192.168.1.2][35536] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...134] [ip4][..udp] [....192.168.1.2][.2769] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...144] [ip4][..udp] [....192.168.1.2][.2773] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1020,7 +941,7 @@
guessed: [...120] [ip4][..udp] [....192.168.1.2][.2761] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
idle: [...120] [ip4][..udp] [....192.168.1.2][.2761] -> [....192.168.1.1][...53]
idle: [...121] [ip4][..udp] [....192.168.1.2][.2762] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [...129] [ip4][..udp] [....192.168.1.2][14798] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [...138] [ip4][..udp] [....192.168.1.2][..137] -> [..120.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_doma]
@@ -1030,36 +951,33 @@
RISK: Malformed Packet
update: [...127] [ip4][..udp] [..192.168.1.172][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...137] [ip4][..udp] [....192.168.1.2][.2770] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
new: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53]
detected: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- detection-update: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [1/16]
new: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53]
detected: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet, Unidirectional Traffic
- not-detected: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unrated]
+ RISK: Malformed Packet
+ not-detected: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [...124] [ip4][..udp] [....192.168.1.2][43690] -> [170.170.170.170][43690]
guessed: [...122] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2763] [DNS][Unknown][Network][Acceptable][]
RISK: Unidirectional Traffic
idle: [...122] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2763]
idle: [...123] [ip4][..udp] [....192.168.1.2][.2764] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...141] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][d002465]
update: [...130] [ip4][..udp] [....192.168.1.2][.2767] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...131] [ip4][..udp] [....192.168.1.2][.2768] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [...139] [ip4][..udp] [...192.168.1.57][.2771] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...140] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2771] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...146] [ip4][..udp] [....192.168.9.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...147] [ip4][..udp] [....192.168.1.2][.2775] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
RISK: Non-Printable/Invalid Chars Detected
@@ -1074,14 +992,13 @@
RISK: Malformed Packet
idle: [...125] [ip4][..udp] [..192.168.1.110][.2765] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...128] [ip4][..udp] [....192.168.1.2][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
idle: [...127] [ip4][..udp] [..192.168.1.172][.2766] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4]
update: [...132] [ip4][..udp] [....192.168.1.2][35536] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...134] [ip4][..udp] [....192.168.1.2][.2769] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...144] [ip4][..udp] [....192.168.1.2][.2773] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769]
update: [...143] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.184.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
@@ -1091,7 +1008,7 @@
new: [...159] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][35721]
new: [...160] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53]
detected: [...160] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybevcity.dk]
- not-detected: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35] [Unknown][Unknown][Unrated]
+ not-detected: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [....58] [ip4][..120] [....192.168.1.2] -> [..212.242.33.35]
idle: [...130] [ip4][..udp] [....192.168.1.2][.2767] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
@@ -1100,9 +1017,9 @@
update: [...138] [ip4][..udp] [....192.168.1.2][..137] -> [..120.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_doma]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
update: [...137] [ip4][..udp] [....192.168.1.2][.2770] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...150] [ip4][..udp] [...192.168.33.2][.2782] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...151] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2782] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
@@ -1116,27 +1033,25 @@
new: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53]
detected: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
RISK: Non-Printable/Invalid Chars Detected
- detection-update: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
detection-update: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.?ip.kybermity.dk]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
detection-update: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- not-detected: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4] [Unknown][Unknown][Unrated]
+ RISK: Non-Printable/Invalid Chars Detected
+ not-detected: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [...133] [ip4][..udp] [.....94.168.1.2][.2768] -> [....192.168.1.1][....4]
idle: [...132] [ip4][..udp] [....192.168.1.2][35536] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...131] [ip4][..udp] [....192.168.1.2][.2768] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
idle: [...134] [ip4][..udp] [....192.168.1.2][.2769] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- not-detected: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769] [Unknown][Unknown][Unrated]
+ not-detected: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [...135] [ip4][..udp] [....192.168.1.1][..117] -> [....192.168.1.2][.2769]
update: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1]
update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
update: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
new: [...165] [ip4][..udp] [....192.168.1.2][.2788] -> [....192.168.1.1][...53]
detected: [...165] [ip4][..udp] [....192.168.1.2][.2788] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
new: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2]
@@ -1155,14 +1070,14 @@
new: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53]
detected: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
detection-update: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [...141] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][d002465]
update: [...139] [ip4][..udp] [...192.168.1.57][.2771] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...140] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2771] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...146] [ip4][..udp] [....192.168.9.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...147] [ip4][..udp] [....192.168.1.2][.2775] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
RISK: Non-Printable/Invalid Chars Detected
@@ -1187,7 +1102,7 @@
idle: [...138] [ip4][..udp] [....192.168.1.2][..137] -> [..120.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_doma]
idle: [...141] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][d002465]
idle: [...137] [ip4][..udp] [....192.168.1.2][.2770] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
idle: [...140] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2771] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
idle: [...139] [ip4][..udp] [...192.168.1.57][.2771] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [....12] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
@@ -1195,9 +1110,9 @@
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
update: [...144] [ip4][..udp] [....192.168.1.2][.2773] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...150] [ip4][..udp] [...192.168.33.2][.2782] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...151] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2782] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
@@ -1219,9 +1134,9 @@
RISK: Non-Printable/Invalid Chars Detected
update: [...163] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.3.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
idle: [...142] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
idle: [...144] [ip4][..udp] [....192.168.1.2][.2773] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...146] [ip4][..udp] [....192.168.9.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...143] [ip4][..udp] [....192.168.1.2][.2772] -> [....192.184.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1232,23 +1147,23 @@
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
update: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...147] [ip4][..udp] [....192.168.1.2][.2775] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
RISK: Non-Printable/Invalid Chars Detected
update: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...150] [ip4][..udp] [...192.168.33.2][.2782] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...151] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2782] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [...155] [ip4][..udp] [....192.168.1.2][.2784] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...156] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.5.2][.2784] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.aspa]
update: [...160] [ip4][..udp] [....192.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...165] [ip4][..udp] [....192.168.1.2][.2788] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [...168] [ip4][..udp] [....192.168.1.2][.2790] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...170] [ip4][..udp] [...192.168.79.2][.2791] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...174] [ip4][..udp] [....192.168.1.2][.2791] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1264,11 +1179,11 @@
RISK: Unidirectional Traffic
idle: [...152] [ip4][..udp] [....192.168.1.6][.5060] -> [..212.242.33.35][.5060]
idle: [...145] [ip4][..udp] [....192.168.1.2][.2774] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
idle: [...147] [ip4][..udp] [....192.168.1.2][.2775] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
RISK: Non-Printable/Invalid Chars Detected
idle: [...148] [ip4][..udp] [....192.168.1.2][.2776] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
idle: [...151] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2782] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
idle: [...150] [ip4][..udp] [...192.168.33.2][.2782] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
@@ -1280,7 +1195,7 @@
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
update: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [...155] [ip4][..udp] [....192.168.1.2][.2784] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...156] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.5.2][.2784] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.aspa]
@@ -1289,10 +1204,10 @@
RISK: Non-Printable/Invalid Chars Detected
update: [...163] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.3.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
update: [...165] [ip4][..udp] [....192.168.1.2][.2788] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [...168] [ip4][..udp] [....192.168.1.2][.2790] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...170] [ip4][..udp] [...192.168.79.2][.2791] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...174] [ip4][..udp] [....192.168.1.2][.2791] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1306,15 +1221,15 @@
update: [...172] [ip4][..udp] [....192.168.1.2][..137] -> [..192.194.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
update: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
- not-detected: [...162] [ip4][..udp] [..212.242.33.35][.9587] -> [....192.168.1.2][..196] [Unknown][Unknown][Unrated]
+ not-detected: [...162] [ip4][..udp] [..212.242.33.35][.9587] -> [....192.168.1.2][..196] [Unknown][Unknown][Unspecified][Unrated]
RISK: Susp Entropy, Unidirectional Traffic
idle: [...162] [ip4][..udp] [..212.242.33.35][.9587] -> [....192.168.1.2][..196]
- not-detected: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1] [Unknown][Unknown][Unrated]
+ not-detected: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [....85] [ip4][..240] [....192.168.1.2] -> [....192.168.1.1]
idle: [...154] [ip4][..udp] [......0.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...153] [ip4][..udp] [....192.168.1.2][.2783] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
idle: [...156] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.5.2][.2784] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.aspa]
idle: [...155] [ip4][..udp] [....192.168.1.2][.2784] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
@@ -1324,6 +1239,7 @@
idle: [...163] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.3.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...158] [ip4][..udp] [....200.168.1.2][.2785] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
guessed: [...159] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][35721] [NetBIOS][Unknown][System][Acceptable][]
+ RISK: Unidirectional Traffic
idle: [...159] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][35721]
update: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
update: [...179] [ip4][..udp] [....192.136.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][5ci_dombin]
@@ -1336,10 +1252,10 @@
update: [...178] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.112][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
update: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
update: [...165] [ip4][..udp] [....192.168.1.2][.2788] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [...168] [ip4][..udp] [....192.168.1.2][.2790] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...170] [ip4][..udp] [...192.168.79.2][.2791] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...174] [ip4][..udp] [....192.168.1.2][.2791] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1361,10 +1277,10 @@
detected: [...184] [ip4][..udp] [.....115.0.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][workgroup]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
idle: [...164] [ip4][..udp] [....192.168.1.2][.2787] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
idle: [...165] [ip4][..udp] [....192.168.1.2][.2788] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...167] [ip4][..udp] [....192.168.1.2][.2789] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
new: [...185] [ip4][..udp] [...192.168.1.41][..137] -> [.192.168.37.115][..137]
detected: [...185] [ip4][..udp] [...192.168.1.41][..137] -> [.192.168.37.115][..137] [NetBIOS][Unknown][System][Acceptable][workgroup]
@@ -1375,7 +1291,7 @@
new: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690]
new: [...187] [ip4][..udp] [....192.168.1.2][..137] -> [..200.168.1.255][..137]
detected: [...187] [ip4][..udp] [....192.168.1.2][..137] -> [..200.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
- not-detected: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unrated]
+ not-detected: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [...173] [ip4][..udp] [170.170.170.170][43690] -> [170.170.170.170][43690]
idle: [...175] [ip4][..udp] [....192.168.1.2][.2791] -> [...192.168.67.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1396,7 +1312,7 @@
guessed: [...177] [ip4][..udp] [....192.168.1.1][...53] -> [....240.168.1.2][.2792] [DNS][Unknown][Network][Acceptable][]
RISK: Unidirectional Traffic
idle: [...177] [ip4][..udp] [....192.168.1.1][...53] -> [....240.168.1.2][.2792]
- not-detected: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81] [Unknown][Unknown][Unrated]
+ not-detected: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [...107] [ip4][..118] [....192.168.1.2] -> [..200.68.120.81]
update: [...184] [ip4][..udp] [.....115.0.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][workgroup]
@@ -1411,11 +1327,11 @@
update: [...178] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.112][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
update: [...187] [ip4][..udp] [....192.168.1.2][..137] -> [..200.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
DAEMON-EVENT: [Processed: 409 pkts][ZLib][compressions: 0|diff: 0 / 0]
- DAEMON-EVENT: [Flows][active: 40 / 189|skipped: 0|!detected: 16|guessed: 14|detection-updates: 62|updates: 489]
+ DAEMON-EVENT: [Flows][active: 40 / 189|skipped: 0|!detected: 16|guessed: 14|detection-updates: 46|updates: 489]
new: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53]
detected: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][re-.sippstar.com]
detection-update: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][reg.sip?star.com]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
detection-update: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][reg.sippstar.com]
RISK: Non-Printable/Invalid Chars Detected
@@ -1437,21 +1353,16 @@
new: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53]
detected: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
detection-update: [...192] [ip4][..udp] [....192.168.1.2][.2795] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
- RISK: Unidirectional Traffic
- detection-update: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
- RISK: Unidirectional Traffic
- detection-update: [...192] [ip4][..udp] [....192.168.1.2][.2795] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
- RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
detection-update: [...192] [ip4][..udp] [....192.168.1.2][.2795] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
detection-update: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
new: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53]
detected: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.ak]
detection-update: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
new: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
detection-update: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
update: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
@@ -1473,8 +1384,6 @@
update: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1]
update: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1]
update: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
- detection-update: [...199] [ip4][..udp] [....192.168.1.2][.2798] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [2/16]
new: [...200] [ip4][..udp] [....192.168.1.2][.2799] -> [....192.168.1.1][...53]
detected: [...200] [ip4][..udp] [....192.168.1.2][.2799] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
@@ -1484,7 +1393,7 @@
detected: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_s?p._udp.sip.cybercity.dk]
RISK: Non-Printable/Invalid Chars Detected
detection-update: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
new: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21]
ERROR-EVENT: Unknown packet type [1/16]
update: [...184] [ip4][..udp] [.....115.0.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][workgroup]
@@ -1510,8 +1419,6 @@
detected: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
new: [...208] [ip4][..udp] [....192.168.1.2][18162] -> [....192.168.1.1][...53]
detected: [...208] [ip4][..udp] [....192.168.1.2][18162] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyhercity.dk]
- detection-update: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
update: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690]
update: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
@@ -1519,7 +1426,7 @@
update: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
update: [...192] [ip4][..udp] [....192.168.1.2][.2795] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
update: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...196] [ip4][..udp] [....192.168.1.2][.2796] -> [..192.168.1.129][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
new: [...209] [ip4][..udp] [....192.168.1.2][.2803] -> [....192.168.1.1][...53]
@@ -1529,7 +1436,7 @@
detected: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
ERROR-EVENT: Unknown L3 protocol [1/16]
detection-update: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyberc?ty.dk]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
idle: [...184] [ip4][..udp] [.....115.0.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][workgroup]
idle: [...183] [ip4][..udp] [...192.168.1.41][..137] -> [..107.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][workgroup]
idle: [...180] [ip4][..udp] [...192.168.1.41][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][lab111]
@@ -1538,9 +1445,8 @@
update: [...197] [ip4][..udp] [....192.168.1.2][.2797] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
RISK: Non-Printable/Invalid Chars Detected
update: [...199] [ip4][..udp] [....192.168.1.2][.2798] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
detection-update: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
ERROR-EVENT: Unknown packet type [2/16]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
idle: [...185] [ip4][..udp] [...192.168.1.41][..137] -> [.192.168.37.115][..137] [NetBIOS][Unknown][System][Acceptable][workgroup]
@@ -1551,14 +1457,14 @@
detected: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sim._udp.sip.c_ber_itm.dk]
RISK: Non-Printable/Invalid Chars Detected
detection-update: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.c4bercity.dk]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
detection-update: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
detection-update: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cxbercity.dk]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
detection-update: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.qk]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- not-detected: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690] [Unknown][Unknown][Unrated]
+ RISK: Non-Printable/Invalid Chars Detected
+ not-detected: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [...186] [ip4][..udp] [....192.168.1.2][43690] -> [192.168.170.170][43690]
idle: [...182] [ip4][..udp] [...192.168.1.41][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][workgroup]
@@ -1572,7 +1478,7 @@
update: [...200] [ip4][..udp] [....192.168.1.2][.2799] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...201] [ip4][..udp] [....192.168.1.1][...53] -> [..192.168.119.2][.2799] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
ERROR-EVENT: Unknown packet type [1/16]
new: [...214] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2807]
detected: [...214] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2807] [DNS][Unknown][Network][Acceptable][]
@@ -1580,8 +1486,6 @@
new: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709]
new: [...216] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][...53]
detected: [...216] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- detection-update: [...216] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
update: [...208] [ip4][..udp] [....192.168.1.2][18162] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
update: [.....1] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
@@ -1589,13 +1493,12 @@
update: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
update: [...192] [ip4][..udp] [....192.168.1.2][.2795] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
update: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...196] [ip4][..udp] [....192.168.1.2][.2796] -> [..192.168.1.129][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...204] [ip4][..udp] [....192.168.1.2][.2801] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
ERROR-EVENT: Unknown packet type [2/16]
new: [...217] [ip4][..udp] [....192.168.1.2][19192] -> [....192.168.1.1][...53]
detected: [...217] [ip4][..udp] [....192.168.1.2][19192] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
@@ -1610,11 +1513,9 @@
new: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53]
detected: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udq.sip.mybercity.dk]
detection-update: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
detection-update: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.nybercity.dk]
- RISK: Unidirectional Traffic
new: [...222] [ip4][..udp] [....128.168.1.2][.2810] -> [....192.168.1.1][...53]
- not-detected: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1] [Unknown][Unknown][Unrated]
+ not-detected: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [...136] [ip4][..127] [....192.168.1.2] -> [....192.168.1.1]
idle: [...188] [ip4][..udp] [....192.168.1.2][...68] -> [....192.168.1.1][...67] [DHCP][Unknown][Network][Acceptable][d002465]
@@ -1624,10 +1525,9 @@
update: [...197] [ip4][..udp] [....192.168.1.2][.2797] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
RISK: Non-Printable/Invalid Chars Detected
update: [...199] [ip4][..udp] [....192.168.1.2][.2798] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...209] [ip4][..udp] [....192.168.1.2][.2803] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
new: [...223] [ip4][..udp] [....192.168.1.2][.2811] -> [....192.168.1.1][...53]
detected: [...223] [ip4][..udp] [....192.168.1.2][.2811] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Malformed Packet
@@ -1644,17 +1544,15 @@
update: [...200] [ip4][..udp] [....192.168.1.2][.2799] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...201] [ip4][..udp] [....192.168.1.1][...53] -> [..192.168.119.2][.2799] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
update: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
update: [...212] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2805] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
new: [...226] [ip4][..udp] [....192.168.1.2][.2812] -> [....192.168.1.1][...53]
detected: [...226] [ip4][..udp] [....192.168.1.2][.2812] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyaercity.dk]
detection-update: [...226] [ip4][..udp] [....192.168.1.2][.2812] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
detection-update: [...226] [ip4][..udp] [....192.168.1.2][.2812] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
idle: [...190] [ip4][..udp] [....192.168.1.2][.2793] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][reg.sippstar.com]
RISK: Non-Printable/Invalid Chars Detected
@@ -1672,28 +1570,24 @@
update: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
update: [...192] [ip4][..udp] [....192.168.1.2][.2795] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
update: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...196] [ip4][..udp] [....192.168.1.2][.2796] -> [..192.168.1.129][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...197] [ip4][..udp] [....192.168.1.2][.2797] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
RISK: Non-Printable/Invalid Chars Detected
update: [...199] [ip4][..udp] [....192.168.1.2][.2798] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...204] [ip4][..udp] [....192.168.1.2][.2801] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...209] [ip4][..udp] [....192.168.1.2][.2803] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
update: [...214] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2807] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...216] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...218] [ip4][..udp] [....192.168.1.2][.2809] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...220] [ip4][..udp] [....192.170.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709]
@@ -1713,8 +1607,8 @@
detected: [...229] [ip4][..udp] [....192.168.1.2][29440] -> [...192.168.1.37][..137] [NetBIOS][Unknown][System][Acceptable][]
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [6/16]
detection-update: [...228] [ip4][..udp] [....192.168.1.2][.2814] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sib._udp.sip.cybercity.dk]
- RISK: Malformed Packet, Unidirectional Traffic
- not-detected: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unrated]
+ RISK: Malformed Packet
+ not-detected: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [...195] [ip4][..udp] [192.168.170.170][43690] -> [170.170.170.170][43690]
idle: [...193] [ip4][..udp] [....192.168.1.2][.2794] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
@@ -1722,18 +1616,18 @@
idle: [...196] [ip4][..udp] [....192.168.1.2][.2796] -> [..192.168.1.129][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
idle: [...194] [ip4][..udp] [....192.168.1.2][.2796] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
update: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905]
update: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21]
update: [...200] [ip4][..udp] [....192.168.1.2][.2799] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...201] [ip4][..udp] [....192.168.1.1][...53] -> [..192.168.119.2][.2799] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
update: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
update: [...212] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2805] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
update: [...223] [ip4][..udp] [....192.168.1.2][.2811] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...224] [ip4][..udp] [..192.168.233.1][...53] -> [....192.168.1.2][.2811] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
@@ -1745,23 +1639,21 @@
new: [...232] [ip4][..udp] [....192.168.1.2][.5060] -> [.212.242.33.201][.5060]
detected: [...232] [ip4][..udp] [....192.168.1.2][.5060] -> [.212.242.33.201][.5060] [SIP][Unknown][VoIP][Acceptable]
detection-update: [...231] [ip4][..udp] [....192.168.1.2][.2816] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udq.sip.cybercity.dk]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
new: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392]
new: [...234] [ip4][..udp] [....192.168.1.2][30000] -> [....37.115.0.36][40392]
new: [...235] [ip4][..udp] [....192.168.1.2][30000] -> [..212.242.33.36][40392]
detected: [...235] [ip4][..udp] [....192.168.1.2][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
detection-update: [...235] [ip4][..udp] [....192.168.1.2][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
- RISK: Unidirectional Traffic
new: [...236] [ip4][..udp] [....192.168.1.2][30000] -> [..214.242.33.36][40392]
new: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392]
ERROR-EVENT: Unknown packet type [2/16]
detection-update: [...231] [ip4][..udp] [....192.168.1.2][.2816] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [3/16]
idle: [...197] [ip4][..udp] [....192.168.1.2][.2797] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
RISK: Non-Printable/Invalid Chars Detected
idle: [...199] [ip4][..udp] [....192.168.1.2][.2798] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...205] [ip4][....0] [....192.168.1.2] -> [..212.242.33.35]
new: [...238] [ip4][..udp] [....192.168.1.2][.2822] -> [....192.168.1.1][...53]
detected: [...238] [ip4][..udp] [....192.168.1.2][.2822] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.1?7.in-addr.arpa]
@@ -1772,19 +1664,19 @@
new: [...240] [ip4][..udp] [....192.168.1.2][.2823] -> [....192.168.1.1][...53]
detected: [...240] [ip4][..udp] [....192.168.1.2][.2823] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...240] [ip4][..udp] [....192.168.1.2][.2823] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Fragmented DNS Message, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Fragmented DNS Message, Non-Printable/Invalid Chars Detected
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [2/16]
detection-update: [...240] [ip4][..udp] [....192.168.1.2][.2823] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Fragmented DNS Message, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
- not-detected: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255] [Unknown][Unknown][Unrated]
+ RISK: Fragmented DNS Message, Non-Printable/Invalid Chars Detected
+ not-detected: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255] [Unknown][Unknown][Unspecified][Unrated]
idle: [...149] [ip4][....0] [....192.168.1.2] -> [..192.168.1.255]
- not-detected: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21] [Unknown][Unknown][Unrated]
+ not-detected: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [...203] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...21]
idle: [...201] [ip4][..udp] [....192.168.1.1][...53] -> [..192.168.119.2][.2799] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
idle: [...200] [ip4][..udp] [....192.168.1.2][.2799] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...202] [ip4][..udp] [....192.168.1.2][.2800] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
update: [...208] [ip4][..udp] [....192.168.1.2][18162] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...217] [ip4][..udp] [....192.168.1.2][19192] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
update: [...198] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
@@ -1794,20 +1686,16 @@
update: [...204] [ip4][..udp] [....192.168.1.2][.2801] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...209] [ip4][..udp] [....192.168.1.2][.2803] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
update: [...214] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2807] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...216] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...218] [ip4][..udp] [....192.168.1.2][.2809] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...226] [ip4][..udp] [....192.168.1.2][.2812] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...220] [ip4][..udp] [....192.170.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709]
@@ -1819,30 +1707,29 @@
new: [...242] [ip4][..udp] [....192.168.1.2][.2825] -> [....192.168.1.1][...53]
detected: [...242] [ip4][..udp] [....192.168.1.2][.2825] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
detection-update: [...242] [ip4][..udp] [....192.168.1.2][.2825] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
detection-update: [...242] [ip4][..udp] [....192.168.1.2][.2825] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
detection-update: [...242] [ip4][..udp] [....192.168.1.2][.2825] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
idle: [...208] [ip4][..udp] [....192.168.1.2][18162] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...206] [ip4][..udp] [....192.168.1.2][.2568] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
idle: [...204] [ip4][..udp] [....192.168.1.2][.2801] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
idle: [...207] [ip4][..udp] [....192.168.1.2][.2802] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...229] [ip4][..udp] [....192.168.1.2][29440] -> [...192.168.1.37][..137] [NetBIOS][Unknown][System][Acceptable]
update: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905]
update: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
update: [...212] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2805] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
update: [...223] [ip4][..udp] [....192.168.1.2][.2811] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...224] [ip4][..udp] [..192.168.233.1][...53] -> [....192.168.1.2][.2811] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...227] [ip4][..udp] [....192.168.1.2][.2813] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...228] [ip4][..udp] [....192.168.1.2][.2814] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
new: [...243] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138]
detected: [...243] [ip4][..udp] [....192.168.1.2][..138] -> [..192.168.1.255][..138] [NetBIOS.SMBv1][Unknown][System][Dangerous][d00]
RISK: Unsafe Protocol
@@ -1853,17 +1740,16 @@
RISK: Non-Printable/Invalid Chars Detected
idle: [...209] [ip4][..udp] [....192.168.1.2][.2803] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
idle: [...210] [ip4][..udp] [....192.168.1.2][.2804] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
update: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392]
update: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392]
update: [...235] [ip4][..udp] [....192.168.1.2][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
- RISK: Unidirectional Traffic
update: [...236] [ip4][..udp] [....192.168.1.2][30000] -> [..214.242.33.36][40392]
update: [...234] [ip4][..udp] [....192.168.1.2][30000] -> [....37.115.0.36][40392]
update: [...232] [ip4][..udp] [....192.168.1.2][.5060] -> [.212.242.33.201][.5060] [SIP][Unknown][VoIP][Acceptable]
update: [...230] [ip4][..udp] [....192.168.1.2][.2815] -> [....192.168.1.1][...53]
update: [...231] [ip4][..udp] [....192.168.1.2][.2816] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
new: [...245] [ip4][..udp] [....192.168.1.2][.2827] -> [..192.168.1.114][...53]
detected: [...245] [ip4][..udp] [....192.168.1.2][.2827] -> [..192.168.1.114][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
new: [...246] [ip4][..udp] [....192.168.1.2][.2827] -> [....192.168.1.1][...53]
@@ -1874,12 +1760,12 @@
detected: [...247] [ip4][..udp] [....192.168.1.2][.2827] -> [....192.170.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cyberc?ty.dk]
RISK: Non-Printable/Invalid Chars Detected
ERROR-EVENT: Unknown L3 protocol [2/16]
- not-detected: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1] [Unknown][Unknown][Unrated]
+ not-detected: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [...157] [ip4][...19] [....192.168.1.2] -> [....192.168.1.1]
- not-detected: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2] [Unknown][Unknown][Unrated]
+ not-detected: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2] [Unknown][Unknown][Unspecified][Unrated]
idle: [...117] [ip4][...37] [....192.168.1.1] -> [....192.168.1.2]
- not-detected: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51] [Unknown][Unknown][Unrated]
+ not-detected: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [...211] [ip4][..udp] [....192.168.1.2][.2805] -> [....192.168.1.1][...51]
idle: [...212] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2805] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
@@ -1887,7 +1773,7 @@
update: [...238] [ip4][..udp] [....192.168.1.2][.2822] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
update: [...240] [ip4][..udp] [....192.168.1.2][.2823] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Fragmented DNS Message, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Fragmented DNS Message, Non-Printable/Invalid Chars Detected
new: [...248] [ip4][..udp] [....192.168.1.2][.2828] -> [....192.168.1.1][...53]
detected: [...248] [ip4][..udp] [....192.168.1.2][.2828] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
new: [...249] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2572]
@@ -1898,12 +1784,11 @@
new: [...251] [ip4][..udp] [.....62.168.1.2][..137] -> [..192.168.1.255][..137]
detected: [...251] [ip4][..udp] [.....62.168.1.2][..137] -> [..192.168.1.255][..137] [NetBIOS][Unknown][System][Acceptable][eci_domain]
idle: [...213] [ip4][..udp] [....192.168.1.2][.2806] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
idle: [...214] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2807] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
idle: [...216] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
- not-detected: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709] [Unknown][Unknown][Unrated]
+ not-detected: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [...215] [ip4][..udp] [....192.168.1.2][.2808] -> [....192.168.1.1][38709]
update: [...217] [ip4][..udp] [....192.168.1.2][19192] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -1913,19 +1798,15 @@
update: [...218] [ip4][..udp] [....192.168.1.2][.2809] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...226] [ip4][..udp] [....192.168.1.2][.2812] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
update: [...241] [ip4][..udp] [....192.168.1.2][.2824] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
update: [...242] [ip4][..udp] [....192.168.1.2][.2825] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...220] [ip4][..udp] [....192.170.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
update: [...219] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][17860]
new: [...252] [ip4][..udp] [....192.168.1.2][.2829] -> [....192.168.1.1][...53]
detected: [...252] [ip4][..udp] [....192.168.1.2][.2829] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- detection-update: [...252] [ip4][..udp] [....192.168.1.2][.2829] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- RISK: Unidirectional Traffic
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [...253] [ip4][..udp] [...192.168.54.2][.2829] -> [....192.168.1.1][...53]
detected: [...253] [ip4][..udp] [...192.168.54.2][.2829] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
@@ -1933,17 +1814,15 @@
new: [...254] [ip4][..udp] [....192.168.1.2][.2830] -> [....192.168.1.1][...53]
detected: [...254] [ip4][..udp] [....192.168.1.2][.2830] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
detection-update: [...254] [ip4][..udp] [....192.168.1.2][.2830] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
- RISK: Unidirectional Traffic
new: [...255] [ip4][..udp] [....116.168.1.2][.2829] -> [....192.168.1.1][...53]
detected: [...255] [ip4][..udp] [....116.168.1.2][.2829] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
idle: [...217] [ip4][..udp] [....192.168.1.2][19192] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- not-detected: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2] [Unknown][Unknown][Unrated]
+ not-detected: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [...166] [ip4][....0] [....192.168.1.1] -> [....192.168.1.2]
idle: [...218] [ip4][..udp] [....192.168.1.2][.2809] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
idle: [...221] [ip4][..udp] [....192.168.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
idle: [...220] [ip4][..udp] [....192.170.1.2][.2810] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
guessed: [...219] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.242.33.35][17860] [SIP][Unknown][VoIP][Acceptable]
@@ -1952,7 +1831,6 @@
update: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392]
update: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392]
update: [...235] [ip4][..udp] [....192.168.1.2][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
- RISK: Unidirectional Traffic
update: [...236] [ip4][..udp] [....192.168.1.2][30000] -> [..214.242.33.36][40392]
update: [...234] [ip4][..udp] [....192.168.1.2][30000] -> [....37.115.0.36][40392]
update: [...232] [ip4][..udp] [....192.168.1.2][.5060] -> [.212.242.33.201][.5060] [SIP][Unknown][VoIP][Acceptable]
@@ -1966,10 +1844,10 @@
update: [...227] [ip4][..udp] [....192.168.1.2][.2813] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
update: [...228] [ip4][..udp] [....192.168.1.2][.2814] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
update: [...230] [ip4][..udp] [....192.168.1.2][.2815] -> [....192.168.1.1][...53]
update: [...231] [ip4][..udp] [....192.168.1.2][.2816] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
update: [...244] [ip4][..udp] [....192.168.1.2][.2826] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
RISK: Non-Printable/Invalid Chars Detected
detection-update: [...254] [ip4][..udp] [....192.168.1.2][.2830] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
@@ -1985,13 +1863,13 @@
ERROR-EVENT: nDPI IPv4/L4 payload detection failed [1/16]
new: [...257] [ip4][..udp] [....192.168.1.2][.2832] -> [....192.168.1.1][...53]
detected: [...257] [ip4][..udp] [....192.168.1.2][.2832] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][_sip._udp.sip.cybercity.dk]
- not-detected: [....39] [ip4][..tcp] [....192.168.1.6][.2721] -> [..147.234.1.253][58999] [Unknown][Unknown][Unrated]
+ not-detected: [....39] [ip4][..tcp] [....192.168.1.6][.2721] -> [..147.234.1.253][58999] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [....39] [ip4][..tcp] [....192.168.1.6][.2721] -> [..147.234.1.253][58999]
- not-detected: [....40] [ip4][..tcp] [...37.115.0.253][58999] -> [....192.168.1.2][.2721] [Unknown][Unknown][Unrated]
+ not-detected: [....40] [ip4][..tcp] [...37.115.0.253][58999] -> [....192.168.1.2][.2721] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [....40] [ip4][..tcp] [...37.115.0.253][58999] -> [....192.168.1.2][.2721]
- not-detected: [...205] [ip4][....0] [....192.168.1.2] -> [..212.242.33.35] [Unknown][Unknown][Unrated]
+ not-detected: [...205] [ip4][....0] [....192.168.1.2] -> [..212.242.33.35] [Unknown][Unknown][Unspecified][Unrated]
RISK: Susp Entropy, Unidirectional Traffic
idle: [...205] [ip4][....0] [....192.168.1.2] -> [..212.242.33.35]
guessed: [....31] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.168.1.2][.2208] [FTP_CONTROL][Unknown][Download][Unsafe]
@@ -2012,33 +1890,32 @@
guessed: [....32] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.168.1.2][.2732] [FTP_CONTROL][Unknown][Download][Unsafe]
RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....32] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.168.1.2][.2732]
- not-detected: [....28] [ip4][..tcp] [..147.234.1.253][..120] -> [....192.168.1.2][.2720] [Unknown][Unknown][Unrated]
+ not-detected: [....28] [ip4][..tcp] [..147.234.1.253][..120] -> [....192.168.1.2][.2720] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [....28] [ip4][..tcp] [..147.234.1.253][..120] -> [....192.168.1.2][.2720]
guessed: [....24] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.169.1.2][.2720] [FTP_CONTROL][Unknown][Download][Unsafe]
RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....24] [ip4][..tcp] [..147.234.1.253][...21] -> [....192.169.1.2][.2720]
- not-detected: [....33] [ip4][..tcp] [..147.234.1.253][.1045] -> [....192.168.1.2][.2720] [Unknown][Unknown][Unrated]
+ not-detected: [....33] [ip4][..tcp] [..147.234.1.253][.1045] -> [....192.168.1.2][.2720] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [....33] [ip4][..tcp] [..147.234.1.253][.1045] -> [....192.168.1.2][.2720]
- not-detected: [....30] [ip4][..tcp] [..147.234.1.249][.2069] -> [....192.168.1.2][.2720] [Unknown][Unknown][Unrated]
+ not-detected: [....30] [ip4][..tcp] [..147.234.1.249][.2069] -> [....192.168.1.2][.2720] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [....30] [ip4][..tcp] [..147.234.1.249][.2069] -> [....192.168.1.2][.2720]
guessed: [....38] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.117.1.253][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....38] [ip4][..tcp] [....192.168.1.2][.2720] -> [..147.117.1.253][...21]
- not-detected: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392] [Unknown][Unknown][Unrated]
+ not-detected: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392] [Unknown][Unknown][Unspecified][Unrated]
RISK: Susp Entropy, Unidirectional Traffic
idle: [...237] [ip4][..udp] [.....81.168.1.2][30000] -> [..212.242.33.36][40392]
idle: [...235] [ip4][..udp] [....192.168.1.2][30000] -> [..212.242.33.36][40392] [RTP][Unknown][Media][Acceptable]
- RISK: Unidirectional Traffic
- not-detected: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392] [Unknown][Unknown][Unrated]
+ not-detected: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392] [Unknown][Unknown][Unspecified][Unrated]
RISK: Susp Entropy, Unidirectional Traffic
idle: [...233] [ip4][..udp] [....192.168.1.3][30000] -> [..212.242.33.36][40392]
- not-detected: [...236] [ip4][..udp] [....192.168.1.2][30000] -> [..214.242.33.36][40392] [Unknown][Unknown][Unrated]
+ not-detected: [...236] [ip4][..udp] [....192.168.1.2][30000] -> [..214.242.33.36][40392] [Unknown][Unknown][Unspecified][Unrated]
RISK: Susp Entropy, Unidirectional Traffic
idle: [...236] [ip4][..udp] [....192.168.1.2][30000] -> [..214.242.33.36][40392]
- not-detected: [...234] [ip4][..udp] [....192.168.1.2][30000] -> [....37.115.0.36][40392] [Unknown][Unknown][Unrated]
+ not-detected: [...234] [ip4][..udp] [....192.168.1.2][30000] -> [....37.115.0.36][40392] [Unknown][Unknown][Unspecified][Unrated]
RISK: Susp Entropy, Unidirectional Traffic
idle: [...234] [ip4][..udp] [....192.168.1.2][30000] -> [....37.115.0.36][40392]
idle: [...239] [ip4][..udp] [....192.168.1.2][.5060] -> [..212.234.33.35][.5060] [SIP][Unknown][VoIP][Acceptable]
@@ -2053,7 +1930,7 @@
idle: [....18] [ip4][..tcp] [....192.168.1.2][.2717] -> [..147.137.21.94][..445]
idle: [...232] [ip4][..udp] [....192.168.1.2][.5060] -> [.212.242.33.201][.5060] [SIP][Unknown][VoIP][Acceptable]
idle: [...198] [ip4][..udp] [..212.242.33.35][.5060] -> [....192.168.1.2][.5060] [SIP][Unknown][VoIP][Acceptable]
- not-detected: [....42] [ip4][..tcp] [..147.234.1.253][58999] -> [....192.232.1.2][.2721] [Unknown][Unknown][Unrated]
+ not-detected: [....42] [ip4][..tcp] [..147.234.1.253][58999] -> [....192.232.1.2][.2721] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [....42] [ip4][..tcp] [..147.234.1.253][58999] -> [....192.232.1.2][.2721]
idle: [...229] [ip4][..udp] [....192.168.1.2][29440] -> [...192.168.1.37][..137] [NetBIOS][Unknown][System][Acceptable]
@@ -2064,7 +1941,7 @@
RISK: Unsafe Protocol
guessed: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905] [NetBIOS][Unknown][System][Acceptable][]
idle: [...225] [ip4][..udp] [....192.168.1.2][..137] -> [..192.168.1.255][..905]
- not-detected: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170] [Unknown][Unknown][Unrated]
+ not-detected: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [....37] [ip4][..170] [170.170.170.170] -> [170.170.170.170]
idle: [...249] [ip4][..udp] [....192.168.1.1][...53] -> [....192.168.1.2][.2572] [DNS][Unknown][Network][Acceptable]
@@ -2074,23 +1951,22 @@
idle: [...223] [ip4][..udp] [....192.168.1.2][.2811] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
idle: [...226] [ip4][..udp] [....192.168.1.2][.2812] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
idle: [...227] [ip4][..udp] [....192.168.1.2][.2813] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
idle: [...228] [ip4][..udp] [....192.168.1.2][.2814] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Unidirectional Traffic
+ RISK: Malformed Packet
guessed: [...230] [ip4][..udp] [....192.168.1.2][.2815] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][]
RISK: Unidirectional Traffic
idle: [...230] [ip4][..udp] [....192.168.1.2][.2815] -> [....192.168.1.1][...53]
idle: [...231] [ip4][..udp] [....192.168.1.2][.2816] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Non-Printable/Invalid Chars Detected
idle: [...238] [ip4][..udp] [....192.168.1.2][.2822] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Non-Printable/Invalid Chars Detected
idle: [...240] [ip4][..udp] [....192.168.1.2][.2823] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Fragmented DNS Message, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Fragmented DNS Message, Non-Printable/Invalid Chars Detected
idle: [...241] [ip4][..udp] [....192.168.1.2][.2824] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
idle: [...242] [ip4][..udp] [....192.168.1.2][.2825] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Malformed Packet, Non-Printable/Invalid Chars Detected, Unidirectional Traffic
+ RISK: Malformed Packet, Non-Printable/Invalid Chars Detected
idle: [...244] [ip4][..udp] [....192.168.1.2][.2826] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
RISK: Non-Printable/Invalid Chars Detected
idle: [...246] [ip4][..udp] [....192.168.1.2][.2827] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -2100,7 +1976,6 @@
idle: [...253] [ip4][..udp] [...192.168.54.2][.2829] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
RISK: Malformed Packet
idle: [...252] [ip4][..udp] [....192.168.1.2][.2829] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
- RISK: Unidirectional Traffic
idle: [...254] [ip4][..udp] [....192.168.1.2][.2830] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][sip.cybercity.dk]
idle: [...256] [ip4][..udp] [....192.168.1.2][.2831] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable][1.0.0.127.in-addr.arpa]
idle: [...257] [ip4][..udp] [....192.168.1.2][.2832] -> [....192.168.1.1][...53] [DNS][Unknown][Network][Acceptable]
@@ -2112,7 +1987,7 @@
guessed: [....43] [ip4][..tcp] [.....37.115.0.2][.2639] -> [..147.234.1.253][...21] [FTP_CONTROL][Unknown][Download][Unsafe]
RISK: Unsafe Protocol, Unidirectional Traffic
idle: [....43] [ip4][..tcp] [.....37.115.0.2][.2639] -> [..147.234.1.253][...21]
- not-detected: [....29] [ip4][..tcp] [..147.234.1.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unrated]
+ not-detected: [....29] [ip4][..tcp] [..147.234.1.170][43690] -> [170.170.170.170][43690] [Unknown][Unknown][Unspecified][Unrated]
RISK: Unidirectional Traffic
idle: [....29] [ip4][..tcp] [..147.234.1.170][43690] -> [170.170.170.170][43690]
guessed: [....26] [ip4][..tcp] [..147.234.1.253][...21] -> [......192.2.1.2][.2720] [FTP_CONTROL][Unknown][Download][Unsafe]
Powered by cgit, Themed by Ted Yin.