DAEMON-EVENT: init DAEMON-EVENT: [Processed: 0 pkts][ZLib][compressions: 0|diff: 0 / 0] DAEMON-EVENT: [Flows][active: 0 / 0|skipped: 0|!detected: 0|guessed: 0|detection-updates: 0|updates: 0] new: [.....1] [ip4][..tcp] [.....172.16.0.1][52098] -> [..192.168.10.50][...80] detected: [.....1] [ip4][..tcp] [.....172.16.0.1][52098] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [.....2] [ip4][..tcp] [.....172.16.0.1][52100] -> [..192.168.10.50][...80] new: [.....3] [ip4][..tcp] [.....172.16.0.1][52118] -> [..192.168.10.50][...80] new: [.....4] [ip4][..tcp] [.....172.16.0.1][52120] -> [..192.168.10.50][...80] new: [.....5] [ip4][..tcp] [.....172.16.0.1][52200] -> [..192.168.10.50][...80] detected: [.....5] [ip4][..tcp] [.....172.16.0.1][52200] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [.....6] [ip4][..tcp] [.....172.16.0.1][52202] -> [..192.168.10.50][...80] new: [.....7] [ip4][..tcp] [.....172.16.0.1][52220] -> [..192.168.10.50][...80] new: [.....8] [ip4][..tcp] [.....172.16.0.1][52222] -> [..192.168.10.50][...80] analyse: [.....5] [ip4][..tcp] [.....172.16.0.1][52200] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 2.805| 0.259| 0.699| 488344.093| 2.400] [PKTLEN......: 52.000| 7978.000| 572.000| 1374.100| 1888110.000| 3.400] [BINS(c->s)..: 12,0,0,0,0,0,0,0,0,2,2,2,1,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 3,0,0,0,0,0,0,0,0,0,0,1,0,0,0,2,2,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,1,0,1] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,1,0,1,1,0,0,0,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1] [IATS(ms)....: 0.1,0.9,0.0,0.9,1.5,2.3,23.6,26.5,34.2,32.2,1.1,1.0,0.2,0.9,0.2,0.4,39.8,69.9,111.2,1.1,61.6,62.7,1.1,842.7,846.6,3.8,131.7,132.7,1.1,2804.2,2805.2] [PKTLENS.....: 60,60,52,361,52,564,52,394,1184,417,793,440,1500,7978,52,52,52,52,363,557,52,393,557,52,611,415,52,409,573,52,52,52] [ENTROPIES...: 4.6,5.1,4.9,5.9,4.9,5.8,4.9,6.0,7.5,6.0,7.3,5.9,7.6,8.0,4.9,4.9,4.9,4.9,6.0,5.8,5.0,6.0,5.8,4.9,5.9,5.7,4.9,6.0,5.8,5.0,5.1,4.9] new: [.....9] [ip4][..tcp] [.....172.16.0.1][52298] -> [..192.168.10.50][...80] detected: [.....9] [ip4][..tcp] [.....172.16.0.1][52298] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [....10] [ip4][..tcp] [.....172.16.0.1][52300] -> [..192.168.10.50][...80] new: [....11] [ip4][..tcp] [.....172.16.0.1][52318] -> [..192.168.10.50][...80] new: [....12] [ip4][..tcp] [.....172.16.0.1][52320] -> [..192.168.10.50][...80] analyse: [.....9] [ip4][..tcp] [.....172.16.0.1][52298] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 0.856| 0.080| 0.207| 42651.251| 2.700] [PKTLEN......: 52.000| 4396.000| 613.000| 1050.300| 1103191.500| 3.700] [BINS(c->s)..: 12,0,0,0,0,0,0,0,0,2,2,2,1,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,1,0,0,0,2,1,0,0,0,0,1,0,1,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,0,0,0,0,0,0,3] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,1,0,0,1,1,1,0,0,0,0,1,0,0,1,0,0,1,0,0,1,0] [IATS(ms)....: 0.2,0.9,0.0,0.9,1.5,2.1,20.7,25.9,42.5,6.0,44.4,1.3,0.2,1.3,0.1,0.1,1.2,0.3,0.4,68.6,70.5,37.8,60.4,98.3,1.1,851.7,856.3,4.6,109.7,139.3,29.5] [PKTLENS.....: 60,60,52,361,52,564,52,394,1186,52,417,793,52,440,4396,4396,738,52,52,52,363,557,52,393,557,52,611,415,52,435,1856,52] [ENTROPIES...: 4.6,5.1,4.9,5.9,4.8,5.7,4.9,5.9,7.4,4.9,5.9,7.2,4.9,5.9,7.9,7.9,7.7,4.9,4.9,4.8,5.9,5.8,4.8,5.9,5.8,4.8,5.9,5.7,4.9,5.9,7.8,5.0] detected: [....10] [ip4][..tcp] [.....172.16.0.1][52300] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header detected: [....11] [ip4][..tcp] [.....172.16.0.1][52318] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [....13] [ip4][..tcp] [.....172.16.0.1][52386] -> [..192.168.10.50][...80] new: [....14] [ip4][..tcp] [.....172.16.0.1][52400] -> [..192.168.10.50][...80] new: [....15] [ip4][..tcp] [.....172.16.0.1][52414] -> [..192.168.10.50][...80] new: [....16] [ip4][..tcp] [.....172.16.0.1][52440] -> [..192.168.10.50][...80] new: [....17] [ip4][..tcp] [.....172.16.0.1][52454] -> [..192.168.10.50][...80] new: [....18] [ip4][..tcp] [.....172.16.0.1][52480] -> [..192.168.10.50][...80] new: [....19] [ip4][..tcp] [.....172.16.0.1][52494] -> [..192.168.10.50][...80] new: [....20] [ip4][..tcp] [.....172.16.0.1][52508] -> [..192.168.10.50][...80] new: [....21] [ip4][..tcp] [.....172.16.0.1][52534] -> [..192.168.10.50][...80] new: [....22] [ip4][..tcp] [.....172.16.0.1][52548] -> [..192.168.10.50][...80] new: [....23] [ip4][..tcp] [.....172.16.0.1][52574] -> [..192.168.10.50][...80] new: [....24] [ip4][..tcp] [.....172.16.0.1][52588] -> [..192.168.10.50][...80] new: [....25] [ip4][..tcp] [.....172.16.0.1][52602] -> [..192.168.10.50][...80] new: [....26] [ip4][..tcp] [.....172.16.0.1][52628] -> [..192.168.10.50][...80] new: [....27] [ip4][..tcp] [.....172.16.0.1][52642] -> [..192.168.10.50][...80] new: [....28] [ip4][..tcp] [.....172.16.0.1][52668] -> [..192.168.10.50][...80] new: [....29] [ip4][..tcp] [.....172.16.0.1][52682] -> [..192.168.10.50][...80] new: [....30] [ip4][..tcp] [.....172.16.0.1][52696] -> [..192.168.10.50][...80] new: [....31] [ip4][..tcp] [.....172.16.0.1][52722] -> [..192.168.10.50][...80] new: [....32] [ip4][..tcp] [.....172.16.0.1][52736] -> [..192.168.10.50][...80] new: [....33] [ip4][..tcp] [.....172.16.0.1][52750] -> [..192.168.10.50][...80] new: [....34] [ip4][..tcp] [.....172.16.0.1][52776] -> [..192.168.10.50][...80] new: [....35] [ip4][..tcp] [.....172.16.0.1][52790] -> [..192.168.10.50][...80] new: [....36] [ip4][..tcp] [.....172.16.0.1][52816] -> [..192.168.10.50][...80] new: [....37] [ip4][..tcp] [.....172.16.0.1][52830] -> [..192.168.10.50][...80] new: [....38] [ip4][..tcp] [.....172.16.0.1][52856] -> [..192.168.10.50][...80] new: [....39] [ip4][..tcp] [.....172.16.0.1][52870] -> [..192.168.10.50][...80] new: [....40] [ip4][..tcp] [.....172.16.0.1][52884] -> [..192.168.10.50][...80] new: [....41] [ip4][..tcp] [.....172.16.0.1][52910] -> [..192.168.10.50][...80] new: [....42] [ip4][..tcp] [.....172.16.0.1][52924] -> [..192.168.10.50][...80] new: [....43] [ip4][..tcp] [.....172.16.0.1][52938] -> [..192.168.10.50][...80] detected: [....41] [ip4][..tcp] [.....172.16.0.1][52910] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [....44] [ip4][..tcp] [.....172.16.0.1][52964] -> [..192.168.10.50][...80] new: [....45] [ip4][..tcp] [.....172.16.0.1][52978] -> [..192.168.10.50][...80] new: [....46] [ip4][..tcp] [.....172.16.0.1][53004] -> [..192.168.10.50][...80] analyse: [....41] [ip4][..tcp] [.....172.16.0.1][52910] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 3.809| 0.610| 0.941| 885441.823| 3.700] [PKTLEN......: 52.000| 1921.000| 716.800| 755.700| 571022.900| 4.200] [BINS(c->s)..: 11,0,0,0,0,0,0,0,0,0,0,5,0,0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0] [IATS(ms)....: 0.1,0.8,3808.1,3808.9,3.1,3.9,1010.4,1014.2,3.8,247.0,250.6,3.6,1037.9,1041.6,3.8,265.4,269.2,3.7,1020.1,1024.5,4.4,240.9,244.6,3.7,1033.1,1036.8,3.7,252.8,256.5,3.7,1006.2] [PKTLENS.....: 60,60,52,637,52,1919,52,435,1822,52,637,1920,52,435,1822,52,637,1921,52,435,1822,52,637,1920,52,435,1822,52,637,1918,52,435] [ENTROPIES...: 4.5,5.0,4.8,6.0,4.9,7.8,4.9,5.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,4.7,6.0,7.8,4.7,5.9,7.7,4.8,6.0,7.8,4.9,5.9] new: [....47] [ip4][..tcp] [.....172.16.0.1][53018] -> [..192.168.10.50][...80] new: [....48] [ip4][..tcp] [.....172.16.0.1][53032] -> [..192.168.10.50][...80] new: [....49] [ip4][..tcp] [.....172.16.0.1][53058] -> [..192.168.10.50][...80] new: [....50] [ip4][..tcp] [.....172.16.0.1][53072] -> [..192.168.10.50][...80] new: [....51] [ip4][..tcp] [.....172.16.0.1][53098] -> [..192.168.10.50][...80] new: [....52] [ip4][..tcp] [.....172.16.0.1][53112] -> [..192.168.10.50][...80] new: [....53] [ip4][..tcp] [.....172.16.0.1][53126] -> [..192.168.10.50][...80] new: [....54] [ip4][..tcp] [.....172.16.0.1][53152] -> [..192.168.10.50][...80] new: [....55] [ip4][..tcp] [.....172.16.0.1][53166] -> [..192.168.10.50][...80] new: [....56] [ip4][..tcp] [.....172.16.0.1][53192] -> [..192.168.10.50][...80] new: [....57] [ip4][..tcp] [.....172.16.0.1][53206] -> [..192.168.10.50][...80] new: [....58] [ip4][..tcp] [.....172.16.0.1][53220] -> [..192.168.10.50][...80] new: [....59] [ip4][..tcp] [.....172.16.0.1][53246] -> [..192.168.10.50][...80] new: [....60] [ip4][..tcp] [.....172.16.0.1][53260] -> [..192.168.10.50][...80] end: [.....1] [ip4][..tcp] [.....172.16.0.1][52098] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [.....2] [ip4][..tcp] [.....172.16.0.1][52100] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [.....2] [ip4][..tcp] [.....172.16.0.1][52100] -> [..192.168.10.50][...80] guessed: [.....3] [ip4][..tcp] [.....172.16.0.1][52118] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [.....3] [ip4][..tcp] [.....172.16.0.1][52118] -> [..192.168.10.50][...80] guessed: [.....4] [ip4][..tcp] [.....172.16.0.1][52120] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [.....4] [ip4][..tcp] [.....172.16.0.1][52120] -> [..192.168.10.50][...80] new: [....61] [ip4][..tcp] [.....172.16.0.1][53286] -> [..192.168.10.50][...80] new: [....62] [ip4][..tcp] [.....172.16.0.1][53300] -> [..192.168.10.50][...80] new: [....63] [ip4][..tcp] [.....172.16.0.1][53314] -> [..192.168.10.50][...80] new: [....64] [ip4][..tcp] [.....172.16.0.1][53340] -> [..192.168.10.50][...80] new: [....65] [ip4][..tcp] [.....172.16.0.1][53354] -> [..192.168.10.50][...80] new: [....66] [ip4][..tcp] [.....172.16.0.1][53380] -> [..192.168.10.50][...80] new: [....67] [ip4][..tcp] [.....172.16.0.1][53394] -> [..192.168.10.50][...80] new: [....68] [ip4][..tcp] [.....172.16.0.1][53408] -> [..192.168.10.50][...80] new: [....69] [ip4][..tcp] [.....172.16.0.1][53422] -> [..192.168.10.50][...80] new: [....70] [ip4][..tcp] [.....172.16.0.1][53436] -> [..192.168.10.50][...80] new: [....71] [ip4][..tcp] [.....172.16.0.1][53450] -> [..192.168.10.50][...80] new: [....72] [ip4][..tcp] [.....172.16.0.1][53476] -> [..192.168.10.50][...80] new: [....73] [ip4][..tcp] [.....172.16.0.1][53490] -> [..192.168.10.50][...80] end: [.....5] [ip4][..tcp] [.....172.16.0.1][52200] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [.....6] [ip4][..tcp] [.....172.16.0.1][52202] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [.....6] [ip4][..tcp] [.....172.16.0.1][52202] -> [..192.168.10.50][...80] guessed: [.....7] [ip4][..tcp] [.....172.16.0.1][52220] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [.....7] [ip4][..tcp] [.....172.16.0.1][52220] -> [..192.168.10.50][...80] guessed: [.....8] [ip4][..tcp] [.....172.16.0.1][52222] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [.....8] [ip4][..tcp] [.....172.16.0.1][52222] -> [..192.168.10.50][...80] new: [....74] [ip4][..tcp] [.....172.16.0.1][53516] -> [..192.168.10.50][...80] new: [....75] [ip4][..tcp] [.....172.16.0.1][53530] -> [..192.168.10.50][...80] new: [....76] [ip4][..tcp] [.....172.16.0.1][53544] -> [..192.168.10.50][...80] new: [....77] [ip4][..tcp] [.....172.16.0.1][53570] -> [..192.168.10.50][...80] new: [....78] [ip4][..tcp] [.....172.16.0.1][53584] -> [..192.168.10.50][...80] new: [....79] [ip4][..tcp] [.....172.16.0.1][53598] -> [..192.168.10.50][...80] new: [....80] [ip4][..tcp] [.....172.16.0.1][53624] -> [..192.168.10.50][...80] detected: [....78] [ip4][..tcp] [.....172.16.0.1][53584] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [....81] [ip4][..tcp] [.....172.16.0.1][53638] -> [..192.168.10.50][...80] new: [....82] [ip4][..tcp] [.....172.16.0.1][53664] -> [..192.168.10.50][...80] new: [....83] [ip4][..tcp] [.....172.16.0.1][53678] -> [..192.168.10.50][...80] new: [....84] [ip4][..tcp] [.....172.16.0.1][53692] -> [..192.168.10.50][...80] analyse: [....78] [ip4][..tcp] [.....172.16.0.1][53584] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 4.899| 0.653| 1.186| 1406566.662| 3.500] [PKTLEN......: 52.000| 1920.000| 713.700| 750.900| 563862.500| 4.200] [BINS(c->s)..: 11,0,0,0,0,0,0,0,0,0,0,5,0,0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0] [IATS(ms)....: 0.1,0.7,4897.8,4898.5,8.6,9.4,243.2,246.7,3.6,1041.2,1044.8,3.8,241.2,245.3,4.0,1005.5,1009.5,4.0,241.0,244.6,3.6,1008.9,1012.5,3.7,268.3,273.7,5.3,1005.6,1009.6,4.1,266.0] [PKTLENS.....: 60,60,52,435,52,1823,52,637,1919,52,435,1822,52,637,1920,52,435,1822,52,637,1918,52,435,1822,52,637,1919,52,435,1822,52,637] [ENTROPIES...: 4.6,5.1,4.9,5.9,4.9,7.7,4.9,6.0,7.8,5.0,5.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,4.9,6.0] end: [....10] [ip4][..tcp] [.....172.16.0.1][52300] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header end: [....11] [ip4][..tcp] [.....172.16.0.1][52318] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [....12] [ip4][..tcp] [.....172.16.0.1][52320] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....12] [ip4][..tcp] [.....172.16.0.1][52320] -> [..192.168.10.50][...80] guessed: [....13] [ip4][..tcp] [.....172.16.0.1][52386] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....13] [ip4][..tcp] [.....172.16.0.1][52386] -> [..192.168.10.50][...80] new: [....85] [ip4][..tcp] [.....172.16.0.1][53718] -> [..192.168.10.50][...80] new: [....86] [ip4][..tcp] [.....172.16.0.1][53732] -> [..192.168.10.50][...80] new: [....87] [ip4][..tcp] [.....172.16.0.1][53758] -> [..192.168.10.50][...80] new: [....88] [ip4][..tcp] [.....172.16.0.1][53772] -> [..192.168.10.50][...80] new: [....89] [ip4][..tcp] [.....172.16.0.1][53786] -> [..192.168.10.50][...80] new: [....90] [ip4][..tcp] [.....172.16.0.1][53812] -> [..192.168.10.50][...80] guessed: [....14] [ip4][..tcp] [.....172.16.0.1][52400] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....14] [ip4][..tcp] [.....172.16.0.1][52400] -> [..192.168.10.50][...80] guessed: [....15] [ip4][..tcp] [.....172.16.0.1][52414] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....15] [ip4][..tcp] [.....172.16.0.1][52414] -> [..192.168.10.50][...80] guessed: [....16] [ip4][..tcp] [.....172.16.0.1][52440] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....16] [ip4][..tcp] [.....172.16.0.1][52440] -> [..192.168.10.50][...80] guessed: [....17] [ip4][..tcp] [.....172.16.0.1][52454] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....17] [ip4][..tcp] [.....172.16.0.1][52454] -> [..192.168.10.50][...80] guessed: [....18] [ip4][..tcp] [.....172.16.0.1][52480] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....18] [ip4][..tcp] [.....172.16.0.1][52480] -> [..192.168.10.50][...80] guessed: [....19] [ip4][..tcp] [.....172.16.0.1][52494] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....19] [ip4][..tcp] [.....172.16.0.1][52494] -> [..192.168.10.50][...80] new: [....91] [ip4][..tcp] [.....172.16.0.1][53826] -> [..192.168.10.50][...80] new: [....92] [ip4][..tcp] [.....172.16.0.1][53852] -> [..192.168.10.50][...80] new: [....93] [ip4][..tcp] [.....172.16.0.1][53866] -> [..192.168.10.50][...80] new: [....94] [ip4][..tcp] [.....172.16.0.1][53880] -> [..192.168.10.50][...80] new: [....95] [ip4][..tcp] [.....172.16.0.1][53906] -> [..192.168.10.50][...80] new: [....96] [ip4][..tcp] [.....172.16.0.1][53920] -> [..192.168.10.50][...80] guessed: [....20] [ip4][..tcp] [.....172.16.0.1][52508] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....20] [ip4][..tcp] [.....172.16.0.1][52508] -> [..192.168.10.50][...80] guessed: [....21] [ip4][..tcp] [.....172.16.0.1][52534] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....21] [ip4][..tcp] [.....172.16.0.1][52534] -> [..192.168.10.50][...80] guessed: [....22] [ip4][..tcp] [.....172.16.0.1][52548] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....22] [ip4][..tcp] [.....172.16.0.1][52548] -> [..192.168.10.50][...80] guessed: [....23] [ip4][..tcp] [.....172.16.0.1][52574] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....23] [ip4][..tcp] [.....172.16.0.1][52574] -> [..192.168.10.50][...80] guessed: [....24] [ip4][..tcp] [.....172.16.0.1][52588] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....24] [ip4][..tcp] [.....172.16.0.1][52588] -> [..192.168.10.50][...80] guessed: [....25] [ip4][..tcp] [.....172.16.0.1][52602] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....25] [ip4][..tcp] [.....172.16.0.1][52602] -> [..192.168.10.50][...80] new: [....97] [ip4][..tcp] [.....172.16.0.1][53946] -> [..192.168.10.50][...80] new: [....98] [ip4][..tcp] [.....172.16.0.1][53960] -> [..192.168.10.50][...80] new: [....99] [ip4][..tcp] [.....172.16.0.1][53974] -> [..192.168.10.50][...80] new: [...100] [ip4][..tcp] [.....172.16.0.1][54000] -> [..192.168.10.50][...80] new: [...101] [ip4][..tcp] [.....172.16.0.1][54014] -> [..192.168.10.50][...80] guessed: [....26] [ip4][..tcp] [.....172.16.0.1][52628] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....26] [ip4][..tcp] [.....172.16.0.1][52628] -> [..192.168.10.50][...80] guessed: [....27] [ip4][..tcp] [.....172.16.0.1][52642] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....27] [ip4][..tcp] [.....172.16.0.1][52642] -> [..192.168.10.50][...80] guessed: [....28] [ip4][..tcp] [.....172.16.0.1][52668] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....28] [ip4][..tcp] [.....172.16.0.1][52668] -> [..192.168.10.50][...80] guessed: [....29] [ip4][..tcp] [.....172.16.0.1][52682] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....29] [ip4][..tcp] [.....172.16.0.1][52682] -> [..192.168.10.50][...80] guessed: [....30] [ip4][..tcp] [.....172.16.0.1][52696] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....30] [ip4][..tcp] [.....172.16.0.1][52696] -> [..192.168.10.50][...80] new: [...102] [ip4][..tcp] [.....172.16.0.1][54040] -> [..192.168.10.50][...80] new: [...103] [ip4][..tcp] [.....172.16.0.1][54054] -> [..192.168.10.50][...80] new: [...104] [ip4][..tcp] [.....172.16.0.1][54068] -> [..192.168.10.50][...80] new: [...105] [ip4][..tcp] [.....172.16.0.1][54094] -> [..192.168.10.50][...80] new: [...106] [ip4][..tcp] [.....172.16.0.1][54108] -> [..192.168.10.50][...80] new: [...107] [ip4][..tcp] [.....172.16.0.1][54134] -> [..192.168.10.50][...80] guessed: [....31] [ip4][..tcp] [.....172.16.0.1][52722] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....31] [ip4][..tcp] [.....172.16.0.1][52722] -> [..192.168.10.50][...80] guessed: [....32] [ip4][..tcp] [.....172.16.0.1][52736] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....32] [ip4][..tcp] [.....172.16.0.1][52736] -> [..192.168.10.50][...80] guessed: [....33] [ip4][..tcp] [.....172.16.0.1][52750] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....33] [ip4][..tcp] [.....172.16.0.1][52750] -> [..192.168.10.50][...80] guessed: [....34] [ip4][..tcp] [.....172.16.0.1][52776] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....34] [ip4][..tcp] [.....172.16.0.1][52776] -> [..192.168.10.50][...80] guessed: [....35] [ip4][..tcp] [.....172.16.0.1][52790] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....35] [ip4][..tcp] [.....172.16.0.1][52790] -> [..192.168.10.50][...80] guessed: [....36] [ip4][..tcp] [.....172.16.0.1][52816] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....36] [ip4][..tcp] [.....172.16.0.1][52816] -> [..192.168.10.50][...80] new: [...108] [ip4][..tcp] [.....172.16.0.1][54148] -> [..192.168.10.50][...80] new: [...109] [ip4][..tcp] [.....172.16.0.1][54162] -> [..192.168.10.50][...80] new: [...110] [ip4][..tcp] [.....172.16.0.1][54188] -> [..192.168.10.50][...80] new: [...111] [ip4][..tcp] [.....172.16.0.1][54202] -> [..192.168.10.50][...80] new: [...112] [ip4][..tcp] [.....172.16.0.1][54228] -> [..192.168.10.50][...80] new: [...113] [ip4][..tcp] [.....172.16.0.1][54242] -> [..192.168.10.50][...80] end: [.....9] [ip4][..tcp] [.....172.16.0.1][52298] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [....37] [ip4][..tcp] [.....172.16.0.1][52830] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....37] [ip4][..tcp] [.....172.16.0.1][52830] -> [..192.168.10.50][...80] guessed: [....38] [ip4][..tcp] [.....172.16.0.1][52856] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....38] [ip4][..tcp] [.....172.16.0.1][52856] -> [..192.168.10.50][...80] guessed: [....39] [ip4][..tcp] [.....172.16.0.1][52870] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....39] [ip4][..tcp] [.....172.16.0.1][52870] -> [..192.168.10.50][...80] guessed: [....40] [ip4][..tcp] [.....172.16.0.1][52884] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....40] [ip4][..tcp] [.....172.16.0.1][52884] -> [..192.168.10.50][...80] guessed: [....42] [ip4][..tcp] [.....172.16.0.1][52924] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....42] [ip4][..tcp] [.....172.16.0.1][52924] -> [..192.168.10.50][...80] new: [...114] [ip4][..tcp] [.....172.16.0.1][54268] -> [..192.168.10.50][...80] new: [...115] [ip4][..tcp] [.....172.16.0.1][54282] -> [..192.168.10.50][...80] new: [...116] [ip4][..tcp] [.....172.16.0.1][54296] -> [..192.168.10.50][...80] detected: [...114] [ip4][..tcp] [.....172.16.0.1][54268] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [...117] [ip4][..tcp] [.....172.16.0.1][54322] -> [..192.168.10.50][...80] new: [...118] [ip4][..tcp] [.....172.16.0.1][54336] -> [..192.168.10.50][...80] guessed: [....43] [ip4][..tcp] [.....172.16.0.1][52938] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....43] [ip4][..tcp] [.....172.16.0.1][52938] -> [..192.168.10.50][...80] guessed: [....44] [ip4][..tcp] [.....172.16.0.1][52964] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....44] [ip4][..tcp] [.....172.16.0.1][52964] -> [..192.168.10.50][...80] guessed: [....45] [ip4][..tcp] [.....172.16.0.1][52978] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....45] [ip4][..tcp] [.....172.16.0.1][52978] -> [..192.168.10.50][...80] guessed: [....46] [ip4][..tcp] [.....172.16.0.1][53004] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....46] [ip4][..tcp] [.....172.16.0.1][53004] -> [..192.168.10.50][...80] guessed: [....47] [ip4][..tcp] [.....172.16.0.1][53018] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....47] [ip4][..tcp] [.....172.16.0.1][53018] -> [..192.168.10.50][...80] guessed: [....48] [ip4][..tcp] [.....172.16.0.1][53032] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....48] [ip4][..tcp] [.....172.16.0.1][53032] -> [..192.168.10.50][...80] new: [...119] [ip4][..tcp] [.....172.16.0.1][54362] -> [..192.168.10.50][...80] analyse: [...114] [ip4][..tcp] [.....172.16.0.1][54268] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 3.827| 0.609| 0.943| 889903.972| 3.700] [PKTLEN......: 52.000| 1921.000| 716.800| 755.600| 570947.800| 4.200] [BINS(c->s)..: 11,0,0,0,0,0,0,0,0,0,0,5,0,0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0] [IATS(ms)....: 0.1,0.9,3826.3,3827.2,3.1,3.9,1023.0,1026.9,3.9,268.2,273.7,5.4,1005.2,1009.2,4.0,256.2,259.9,3.6,1006.9,1010.6,3.7,250.1,253.8,3.8,1011.3,1016.1,4.8,241.0,244.7,3.6,1020.5] [PKTLENS.....: 60,60,52,637,52,1921,52,435,1822,52,637,1920,52,435,1822,52,637,1920,52,435,1822,52,637,1919,52,435,1822,52,637,1917,52,435] [ENTROPIES...: 4.6,5.0,4.9,6.0,4.9,7.8,5.0,5.9,7.7,4.9,6.1,7.8,4.9,5.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,5.0,6.1,7.8,5.0,5.9,7.7,4.9,6.1,7.8,4.9,5.9] new: [...120] [ip4][..tcp] [.....172.16.0.1][54376] -> [..192.168.10.50][...80] new: [...121] [ip4][..tcp] [.....172.16.0.1][54390] -> [..192.168.10.50][...80] new: [...122] [ip4][..tcp] [.....172.16.0.1][54416] -> [..192.168.10.50][...80] new: [...123] [ip4][..tcp] [.....172.16.0.1][54430] -> [..192.168.10.50][...80] new: [...124] [ip4][..tcp] [.....172.16.0.1][54456] -> [..192.168.10.50][...80] guessed: [....49] [ip4][..tcp] [.....172.16.0.1][53058] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....49] [ip4][..tcp] [.....172.16.0.1][53058] -> [..192.168.10.50][...80] guessed: [....50] [ip4][..tcp] [.....172.16.0.1][53072] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....50] [ip4][..tcp] [.....172.16.0.1][53072] -> [..192.168.10.50][...80] guessed: [....51] [ip4][..tcp] [.....172.16.0.1][53098] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....51] [ip4][..tcp] [.....172.16.0.1][53098] -> [..192.168.10.50][...80] guessed: [....52] [ip4][..tcp] [.....172.16.0.1][53112] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....52] [ip4][..tcp] [.....172.16.0.1][53112] -> [..192.168.10.50][...80] guessed: [....53] [ip4][..tcp] [.....172.16.0.1][53126] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....53] [ip4][..tcp] [.....172.16.0.1][53126] -> [..192.168.10.50][...80] new: [...125] [ip4][..tcp] [.....172.16.0.1][54470] -> [..192.168.10.50][...80] new: [...126] [ip4][..tcp] [.....172.16.0.1][54484] -> [..192.168.10.50][...80] new: [...127] [ip4][..tcp] [.....172.16.0.1][54510] -> [..192.168.10.50][...80] new: [...128] [ip4][..tcp] [.....172.16.0.1][54524] -> [..192.168.10.50][...80] new: [...129] [ip4][..tcp] [.....172.16.0.1][54538] -> [..192.168.10.50][...80] new: [...130] [ip4][..tcp] [.....172.16.0.1][54552] -> [..192.168.10.50][...80] new: [...131] [ip4][..tcp] [.....172.16.0.1][54566] -> [..192.168.10.50][...80] guessed: [....54] [ip4][..tcp] [.....172.16.0.1][53152] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....54] [ip4][..tcp] [.....172.16.0.1][53152] -> [..192.168.10.50][...80] guessed: [....55] [ip4][..tcp] [.....172.16.0.1][53166] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....55] [ip4][..tcp] [.....172.16.0.1][53166] -> [..192.168.10.50][...80] guessed: [....56] [ip4][..tcp] [.....172.16.0.1][53192] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....56] [ip4][..tcp] [.....172.16.0.1][53192] -> [..192.168.10.50][...80] guessed: [....57] [ip4][..tcp] [.....172.16.0.1][53206] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....57] [ip4][..tcp] [.....172.16.0.1][53206] -> [..192.168.10.50][...80] guessed: [....58] [ip4][..tcp] [.....172.16.0.1][53220] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....58] [ip4][..tcp] [.....172.16.0.1][53220] -> [..192.168.10.50][...80] guessed: [....59] [ip4][..tcp] [.....172.16.0.1][53246] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....59] [ip4][..tcp] [.....172.16.0.1][53246] -> [..192.168.10.50][...80] guessed: [....60] [ip4][..tcp] [.....172.16.0.1][53260] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....60] [ip4][..tcp] [.....172.16.0.1][53260] -> [..192.168.10.50][...80] new: [...132] [ip4][..tcp] [.....172.16.0.1][54580] -> [..192.168.10.50][...80] new: [...133] [ip4][..tcp] [.....172.16.0.1][54606] -> [..192.168.10.50][...80] new: [...134] [ip4][..tcp] [.....172.16.0.1][54620] -> [..192.168.10.50][...80] new: [...135] [ip4][..tcp] [.....172.16.0.1][54634] -> [..192.168.10.50][...80] new: [...136] [ip4][..tcp] [.....172.16.0.1][54660] -> [..192.168.10.50][...80] new: [...137] [ip4][..tcp] [.....172.16.0.1][54674] -> [..192.168.10.50][...80] guessed: [....61] [ip4][..tcp] [.....172.16.0.1][53286] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....61] [ip4][..tcp] [.....172.16.0.1][53286] -> [..192.168.10.50][...80] guessed: [....62] [ip4][..tcp] [.....172.16.0.1][53300] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....62] [ip4][..tcp] [.....172.16.0.1][53300] -> [..192.168.10.50][...80] guessed: [....63] [ip4][..tcp] [.....172.16.0.1][53314] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....63] [ip4][..tcp] [.....172.16.0.1][53314] -> [..192.168.10.50][...80] guessed: [....64] [ip4][..tcp] [.....172.16.0.1][53340] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....64] [ip4][..tcp] [.....172.16.0.1][53340] -> [..192.168.10.50][...80] guessed: [....65] [ip4][..tcp] [.....172.16.0.1][53354] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....65] [ip4][..tcp] [.....172.16.0.1][53354] -> [..192.168.10.50][...80] new: [...138] [ip4][..tcp] [.....172.16.0.1][54688] -> [..192.168.10.50][...80] new: [...139] [ip4][..tcp] [.....172.16.0.1][54714] -> [..192.168.10.50][...80] new: [...140] [ip4][..tcp] [.....172.16.0.1][54728] -> [..192.168.10.50][...80] new: [...141] [ip4][..tcp] [.....172.16.0.1][54742] -> [..192.168.10.50][...80] new: [...142] [ip4][..tcp] [.....172.16.0.1][54768] -> [..192.168.10.50][...80] new: [...143] [ip4][..tcp] [.....172.16.0.1][54782] -> [..192.168.10.50][...80] guessed: [....66] [ip4][..tcp] [.....172.16.0.1][53380] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....66] [ip4][..tcp] [.....172.16.0.1][53380] -> [..192.168.10.50][...80] guessed: [....67] [ip4][..tcp] [.....172.16.0.1][53394] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....67] [ip4][..tcp] [.....172.16.0.1][53394] -> [..192.168.10.50][...80] guessed: [....68] [ip4][..tcp] [.....172.16.0.1][53408] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....68] [ip4][..tcp] [.....172.16.0.1][53408] -> [..192.168.10.50][...80] guessed: [....69] [ip4][..tcp] [.....172.16.0.1][53422] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....69] [ip4][..tcp] [.....172.16.0.1][53422] -> [..192.168.10.50][...80] guessed: [....70] [ip4][..tcp] [.....172.16.0.1][53436] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....70] [ip4][..tcp] [.....172.16.0.1][53436] -> [..192.168.10.50][...80] guessed: [....71] [ip4][..tcp] [.....172.16.0.1][53450] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....71] [ip4][..tcp] [.....172.16.0.1][53450] -> [..192.168.10.50][...80] new: [...144] [ip4][..tcp] [.....172.16.0.1][54808] -> [..192.168.10.50][...80] new: [...145] [ip4][..tcp] [.....172.16.0.1][54822] -> [..192.168.10.50][...80] new: [...146] [ip4][..tcp] [.....172.16.0.1][54836] -> [..192.168.10.50][...80] new: [...147] [ip4][..tcp] [.....172.16.0.1][54862] -> [..192.168.10.50][...80] new: [...148] [ip4][..tcp] [.....172.16.0.1][54876] -> [..192.168.10.50][...80] new: [...149] [ip4][..tcp] [.....172.16.0.1][54890] -> [..192.168.10.50][...80] end: [....41] [ip4][..tcp] [.....172.16.0.1][52910] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [....72] [ip4][..tcp] [.....172.16.0.1][53476] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....72] [ip4][..tcp] [.....172.16.0.1][53476] -> [..192.168.10.50][...80] guessed: [....73] [ip4][..tcp] [.....172.16.0.1][53490] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....73] [ip4][..tcp] [.....172.16.0.1][53490] -> [..192.168.10.50][...80] guessed: [....74] [ip4][..tcp] [.....172.16.0.1][53516] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....74] [ip4][..tcp] [.....172.16.0.1][53516] -> [..192.168.10.50][...80] guessed: [....75] [ip4][..tcp] [.....172.16.0.1][53530] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....75] [ip4][..tcp] [.....172.16.0.1][53530] -> [..192.168.10.50][...80] guessed: [....76] [ip4][..tcp] [.....172.16.0.1][53544] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....76] [ip4][..tcp] [.....172.16.0.1][53544] -> [..192.168.10.50][...80] guessed: [....77] [ip4][..tcp] [.....172.16.0.1][53570] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....77] [ip4][..tcp] [.....172.16.0.1][53570] -> [..192.168.10.50][...80] new: [...150] [ip4][..tcp] [.....172.16.0.1][54916] -> [..192.168.10.50][...80] new: [...151] [ip4][..tcp] [.....172.16.0.1][54930] -> [..192.168.10.50][...80] new: [...152] [ip4][..tcp] [.....172.16.0.1][54956] -> [..192.168.10.50][...80] new: [...153] [ip4][..tcp] [.....172.16.0.1][54970] -> [..192.168.10.50][...80] new: [...154] [ip4][..tcp] [.....172.16.0.1][54984] -> [..192.168.10.50][...80] detected: [...152] [ip4][..tcp] [.....172.16.0.1][54956] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [....79] [ip4][..tcp] [.....172.16.0.1][53598] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....79] [ip4][..tcp] [.....172.16.0.1][53598] -> [..192.168.10.50][...80] guessed: [....80] [ip4][..tcp] [.....172.16.0.1][53624] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....80] [ip4][..tcp] [.....172.16.0.1][53624] -> [..192.168.10.50][...80] guessed: [....81] [ip4][..tcp] [.....172.16.0.1][53638] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....81] [ip4][..tcp] [.....172.16.0.1][53638] -> [..192.168.10.50][...80] guessed: [....82] [ip4][..tcp] [.....172.16.0.1][53664] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....82] [ip4][..tcp] [.....172.16.0.1][53664] -> [..192.168.10.50][...80] guessed: [....83] [ip4][..tcp] [.....172.16.0.1][53678] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....83] [ip4][..tcp] [.....172.16.0.1][53678] -> [..192.168.10.50][...80] new: [...155] [ip4][..tcp] [.....172.16.0.1][55010] -> [..192.168.10.50][...80] new: [...156] [ip4][..tcp] [.....172.16.0.1][55024] -> [..192.168.10.50][...80] new: [...157] [ip4][..tcp] [.....172.16.0.1][55038] -> [..192.168.10.50][...80] analyse: [...152] [ip4][..tcp] [.....172.16.0.1][54956] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 3.643| 0.568| 0.904| 816455.025| 3.600] [PKTLEN......: 52.000| 1921.000| 713.700| 750.800| 563712.500| 4.200] [BINS(c->s)..: 11,0,0,0,0,0,0,0,0,0,0,5,0,0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0] [IATS(ms)....: 0.1,0.7,3641.9,3642.6,3.1,4.1,234.1,238.5,4.2,1006.1,1011.0,4.9,233.1,236.8,3.8,1005.6,1010.7,5.0,236.2,239.8,3.6,1006.8,1010.5,3.7,232.6,236.3,3.6,1034.9,1038.9,4.1,256.3] [PKTLENS.....: 60,60,52,435,52,1823,52,637,1919,52,435,1822,52,637,1915,52,435,1822,52,637,1921,52,435,1822,52,637,1919,52,435,1822,52,637] [ENTROPIES...: 4.6,5.1,4.9,5.9,4.9,7.7,4.8,6.0,7.8,4.9,5.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,5.0,6.0,7.8,4.9,5.9,7.7,4.9,6.1] new: [...158] [ip4][..tcp] [.....172.16.0.1][55064] -> [..192.168.10.50][...80] new: [...159] [ip4][..tcp] [.....172.16.0.1][55078] -> [..192.168.10.50][...80] new: [...160] [ip4][..tcp] [.....172.16.0.1][55092] -> [..192.168.10.50][...80] guessed: [....84] [ip4][..tcp] [.....172.16.0.1][53692] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....84] [ip4][..tcp] [.....172.16.0.1][53692] -> [..192.168.10.50][...80] guessed: [....85] [ip4][..tcp] [.....172.16.0.1][53718] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....85] [ip4][..tcp] [.....172.16.0.1][53718] -> [..192.168.10.50][...80] guessed: [....86] [ip4][..tcp] [.....172.16.0.1][53732] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....86] [ip4][..tcp] [.....172.16.0.1][53732] -> [..192.168.10.50][...80] guessed: [....87] [ip4][..tcp] [.....172.16.0.1][53758] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....87] [ip4][..tcp] [.....172.16.0.1][53758] -> [..192.168.10.50][...80] guessed: [....88] [ip4][..tcp] [.....172.16.0.1][53772] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....88] [ip4][..tcp] [.....172.16.0.1][53772] -> [..192.168.10.50][...80] new: [...161] [ip4][..tcp] [.....172.16.0.1][55118] -> [..192.168.10.50][...80] new: [...162] [ip4][..tcp] [.....172.16.0.1][55132] -> [..192.168.10.50][...80] new: [...163] [ip4][..tcp] [.....172.16.0.1][55158] -> [..192.168.10.50][...80] new: [...164] [ip4][..tcp] [.....172.16.0.1][55172] -> [..192.168.10.50][...80] new: [...165] [ip4][..tcp] [.....172.16.0.1][55186] -> [..192.168.10.50][...80] new: [...166] [ip4][..tcp] [.....172.16.0.1][55212] -> [..192.168.10.50][...80] guessed: [....89] [ip4][..tcp] [.....172.16.0.1][53786] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....89] [ip4][..tcp] [.....172.16.0.1][53786] -> [..192.168.10.50][...80] guessed: [....90] [ip4][..tcp] [.....172.16.0.1][53812] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....90] [ip4][..tcp] [.....172.16.0.1][53812] -> [..192.168.10.50][...80] guessed: [....91] [ip4][..tcp] [.....172.16.0.1][53826] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....91] [ip4][..tcp] [.....172.16.0.1][53826] -> [..192.168.10.50][...80] guessed: [....92] [ip4][..tcp] [.....172.16.0.1][53852] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....92] [ip4][..tcp] [.....172.16.0.1][53852] -> [..192.168.10.50][...80] guessed: [....93] [ip4][..tcp] [.....172.16.0.1][53866] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....93] [ip4][..tcp] [.....172.16.0.1][53866] -> [..192.168.10.50][...80] guessed: [....94] [ip4][..tcp] [.....172.16.0.1][53880] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....94] [ip4][..tcp] [.....172.16.0.1][53880] -> [..192.168.10.50][...80] new: [...167] [ip4][..tcp] [.....172.16.0.1][55226] -> [..192.168.10.50][...80] new: [...168] [ip4][..tcp] [.....172.16.0.1][55240] -> [..192.168.10.50][...80] new: [...169] [ip4][..tcp] [.....172.16.0.1][55266] -> [..192.168.10.50][...80] new: [...170] [ip4][..tcp] [.....172.16.0.1][55280] -> [..192.168.10.50][...80] new: [...171] [ip4][..tcp] [.....172.16.0.1][55294] -> [..192.168.10.50][...80] new: [...172] [ip4][..tcp] [.....172.16.0.1][55320] -> [..192.168.10.50][...80] guessed: [....95] [ip4][..tcp] [.....172.16.0.1][53906] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....95] [ip4][..tcp] [.....172.16.0.1][53906] -> [..192.168.10.50][...80] guessed: [....96] [ip4][..tcp] [.....172.16.0.1][53920] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....96] [ip4][..tcp] [.....172.16.0.1][53920] -> [..192.168.10.50][...80] guessed: [....97] [ip4][..tcp] [.....172.16.0.1][53946] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....97] [ip4][..tcp] [.....172.16.0.1][53946] -> [..192.168.10.50][...80] guessed: [....98] [ip4][..tcp] [.....172.16.0.1][53960] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....98] [ip4][..tcp] [.....172.16.0.1][53960] -> [..192.168.10.50][...80] guessed: [....99] [ip4][..tcp] [.....172.16.0.1][53974] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [....99] [ip4][..tcp] [.....172.16.0.1][53974] -> [..192.168.10.50][...80] guessed: [...100] [ip4][..tcp] [.....172.16.0.1][54000] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...100] [ip4][..tcp] [.....172.16.0.1][54000] -> [..192.168.10.50][...80] new: [...173] [ip4][..tcp] [.....172.16.0.1][55334] -> [..192.168.10.50][...80] new: [...174] [ip4][..tcp] [.....172.16.0.1][55348] -> [..192.168.10.50][...80] new: [...175] [ip4][..tcp] [.....172.16.0.1][55362] -> [..192.168.10.50][...80] new: [...176] [ip4][..tcp] [.....172.16.0.1][55376] -> [..192.168.10.50][...80] new: [...177] [ip4][..tcp] [.....172.16.0.1][55390] -> [..192.168.10.50][...80] new: [...178] [ip4][..tcp] [.....172.16.0.1][55416] -> [..192.168.10.50][...80] new: [...179] [ip4][..tcp] [.....172.16.0.1][55430] -> [..192.168.10.50][...80] guessed: [...101] [ip4][..tcp] [.....172.16.0.1][54014] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...101] [ip4][..tcp] [.....172.16.0.1][54014] -> [..192.168.10.50][...80] guessed: [...102] [ip4][..tcp] [.....172.16.0.1][54040] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...102] [ip4][..tcp] [.....172.16.0.1][54040] -> [..192.168.10.50][...80] guessed: [...103] [ip4][..tcp] [.....172.16.0.1][54054] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...103] [ip4][..tcp] [.....172.16.0.1][54054] -> [..192.168.10.50][...80] guessed: [...104] [ip4][..tcp] [.....172.16.0.1][54068] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...104] [ip4][..tcp] [.....172.16.0.1][54068] -> [..192.168.10.50][...80] guessed: [...105] [ip4][..tcp] [.....172.16.0.1][54094] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...105] [ip4][..tcp] [.....172.16.0.1][54094] -> [..192.168.10.50][...80] guessed: [...106] [ip4][..tcp] [.....172.16.0.1][54108] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...106] [ip4][..tcp] [.....172.16.0.1][54108] -> [..192.168.10.50][...80] new: [...180] [ip4][..tcp] [.....172.16.0.1][55444] -> [..192.168.10.50][...80] new: [...181] [ip4][..tcp] [.....172.16.0.1][55470] -> [..192.168.10.50][...80] new: [...182] [ip4][..tcp] [.....172.16.0.1][55484] -> [..192.168.10.50][...80] new: [...183] [ip4][..tcp] [.....172.16.0.1][55510] -> [..192.168.10.50][...80] new: [...184] [ip4][..tcp] [.....172.16.0.1][55524] -> [..192.168.10.50][...80] new: [...185] [ip4][..tcp] [.....172.16.0.1][55538] -> [..192.168.10.50][...80] guessed: [...107] [ip4][..tcp] [.....172.16.0.1][54134] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...107] [ip4][..tcp] [.....172.16.0.1][54134] -> [..192.168.10.50][...80] guessed: [...108] [ip4][..tcp] [.....172.16.0.1][54148] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...108] [ip4][..tcp] [.....172.16.0.1][54148] -> [..192.168.10.50][...80] guessed: [...109] [ip4][..tcp] [.....172.16.0.1][54162] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...109] [ip4][..tcp] [.....172.16.0.1][54162] -> [..192.168.10.50][...80] guessed: [...110] [ip4][..tcp] [.....172.16.0.1][54188] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...110] [ip4][..tcp] [.....172.16.0.1][54188] -> [..192.168.10.50][...80] guessed: [...111] [ip4][..tcp] [.....172.16.0.1][54202] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...111] [ip4][..tcp] [.....172.16.0.1][54202] -> [..192.168.10.50][...80] new: [...186] [ip4][..tcp] [.....172.16.0.1][55564] -> [..192.168.10.50][...80] new: [...187] [ip4][..tcp] [.....172.16.0.1][55578] -> [..192.168.10.50][...80] new: [...188] [ip4][..tcp] [.....172.16.0.1][55592] -> [..192.168.10.50][...80] new: [...189] [ip4][..tcp] [.....172.16.0.1][55618] -> [..192.168.10.50][...80] new: [...190] [ip4][..tcp] [.....172.16.0.1][55632] -> [..192.168.10.50][...80] new: [...191] [ip4][..tcp] [.....172.16.0.1][55646] -> [..192.168.10.50][...80] end: [....78] [ip4][..tcp] [.....172.16.0.1][53584] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [...112] [ip4][..tcp] [.....172.16.0.1][54228] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...112] [ip4][..tcp] [.....172.16.0.1][54228] -> [..192.168.10.50][...80] guessed: [...113] [ip4][..tcp] [.....172.16.0.1][54242] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...113] [ip4][..tcp] [.....172.16.0.1][54242] -> [..192.168.10.50][...80] guessed: [...115] [ip4][..tcp] [.....172.16.0.1][54282] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...115] [ip4][..tcp] [.....172.16.0.1][54282] -> [..192.168.10.50][...80] guessed: [...116] [ip4][..tcp] [.....172.16.0.1][54296] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...116] [ip4][..tcp] [.....172.16.0.1][54296] -> [..192.168.10.50][...80] new: [...192] [ip4][..tcp] [.....172.16.0.1][55672] -> [..192.168.10.50][...80] detected: [...190] [ip4][..tcp] [.....172.16.0.1][55632] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [...193] [ip4][..tcp] [.....172.16.0.1][55686] -> [..192.168.10.50][...80] new: [...194] [ip4][..tcp] [.....172.16.0.1][55700] -> [..192.168.10.50][...80] new: [...195] [ip4][..tcp] [.....172.16.0.1][55726] -> [..192.168.10.50][...80] analyse: [...190] [ip4][..tcp] [.....172.16.0.1][55632] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 3.785| 0.602| 0.936| 875951.489| 3.700] [PKTLEN......: 52.000| 1921.000| 716.900| 755.900| 571323.500| 4.200] [BINS(c->s)..: 11,0,0,0,0,0,0,0,0,0,0,5,0,0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0] [IATS(ms)....: 0.1,0.9,3784.1,3784.9,3.1,3.8,1004.0,1007.6,3.7,223.7,227.4,3.7,1007.8,1011.6,3.8,255.8,259.5,3.6,1007.9,1012.0,4.2,230.4,234.8,4.3,1037.5,1041.9,4.5,238.3,242.0,3.7,1009.9] [PKTLENS.....: 60,60,52,637,52,1921,52,435,1822,52,637,1920,52,435,1822,52,637,1921,52,435,1822,52,637,1920,52,435,1822,52,637,1920,52,435] [ENTROPIES...: 4.6,5.0,4.9,6.0,4.9,7.8,4.9,5.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,5.0,6.1,7.8,5.0,5.9,7.7,4.8,6.0,7.8,4.9,5.9,7.7,4.9,6.0,7.8,4.9,5.9] new: [...196] [ip4][..tcp] [.....172.16.0.1][55740] -> [..192.168.10.50][...80] guessed: [...117] [ip4][..tcp] [.....172.16.0.1][54322] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...117] [ip4][..tcp] [.....172.16.0.1][54322] -> [..192.168.10.50][...80] guessed: [...118] [ip4][..tcp] [.....172.16.0.1][54336] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...118] [ip4][..tcp] [.....172.16.0.1][54336] -> [..192.168.10.50][...80] guessed: [...119] [ip4][..tcp] [.....172.16.0.1][54362] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...119] [ip4][..tcp] [.....172.16.0.1][54362] -> [..192.168.10.50][...80] guessed: [...120] [ip4][..tcp] [.....172.16.0.1][54376] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...120] [ip4][..tcp] [.....172.16.0.1][54376] -> [..192.168.10.50][...80] guessed: [...121] [ip4][..tcp] [.....172.16.0.1][54390] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...121] [ip4][..tcp] [.....172.16.0.1][54390] -> [..192.168.10.50][...80] guessed: [...122] [ip4][..tcp] [.....172.16.0.1][54416] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...122] [ip4][..tcp] [.....172.16.0.1][54416] -> [..192.168.10.50][...80] guessed: [...123] [ip4][..tcp] [.....172.16.0.1][54430] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...123] [ip4][..tcp] [.....172.16.0.1][54430] -> [..192.168.10.50][...80] new: [...197] [ip4][..tcp] [.....172.16.0.1][55766] -> [..192.168.10.50][...80] new: [...198] [ip4][..tcp] [.....172.16.0.1][55780] -> [..192.168.10.50][...80] new: [...199] [ip4][..tcp] [.....172.16.0.1][55794] -> [..192.168.10.50][...80] new: [...200] [ip4][..tcp] [.....172.16.0.1][55820] -> [..192.168.10.50][...80] new: [...201] [ip4][..tcp] [.....172.16.0.1][55834] -> [..192.168.10.50][...80] new: [...202] [ip4][..tcp] [.....172.16.0.1][55860] -> [..192.168.10.50][...80] guessed: [...124] [ip4][..tcp] [.....172.16.0.1][54456] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...124] [ip4][..tcp] [.....172.16.0.1][54456] -> [..192.168.10.50][...80] guessed: [...125] [ip4][..tcp] [.....172.16.0.1][54470] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...125] [ip4][..tcp] [.....172.16.0.1][54470] -> [..192.168.10.50][...80] guessed: [...126] [ip4][..tcp] [.....172.16.0.1][54484] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...126] [ip4][..tcp] [.....172.16.0.1][54484] -> [..192.168.10.50][...80] guessed: [...127] [ip4][..tcp] [.....172.16.0.1][54510] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...127] [ip4][..tcp] [.....172.16.0.1][54510] -> [..192.168.10.50][...80] guessed: [...128] [ip4][..tcp] [.....172.16.0.1][54524] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...128] [ip4][..tcp] [.....172.16.0.1][54524] -> [..192.168.10.50][...80] new: [...203] [ip4][..tcp] [.....172.16.0.1][55874] -> [..192.168.10.50][...80] new: [...204] [ip4][..tcp] [.....172.16.0.1][55888] -> [..192.168.10.50][...80] new: [...205] [ip4][..tcp] [.....172.16.0.1][55914] -> [..192.168.10.50][...80] new: [...206] [ip4][..tcp] [.....172.16.0.1][55928] -> [..192.168.10.50][...80] new: [...207] [ip4][..tcp] [.....172.16.0.1][55942] -> [..192.168.10.50][...80] new: [...208] [ip4][..tcp] [.....172.16.0.1][55968] -> [..192.168.10.50][...80] guessed: [...129] [ip4][..tcp] [.....172.16.0.1][54538] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...129] [ip4][..tcp] [.....172.16.0.1][54538] -> [..192.168.10.50][...80] guessed: [...130] [ip4][..tcp] [.....172.16.0.1][54552] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...130] [ip4][..tcp] [.....172.16.0.1][54552] -> [..192.168.10.50][...80] guessed: [...131] [ip4][..tcp] [.....172.16.0.1][54566] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...131] [ip4][..tcp] [.....172.16.0.1][54566] -> [..192.168.10.50][...80] guessed: [...132] [ip4][..tcp] [.....172.16.0.1][54580] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...132] [ip4][..tcp] [.....172.16.0.1][54580] -> [..192.168.10.50][...80] guessed: [...133] [ip4][..tcp] [.....172.16.0.1][54606] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...133] [ip4][..tcp] [.....172.16.0.1][54606] -> [..192.168.10.50][...80] guessed: [...134] [ip4][..tcp] [.....172.16.0.1][54620] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...134] [ip4][..tcp] [.....172.16.0.1][54620] -> [..192.168.10.50][...80] guessed: [...135] [ip4][..tcp] [.....172.16.0.1][54634] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...135] [ip4][..tcp] [.....172.16.0.1][54634] -> [..192.168.10.50][...80] new: [...209] [ip4][..tcp] [.....172.16.0.1][55982] -> [..192.168.10.50][...80] new: [...210] [ip4][..tcp] [.....172.16.0.1][55996] -> [..192.168.10.50][...80] new: [...211] [ip4][..tcp] [.....172.16.0.1][56022] -> [..192.168.10.50][...80] new: [...212] [ip4][..tcp] [.....172.16.0.1][56036] -> [..192.168.10.50][...80] new: [...213] [ip4][..tcp] [.....172.16.0.1][56062] -> [..192.168.10.50][...80] new: [...214] [ip4][..tcp] [.....172.16.0.1][56076] -> [..192.168.10.50][...80] guessed: [...136] [ip4][..tcp] [.....172.16.0.1][54660] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...136] [ip4][..tcp] [.....172.16.0.1][54660] -> [..192.168.10.50][...80] guessed: [...137] [ip4][..tcp] [.....172.16.0.1][54674] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...137] [ip4][..tcp] [.....172.16.0.1][54674] -> [..192.168.10.50][...80] guessed: [...138] [ip4][..tcp] [.....172.16.0.1][54688] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...138] [ip4][..tcp] [.....172.16.0.1][54688] -> [..192.168.10.50][...80] guessed: [...139] [ip4][..tcp] [.....172.16.0.1][54714] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...139] [ip4][..tcp] [.....172.16.0.1][54714] -> [..192.168.10.50][...80] guessed: [...140] [ip4][..tcp] [.....172.16.0.1][54728] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...140] [ip4][..tcp] [.....172.16.0.1][54728] -> [..192.168.10.50][...80] guessed: [...141] [ip4][..tcp] [.....172.16.0.1][54742] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...141] [ip4][..tcp] [.....172.16.0.1][54742] -> [..192.168.10.50][...80] new: [...215] [ip4][..tcp] [.....172.16.0.1][56090] -> [..192.168.10.50][...80] new: [...216] [ip4][..tcp] [.....172.16.0.1][56116] -> [..192.168.10.50][...80] new: [...217] [ip4][..tcp] [.....172.16.0.1][56130] -> [..192.168.10.50][...80] new: [...218] [ip4][..tcp] [.....172.16.0.1][56144] -> [..192.168.10.50][...80] new: [...219] [ip4][..tcp] [.....172.16.0.1][56158] -> [..192.168.10.50][...80] new: [...220] [ip4][..tcp] [.....172.16.0.1][56172] -> [..192.168.10.50][...80] new: [...221] [ip4][..tcp] [.....172.16.0.1][56186] -> [..192.168.10.50][...80] guessed: [...142] [ip4][..tcp] [.....172.16.0.1][54768] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...142] [ip4][..tcp] [.....172.16.0.1][54768] -> [..192.168.10.50][...80] guessed: [...143] [ip4][..tcp] [.....172.16.0.1][54782] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...143] [ip4][..tcp] [.....172.16.0.1][54782] -> [..192.168.10.50][...80] guessed: [...144] [ip4][..tcp] [.....172.16.0.1][54808] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...144] [ip4][..tcp] [.....172.16.0.1][54808] -> [..192.168.10.50][...80] guessed: [...145] [ip4][..tcp] [.....172.16.0.1][54822] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...145] [ip4][..tcp] [.....172.16.0.1][54822] -> [..192.168.10.50][...80] guessed: [...146] [ip4][..tcp] [.....172.16.0.1][54836] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...146] [ip4][..tcp] [.....172.16.0.1][54836] -> [..192.168.10.50][...80] new: [...222] [ip4][..tcp] [.....172.16.0.1][56212] -> [..192.168.10.50][...80] new: [...223] [ip4][..tcp] [.....172.16.0.1][56226] -> [..192.168.10.50][...80] new: [...224] [ip4][..tcp] [.....172.16.0.1][56240] -> [..192.168.10.50][...80] new: [...225] [ip4][..tcp] [.....172.16.0.1][56266] -> [..192.168.10.50][...80] new: [...226] [ip4][..tcp] [.....172.16.0.1][56280] -> [..192.168.10.50][...80] end: [...114] [ip4][..tcp] [.....172.16.0.1][54268] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [...147] [ip4][..tcp] [.....172.16.0.1][54862] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...147] [ip4][..tcp] [.....172.16.0.1][54862] -> [..192.168.10.50][...80] guessed: [...148] [ip4][..tcp] [.....172.16.0.1][54876] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...148] [ip4][..tcp] [.....172.16.0.1][54876] -> [..192.168.10.50][...80] guessed: [...149] [ip4][..tcp] [.....172.16.0.1][54890] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...149] [ip4][..tcp] [.....172.16.0.1][54890] -> [..192.168.10.50][...80] guessed: [...150] [ip4][..tcp] [.....172.16.0.1][54916] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...150] [ip4][..tcp] [.....172.16.0.1][54916] -> [..192.168.10.50][...80] guessed: [...151] [ip4][..tcp] [.....172.16.0.1][54930] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...151] [ip4][..tcp] [.....172.16.0.1][54930] -> [..192.168.10.50][...80] new: [...227] [ip4][..tcp] [.....172.16.0.1][56306] -> [..192.168.10.50][...80] new: [...228] [ip4][..tcp] [.....172.16.0.1][56320] -> [..192.168.10.50][...80] new: [...229] [ip4][..tcp] [.....172.16.0.1][56334] -> [..192.168.10.50][...80] detected: [...227] [ip4][..tcp] [.....172.16.0.1][56306] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [...230] [ip4][..tcp] [.....172.16.0.1][56360] -> [..192.168.10.50][...80] new: [...231] [ip4][..tcp] [.....172.16.0.1][56374] -> [..192.168.10.50][...80] new: [...232] [ip4][..tcp] [.....172.16.0.1][56400] -> [..192.168.10.50][...80] guessed: [...153] [ip4][..tcp] [.....172.16.0.1][54970] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...153] [ip4][..tcp] [.....172.16.0.1][54970] -> [..192.168.10.50][...80] guessed: [...154] [ip4][..tcp] [.....172.16.0.1][54984] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...154] [ip4][..tcp] [.....172.16.0.1][54984] -> [..192.168.10.50][...80] guessed: [...155] [ip4][..tcp] [.....172.16.0.1][55010] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...155] [ip4][..tcp] [.....172.16.0.1][55010] -> [..192.168.10.50][...80] guessed: [...156] [ip4][..tcp] [.....172.16.0.1][55024] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...156] [ip4][..tcp] [.....172.16.0.1][55024] -> [..192.168.10.50][...80] guessed: [...157] [ip4][..tcp] [.....172.16.0.1][55038] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...157] [ip4][..tcp] [.....172.16.0.1][55038] -> [..192.168.10.50][...80] guessed: [...158] [ip4][..tcp] [.....172.16.0.1][55064] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...158] [ip4][..tcp] [.....172.16.0.1][55064] -> [..192.168.10.50][...80] analyse: [...227] [ip4][..tcp] [.....172.16.0.1][56306] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 4.805| 0.635| 1.170| 1368332.173| 3.400] [PKTLEN......: 52.000| 1920.000| 695.600| 708.000| 501313.900| 4.200] [BINS(c->s)..: 10,0,0,0,0,0,0,0,0,0,0,5,0,0,0,0,0,0,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,2,0,7] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,1,0,0,1,1,0,0,1,0,0,1,1,0,0,1,0,0,1,0,0,1] [IATS(ms)....: 0.1,0.7,4804.7,4805.4,3.1,3.8,248.6,252.2,3.7,1022.4,1026.2,3.8,225.2,229.2,0.0,4.0,1026.8,1030.9,4.2,232.5,236.2,0.1,3.6,1006.0,1010.7,4.8,233.2,236.8,3.6,1008.0,1011.7] [PKTLENS.....: 60,60,52,435,52,1823,52,637,1920,52,435,1822,52,637,1500,472,52,435,1822,52,637,1500,472,52,435,1822,52,637,1920,52,435,1822] [ENTROPIES...: 4.6,5.1,5.0,5.9,4.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,4.9,6.0,7.7,7.5,4.8,5.9,7.7,5.0,6.0,7.7,7.6,5.0,5.9,7.7,5.0,6.0,7.7,4.9,5.9,7.7] new: [...233] [ip4][..tcp] [.....172.16.0.1][56414] -> [..192.168.10.50][...80] new: [...234] [ip4][..tcp] [.....172.16.0.1][56428] -> [..192.168.10.50][...80] new: [...235] [ip4][..tcp] [.....172.16.0.1][56454] -> [..192.168.10.50][...80] new: [...236] [ip4][..tcp] [.....172.16.0.1][56468] -> [..192.168.10.50][...80] new: [...237] [ip4][..tcp] [.....172.16.0.1][56482] -> [..192.168.10.50][...80] new: [...238] [ip4][..tcp] [.....172.16.0.1][56508] -> [..192.168.10.50][...80] guessed: [...159] [ip4][..tcp] [.....172.16.0.1][55078] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...159] [ip4][..tcp] [.....172.16.0.1][55078] -> [..192.168.10.50][...80] guessed: [...160] [ip4][..tcp] [.....172.16.0.1][55092] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...160] [ip4][..tcp] [.....172.16.0.1][55092] -> [..192.168.10.50][...80] guessed: [...161] [ip4][..tcp] [.....172.16.0.1][55118] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...161] [ip4][..tcp] [.....172.16.0.1][55118] -> [..192.168.10.50][...80] guessed: [...162] [ip4][..tcp] [.....172.16.0.1][55132] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...162] [ip4][..tcp] [.....172.16.0.1][55132] -> [..192.168.10.50][...80] guessed: [...163] [ip4][..tcp] [.....172.16.0.1][55158] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...163] [ip4][..tcp] [.....172.16.0.1][55158] -> [..192.168.10.50][...80] guessed: [...164] [ip4][..tcp] [.....172.16.0.1][55172] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...164] [ip4][..tcp] [.....172.16.0.1][55172] -> [..192.168.10.50][...80] guessed: [...165] [ip4][..tcp] [.....172.16.0.1][55186] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...165] [ip4][..tcp] [.....172.16.0.1][55186] -> [..192.168.10.50][...80] new: [...239] [ip4][..tcp] [.....172.16.0.1][56522] -> [..192.168.10.50][...80] new: [...240] [ip4][..tcp] [.....172.16.0.1][56536] -> [..192.168.10.50][...80] new: [...241] [ip4][..tcp] [.....172.16.0.1][56562] -> [..192.168.10.50][...80] new: [...242] [ip4][..tcp] [.....172.16.0.1][56576] -> [..192.168.10.50][...80] new: [...243] [ip4][..tcp] [.....172.16.0.1][56590] -> [..192.168.10.50][...80] new: [...244] [ip4][..tcp] [.....172.16.0.1][56616] -> [..192.168.10.50][...80] guessed: [...166] [ip4][..tcp] [.....172.16.0.1][55212] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...166] [ip4][..tcp] [.....172.16.0.1][55212] -> [..192.168.10.50][...80] guessed: [...167] [ip4][..tcp] [.....172.16.0.1][55226] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...167] [ip4][..tcp] [.....172.16.0.1][55226] -> [..192.168.10.50][...80] guessed: [...168] [ip4][..tcp] [.....172.16.0.1][55240] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...168] [ip4][..tcp] [.....172.16.0.1][55240] -> [..192.168.10.50][...80] guessed: [...169] [ip4][..tcp] [.....172.16.0.1][55266] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...169] [ip4][..tcp] [.....172.16.0.1][55266] -> [..192.168.10.50][...80] guessed: [...170] [ip4][..tcp] [.....172.16.0.1][55280] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...170] [ip4][..tcp] [.....172.16.0.1][55280] -> [..192.168.10.50][...80] new: [...245] [ip4][..tcp] [.....172.16.0.1][56630] -> [..192.168.10.50][...80] new: [...246] [ip4][..tcp] [.....172.16.0.1][56644] -> [..192.168.10.50][...80] new: [...247] [ip4][..tcp] [.....172.16.0.1][56670] -> [..192.168.10.50][...80] new: [...248] [ip4][..tcp] [.....172.16.0.1][56684] -> [..192.168.10.50][...80] new: [...249] [ip4][..tcp] [.....172.16.0.1][56710] -> [..192.168.10.50][...80] new: [...250] [ip4][..tcp] [.....172.16.0.1][56724] -> [..192.168.10.50][...80] guessed: [...171] [ip4][..tcp] [.....172.16.0.1][55294] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...171] [ip4][..tcp] [.....172.16.0.1][55294] -> [..192.168.10.50][...80] guessed: [...172] [ip4][..tcp] [.....172.16.0.1][55320] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...172] [ip4][..tcp] [.....172.16.0.1][55320] -> [..192.168.10.50][...80] guessed: [...173] [ip4][..tcp] [.....172.16.0.1][55334] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...173] [ip4][..tcp] [.....172.16.0.1][55334] -> [..192.168.10.50][...80] guessed: [...174] [ip4][..tcp] [.....172.16.0.1][55348] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...174] [ip4][..tcp] [.....172.16.0.1][55348] -> [..192.168.10.50][...80] guessed: [...175] [ip4][..tcp] [.....172.16.0.1][55362] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...175] [ip4][..tcp] [.....172.16.0.1][55362] -> [..192.168.10.50][...80] guessed: [...176] [ip4][..tcp] [.....172.16.0.1][55376] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...176] [ip4][..tcp] [.....172.16.0.1][55376] -> [..192.168.10.50][...80] guessed: [...177] [ip4][..tcp] [.....172.16.0.1][55390] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...177] [ip4][..tcp] [.....172.16.0.1][55390] -> [..192.168.10.50][...80] new: [...251] [ip4][..tcp] [.....172.16.0.1][56738] -> [..192.168.10.50][...80] new: [...252] [ip4][..tcp] [.....172.16.0.1][56764] -> [..192.168.10.50][...80] new: [...253] [ip4][..tcp] [.....172.16.0.1][56778] -> [..192.168.10.50][...80] new: [...254] [ip4][..tcp] [.....172.16.0.1][56792] -> [..192.168.10.50][...80] new: [...255] [ip4][..tcp] [.....172.16.0.1][56818] -> [..192.168.10.50][...80] new: [...256] [ip4][..tcp] [.....172.16.0.1][56832] -> [..192.168.10.50][...80] guessed: [...178] [ip4][..tcp] [.....172.16.0.1][55416] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...178] [ip4][..tcp] [.....172.16.0.1][55416] -> [..192.168.10.50][...80] guessed: [...179] [ip4][..tcp] [.....172.16.0.1][55430] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...179] [ip4][..tcp] [.....172.16.0.1][55430] -> [..192.168.10.50][...80] guessed: [...180] [ip4][..tcp] [.....172.16.0.1][55444] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...180] [ip4][..tcp] [.....172.16.0.1][55444] -> [..192.168.10.50][...80] guessed: [...181] [ip4][..tcp] [.....172.16.0.1][55470] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...181] [ip4][..tcp] [.....172.16.0.1][55470] -> [..192.168.10.50][...80] guessed: [...182] [ip4][..tcp] [.....172.16.0.1][55484] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...182] [ip4][..tcp] [.....172.16.0.1][55484] -> [..192.168.10.50][...80] new: [...257] [ip4][..tcp] [.....172.16.0.1][56858] -> [..192.168.10.50][...80] new: [...258] [ip4][..tcp] [.....172.16.0.1][56872] -> [..192.168.10.50][...80] new: [...259] [ip4][..tcp] [.....172.16.0.1][56886] -> [..192.168.10.50][...80] new: [...260] [ip4][..tcp] [.....172.16.0.1][56912] -> [..192.168.10.50][...80] new: [...261] [ip4][..tcp] [.....172.16.0.1][56926] -> [..192.168.10.50][...80] new: [...262] [ip4][..tcp] [.....172.16.0.1][56940] -> [..192.168.10.50][...80] guessed: [...183] [ip4][..tcp] [.....172.16.0.1][55510] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...183] [ip4][..tcp] [.....172.16.0.1][55510] -> [..192.168.10.50][...80] guessed: [...184] [ip4][..tcp] [.....172.16.0.1][55524] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...184] [ip4][..tcp] [.....172.16.0.1][55524] -> [..192.168.10.50][...80] guessed: [...185] [ip4][..tcp] [.....172.16.0.1][55538] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...185] [ip4][..tcp] [.....172.16.0.1][55538] -> [..192.168.10.50][...80] guessed: [...186] [ip4][..tcp] [.....172.16.0.1][55564] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...186] [ip4][..tcp] [.....172.16.0.1][55564] -> [..192.168.10.50][...80] guessed: [...187] [ip4][..tcp] [.....172.16.0.1][55578] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...187] [ip4][..tcp] [.....172.16.0.1][55578] -> [..192.168.10.50][...80] guessed: [...188] [ip4][..tcp] [.....172.16.0.1][55592] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...188] [ip4][..tcp] [.....172.16.0.1][55592] -> [..192.168.10.50][...80] new: [...263] [ip4][..tcp] [.....172.16.0.1][56966] -> [..192.168.10.50][...80] new: [...264] [ip4][..tcp] [.....172.16.0.1][56980] -> [..192.168.10.50][...80] new: [...265] [ip4][..tcp] [.....172.16.0.1][56994] -> [..192.168.10.50][...80] new: [...266] [ip4][..tcp] [.....172.16.0.1][57008] -> [..192.168.10.50][...80] new: [...267] [ip4][..tcp] [.....172.16.0.1][57022] -> [..192.168.10.50][...80] new: [...268] [ip4][..tcp] [.....172.16.0.1][57036] -> [..192.168.10.50][...80] detected: [...265] [ip4][..tcp] [.....172.16.0.1][56994] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header end: [...152] [ip4][..tcp] [.....172.16.0.1][54956] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [...189] [ip4][..tcp] [.....172.16.0.1][55618] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...189] [ip4][..tcp] [.....172.16.0.1][55618] -> [..192.168.10.50][...80] guessed: [...191] [ip4][..tcp] [.....172.16.0.1][55646] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...191] [ip4][..tcp] [.....172.16.0.1][55646] -> [..192.168.10.50][...80] guessed: [...192] [ip4][..tcp] [.....172.16.0.1][55672] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...192] [ip4][..tcp] [.....172.16.0.1][55672] -> [..192.168.10.50][...80] guessed: [...193] [ip4][..tcp] [.....172.16.0.1][55686] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...193] [ip4][..tcp] [.....172.16.0.1][55686] -> [..192.168.10.50][...80] guessed: [...194] [ip4][..tcp] [.....172.16.0.1][55700] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...194] [ip4][..tcp] [.....172.16.0.1][55700] -> [..192.168.10.50][...80] new: [...269] [ip4][..tcp] [.....172.16.0.1][57062] -> [..192.168.10.50][...80] new: [...270] [ip4][..tcp] [.....172.16.0.1][57076] -> [..192.168.10.50][...80] new: [...271] [ip4][..tcp] [.....172.16.0.1][57090] -> [..192.168.10.50][...80] analyse: [...265] [ip4][..tcp] [.....172.16.0.1][56994] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 3.819| 0.606| 0.944| 891595.915| 3.700] [PKTLEN......: 52.000| 1920.000| 716.700| 755.500| 570797.200| 4.200] [BINS(c->s)..: 11,0,0,0,0,0,0,0,0,0,0,5,0,0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0] [IATS(ms)....: 0.1,0.9,3818.1,3819.0,2.9,3.6,1026.8,1031.2,4.4,231.9,235.6,3.8,1007.0,1010.7,3.8,236.2,239.9,3.6,1008.9,1012.8,4.2,228.6,232.8,4.0,1040.9,1048.3,7.4,251.6,255.2,3.6,1017.7] [PKTLENS.....: 60,60,52,637,52,1919,52,435,1822,52,637,1919,52,435,1822,52,637,1919,52,435,1822,52,637,1920,52,435,1822,52,637,1918,52,435] [ENTROPIES...: 4.6,5.0,4.9,6.0,4.9,7.8,5.0,5.9,7.7,4.9,6.0,7.8,5.0,5.9,7.7,4.9,6.0,7.8,5.0,5.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,5.0,6.0,7.8,4.9,5.9] new: [...272] [ip4][..tcp] [.....172.16.0.1][57116] -> [..192.168.10.50][...80] new: [...273] [ip4][..tcp] [.....172.16.0.1][57130] -> [..192.168.10.50][...80] new: [...274] [ip4][..tcp] [.....172.16.0.1][57144] -> [..192.168.10.50][...80] guessed: [...195] [ip4][..tcp] [.....172.16.0.1][55726] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...195] [ip4][..tcp] [.....172.16.0.1][55726] -> [..192.168.10.50][...80] guessed: [...196] [ip4][..tcp] [.....172.16.0.1][55740] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...196] [ip4][..tcp] [.....172.16.0.1][55740] -> [..192.168.10.50][...80] guessed: [...197] [ip4][..tcp] [.....172.16.0.1][55766] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...197] [ip4][..tcp] [.....172.16.0.1][55766] -> [..192.168.10.50][...80] guessed: [...198] [ip4][..tcp] [.....172.16.0.1][55780] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...198] [ip4][..tcp] [.....172.16.0.1][55780] -> [..192.168.10.50][...80] guessed: [...199] [ip4][..tcp] [.....172.16.0.1][55794] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...199] [ip4][..tcp] [.....172.16.0.1][55794] -> [..192.168.10.50][...80] guessed: [...200] [ip4][..tcp] [.....172.16.0.1][55820] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...200] [ip4][..tcp] [.....172.16.0.1][55820] -> [..192.168.10.50][...80] new: [...275] [ip4][..tcp] [.....172.16.0.1][57170] -> [..192.168.10.50][...80] new: [...276] [ip4][..tcp] [.....172.16.0.1][57184] -> [..192.168.10.50][...80] new: [...277] [ip4][..tcp] [.....172.16.0.1][57210] -> [..192.168.10.50][...80] new: [...278] [ip4][..tcp] [.....172.16.0.1][57224] -> [..192.168.10.50][...80] new: [...279] [ip4][..tcp] [.....172.16.0.1][57238] -> [..192.168.10.50][...80] new: [...280] [ip4][..tcp] [.....172.16.0.1][57264] -> [..192.168.10.50][...80] guessed: [...201] [ip4][..tcp] [.....172.16.0.1][55834] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...201] [ip4][..tcp] [.....172.16.0.1][55834] -> [..192.168.10.50][...80] guessed: [...202] [ip4][..tcp] [.....172.16.0.1][55860] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...202] [ip4][..tcp] [.....172.16.0.1][55860] -> [..192.168.10.50][...80] guessed: [...203] [ip4][..tcp] [.....172.16.0.1][55874] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...203] [ip4][..tcp] [.....172.16.0.1][55874] -> [..192.168.10.50][...80] guessed: [...204] [ip4][..tcp] [.....172.16.0.1][55888] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...204] [ip4][..tcp] [.....172.16.0.1][55888] -> [..192.168.10.50][...80] guessed: [...205] [ip4][..tcp] [.....172.16.0.1][55914] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...205] [ip4][..tcp] [.....172.16.0.1][55914] -> [..192.168.10.50][...80] guessed: [...206] [ip4][..tcp] [.....172.16.0.1][55928] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...206] [ip4][..tcp] [.....172.16.0.1][55928] -> [..192.168.10.50][...80] new: [...281] [ip4][..tcp] [.....172.16.0.1][57278] -> [..192.168.10.50][...80] new: [...282] [ip4][..tcp] [.....172.16.0.1][57292] -> [..192.168.10.50][...80] new: [...283] [ip4][..tcp] [.....172.16.0.1][57318] -> [..192.168.10.50][...80] new: [...284] [ip4][..tcp] [.....172.16.0.1][57332] -> [..192.168.10.50][...80] new: [...285] [ip4][..tcp] [.....172.16.0.1][57346] -> [..192.168.10.50][...80] new: [...286] [ip4][..tcp] [.....172.16.0.1][57372] -> [..192.168.10.50][...80] guessed: [...207] [ip4][..tcp] [.....172.16.0.1][55942] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...207] [ip4][..tcp] [.....172.16.0.1][55942] -> [..192.168.10.50][...80] guessed: [...208] [ip4][..tcp] [.....172.16.0.1][55968] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...208] [ip4][..tcp] [.....172.16.0.1][55968] -> [..192.168.10.50][...80] guessed: [...209] [ip4][..tcp] [.....172.16.0.1][55982] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...209] [ip4][..tcp] [.....172.16.0.1][55982] -> [..192.168.10.50][...80] guessed: [...210] [ip4][..tcp] [.....172.16.0.1][55996] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...210] [ip4][..tcp] [.....172.16.0.1][55996] -> [..192.168.10.50][...80] guessed: [...211] [ip4][..tcp] [.....172.16.0.1][56022] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...211] [ip4][..tcp] [.....172.16.0.1][56022] -> [..192.168.10.50][...80] guessed: [...212] [ip4][..tcp] [.....172.16.0.1][56036] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...212] [ip4][..tcp] [.....172.16.0.1][56036] -> [..192.168.10.50][...80] new: [...287] [ip4][..tcp] [.....172.16.0.1][57386] -> [..192.168.10.50][...80] new: [...288] [ip4][..tcp] [.....172.16.0.1][57400] -> [..192.168.10.50][...80] new: [...289] [ip4][..tcp] [.....172.16.0.1][57426] -> [..192.168.10.50][...80] new: [...290] [ip4][..tcp] [.....172.16.0.1][57440] -> [..192.168.10.50][...80] new: [...291] [ip4][..tcp] [.....172.16.0.1][57454] -> [..192.168.10.50][...80] new: [...292] [ip4][..tcp] [.....172.16.0.1][57480] -> [..192.168.10.50][...80] guessed: [...213] [ip4][..tcp] [.....172.16.0.1][56062] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...213] [ip4][..tcp] [.....172.16.0.1][56062] -> [..192.168.10.50][...80] guessed: [...214] [ip4][..tcp] [.....172.16.0.1][56076] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...214] [ip4][..tcp] [.....172.16.0.1][56076] -> [..192.168.10.50][...80] guessed: [...215] [ip4][..tcp] [.....172.16.0.1][56090] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...215] [ip4][..tcp] [.....172.16.0.1][56090] -> [..192.168.10.50][...80] guessed: [...216] [ip4][..tcp] [.....172.16.0.1][56116] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...216] [ip4][..tcp] [.....172.16.0.1][56116] -> [..192.168.10.50][...80] guessed: [...217] [ip4][..tcp] [.....172.16.0.1][56130] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...217] [ip4][..tcp] [.....172.16.0.1][56130] -> [..192.168.10.50][...80] guessed: [...218] [ip4][..tcp] [.....172.16.0.1][56144] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...218] [ip4][..tcp] [.....172.16.0.1][56144] -> [..192.168.10.50][...80] new: [...293] [ip4][..tcp] [.....172.16.0.1][57494] -> [..192.168.10.50][...80] new: [...294] [ip4][..tcp] [.....172.16.0.1][57508] -> [..192.168.10.50][...80] new: [...295] [ip4][..tcp] [.....172.16.0.1][57522] -> [..192.168.10.50][...80] new: [...296] [ip4][..tcp] [.....172.16.0.1][57536] -> [..192.168.10.50][...80] new: [...297] [ip4][..tcp] [.....172.16.0.1][57550] -> [..192.168.10.50][...80] new: [...298] [ip4][..tcp] [.....172.16.0.1][57576] -> [..192.168.10.50][...80] new: [...299] [ip4][..tcp] [.....172.16.0.1][57590] -> [..192.168.10.50][...80] guessed: [...219] [ip4][..tcp] [.....172.16.0.1][56158] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...219] [ip4][..tcp] [.....172.16.0.1][56158] -> [..192.168.10.50][...80] guessed: [...220] [ip4][..tcp] [.....172.16.0.1][56172] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...220] [ip4][..tcp] [.....172.16.0.1][56172] -> [..192.168.10.50][...80] guessed: [...221] [ip4][..tcp] [.....172.16.0.1][56186] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...221] [ip4][..tcp] [.....172.16.0.1][56186] -> [..192.168.10.50][...80] guessed: [...222] [ip4][..tcp] [.....172.16.0.1][56212] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...222] [ip4][..tcp] [.....172.16.0.1][56212] -> [..192.168.10.50][...80] guessed: [...223] [ip4][..tcp] [.....172.16.0.1][56226] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...223] [ip4][..tcp] [.....172.16.0.1][56226] -> [..192.168.10.50][...80] guessed: [...224] [ip4][..tcp] [.....172.16.0.1][56240] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...224] [ip4][..tcp] [.....172.16.0.1][56240] -> [..192.168.10.50][...80] new: [...300] [ip4][..tcp] [.....172.16.0.1][57604] -> [..192.168.10.50][...80] new: [...301] [ip4][..tcp] [.....172.16.0.1][57630] -> [..192.168.10.50][...80] new: [...302] [ip4][..tcp] [.....172.16.0.1][57644] -> [..192.168.10.50][...80] new: [...303] [ip4][..tcp] [.....172.16.0.1][57658] -> [..192.168.10.50][...80] new: [...304] [ip4][..tcp] [.....172.16.0.1][57684] -> [..192.168.10.50][...80] new: [...305] [ip4][..tcp] [.....172.16.0.1][57698] -> [..192.168.10.50][...80] end: [...190] [ip4][..tcp] [.....172.16.0.1][55632] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [...225] [ip4][..tcp] [.....172.16.0.1][56266] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...225] [ip4][..tcp] [.....172.16.0.1][56266] -> [..192.168.10.50][...80] guessed: [...226] [ip4][..tcp] [.....172.16.0.1][56280] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...226] [ip4][..tcp] [.....172.16.0.1][56280] -> [..192.168.10.50][...80] guessed: [...228] [ip4][..tcp] [.....172.16.0.1][56320] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...228] [ip4][..tcp] [.....172.16.0.1][56320] -> [..192.168.10.50][...80] guessed: [...229] [ip4][..tcp] [.....172.16.0.1][56334] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...229] [ip4][..tcp] [.....172.16.0.1][56334] -> [..192.168.10.50][...80] guessed: [...230] [ip4][..tcp] [.....172.16.0.1][56360] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...230] [ip4][..tcp] [.....172.16.0.1][56360] -> [..192.168.10.50][...80] new: [...306] [ip4][..tcp] [.....172.16.0.1][57712] -> [..192.168.10.50][...80] detected: [...304] [ip4][..tcp] [.....172.16.0.1][57684] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [...307] [ip4][..tcp] [.....172.16.0.1][57738] -> [..192.168.10.50][...80] new: [...308] [ip4][..tcp] [.....172.16.0.1][57752] -> [..192.168.10.50][...80] new: [...309] [ip4][..tcp] [.....172.16.0.1][57778] -> [..192.168.10.50][...80] analyse: [...304] [ip4][..tcp] [.....172.16.0.1][57684] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 3.536| 0.567| 0.877| 769788.412| 3.700] [PKTLEN......: 52.000| 1920.000| 713.700| 750.900| 563862.500| 4.200] [BINS(c->s)..: 11,0,0,0,0,0,0,0,0,0,0,5,0,0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0] [IATS(ms)....: 0.1,0.9,3535.3,3536.2,3.0,3.9,353.5,357.6,4.1,1009.5,1013.5,4.1,235.9,239.6,3.7,1007.5,1011.2,3.7,236.1,239.8,3.7,1007.6,1011.4,3.8,240.9,244.7,3.7,1011.7,1015.5,3.8,232.1] [PKTLENS.....: 60,60,52,435,52,1823,52,637,1918,52,435,1822,52,637,1919,52,435,1822,52,637,1919,52,435,1822,52,637,1920,52,435,1822,52,637] [ENTROPIES...: 4.6,5.0,4.8,5.9,4.8,7.7,4.6,6.0,7.8,4.8,5.9,7.7,4.8,6.0,7.8,4.9,5.9,7.7,4.8,6.0,7.8,4.8,5.9,7.7,4.8,6.0,7.8,4.8,5.9,7.7,4.8,6.0] new: [...310] [ip4][..tcp] [.....172.16.0.1][57792] -> [..192.168.10.50][...80] new: [...311] [ip4][..tcp] [.....172.16.0.1][57806] -> [..192.168.10.50][...80] guessed: [...231] [ip4][..tcp] [.....172.16.0.1][56374] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...231] [ip4][..tcp] [.....172.16.0.1][56374] -> [..192.168.10.50][...80] guessed: [...232] [ip4][..tcp] [.....172.16.0.1][56400] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...232] [ip4][..tcp] [.....172.16.0.1][56400] -> [..192.168.10.50][...80] guessed: [...233] [ip4][..tcp] [.....172.16.0.1][56414] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...233] [ip4][..tcp] [.....172.16.0.1][56414] -> [..192.168.10.50][...80] guessed: [...234] [ip4][..tcp] [.....172.16.0.1][56428] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...234] [ip4][..tcp] [.....172.16.0.1][56428] -> [..192.168.10.50][...80] guessed: [...235] [ip4][..tcp] [.....172.16.0.1][56454] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...235] [ip4][..tcp] [.....172.16.0.1][56454] -> [..192.168.10.50][...80] guessed: [...236] [ip4][..tcp] [.....172.16.0.1][56468] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...236] [ip4][..tcp] [.....172.16.0.1][56468] -> [..192.168.10.50][...80] new: [...312] [ip4][..tcp] [.....172.16.0.1][57832] -> [..192.168.10.50][...80] new: [...313] [ip4][..tcp] [.....172.16.0.1][57846] -> [..192.168.10.50][...80] new: [...314] [ip4][..tcp] [.....172.16.0.1][57860] -> [..192.168.10.50][...80] new: [...315] [ip4][..tcp] [.....172.16.0.1][57886] -> [..192.168.10.50][...80] new: [...316] [ip4][..tcp] [.....172.16.0.1][57900] -> [..192.168.10.50][...80] new: [...317] [ip4][..tcp] [.....172.16.0.1][57914] -> [..192.168.10.50][...80] guessed: [...237] [ip4][..tcp] [.....172.16.0.1][56482] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...237] [ip4][..tcp] [.....172.16.0.1][56482] -> [..192.168.10.50][...80] guessed: [...238] [ip4][..tcp] [.....172.16.0.1][56508] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...238] [ip4][..tcp] [.....172.16.0.1][56508] -> [..192.168.10.50][...80] guessed: [...239] [ip4][..tcp] [.....172.16.0.1][56522] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...239] [ip4][..tcp] [.....172.16.0.1][56522] -> [..192.168.10.50][...80] guessed: [...240] [ip4][..tcp] [.....172.16.0.1][56536] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...240] [ip4][..tcp] [.....172.16.0.1][56536] -> [..192.168.10.50][...80] guessed: [...241] [ip4][..tcp] [.....172.16.0.1][56562] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...241] [ip4][..tcp] [.....172.16.0.1][56562] -> [..192.168.10.50][...80] guessed: [...242] [ip4][..tcp] [.....172.16.0.1][56576] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...242] [ip4][..tcp] [.....172.16.0.1][56576] -> [..192.168.10.50][...80] new: [...318] [ip4][..tcp] [.....172.16.0.1][57940] -> [..192.168.10.50][...80] new: [...319] [ip4][..tcp] [.....172.16.0.1][57954] -> [..192.168.10.50][...80] new: [...320] [ip4][..tcp] [.....172.16.0.1][57980] -> [..192.168.10.50][...80] new: [...321] [ip4][..tcp] [.....172.16.0.1][57994] -> [..192.168.10.50][...80] new: [...322] [ip4][..tcp] [.....172.16.0.1][58008] -> [..192.168.10.50][...80] guessed: [...243] [ip4][..tcp] [.....172.16.0.1][56590] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...243] [ip4][..tcp] [.....172.16.0.1][56590] -> [..192.168.10.50][...80] guessed: [...244] [ip4][..tcp] [.....172.16.0.1][56616] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...244] [ip4][..tcp] [.....172.16.0.1][56616] -> [..192.168.10.50][...80] guessed: [...245] [ip4][..tcp] [.....172.16.0.1][56630] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...245] [ip4][..tcp] [.....172.16.0.1][56630] -> [..192.168.10.50][...80] guessed: [...246] [ip4][..tcp] [.....172.16.0.1][56644] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...246] [ip4][..tcp] [.....172.16.0.1][56644] -> [..192.168.10.50][...80] guessed: [...247] [ip4][..tcp] [.....172.16.0.1][56670] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...247] [ip4][..tcp] [.....172.16.0.1][56670] -> [..192.168.10.50][...80] guessed: [...248] [ip4][..tcp] [.....172.16.0.1][56684] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...248] [ip4][..tcp] [.....172.16.0.1][56684] -> [..192.168.10.50][...80] new: [...323] [ip4][..tcp] [.....172.16.0.1][58034] -> [..192.168.10.50][...80] new: [...324] [ip4][..tcp] [.....172.16.0.1][58048] -> [..192.168.10.50][...80] new: [...325] [ip4][..tcp] [.....172.16.0.1][58062] -> [..192.168.10.50][...80] new: [...326] [ip4][..tcp] [.....172.16.0.1][58088] -> [..192.168.10.50][...80] new: [...327] [ip4][..tcp] [.....172.16.0.1][58102] -> [..192.168.10.50][...80] new: [...328] [ip4][..tcp] [.....172.16.0.1][58116] -> [..192.168.10.50][...80] new: [...329] [ip4][..tcp] [.....172.16.0.1][58130] -> [..192.168.10.50][...80] guessed: [...249] [ip4][..tcp] [.....172.16.0.1][56710] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...249] [ip4][..tcp] [.....172.16.0.1][56710] -> [..192.168.10.50][...80] guessed: [...250] [ip4][..tcp] [.....172.16.0.1][56724] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...250] [ip4][..tcp] [.....172.16.0.1][56724] -> [..192.168.10.50][...80] guessed: [...251] [ip4][..tcp] [.....172.16.0.1][56738] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...251] [ip4][..tcp] [.....172.16.0.1][56738] -> [..192.168.10.50][...80] guessed: [...252] [ip4][..tcp] [.....172.16.0.1][56764] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...252] [ip4][..tcp] [.....172.16.0.1][56764] -> [..192.168.10.50][...80] guessed: [...253] [ip4][..tcp] [.....172.16.0.1][56778] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...253] [ip4][..tcp] [.....172.16.0.1][56778] -> [..192.168.10.50][...80] new: [...330] [ip4][..tcp] [.....172.16.0.1][58144] -> [..192.168.10.50][...80] new: [...331] [ip4][..tcp] [.....172.16.0.1][58158] -> [..192.168.10.50][...80] new: [...332] [ip4][..tcp] [.....172.16.0.1][58184] -> [..192.168.10.50][...80] new: [...333] [ip4][..tcp] [.....172.16.0.1][58198] -> [..192.168.10.50][...80] new: [...334] [ip4][..tcp] [.....172.16.0.1][58224] -> [..192.168.10.50][...80] DAEMON-EVENT: [Processed: 4739 pkts][ZLib][compressions: 0|diff: 0 / 0] DAEMON-EVENT: [Flows][active: 82 / 334|skipped: 0|!detected: 0|guessed: 242|detection-updates: 0|updates: 0] new: [...335] [ip4][..tcp] [.....172.16.0.1][58238] -> [..192.168.10.50][...80] guessed: [...254] [ip4][..tcp] [.....172.16.0.1][56792] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...254] [ip4][..tcp] [.....172.16.0.1][56792] -> [..192.168.10.50][...80] guessed: [...255] [ip4][..tcp] [.....172.16.0.1][56818] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...255] [ip4][..tcp] [.....172.16.0.1][56818] -> [..192.168.10.50][...80] guessed: [...256] [ip4][..tcp] [.....172.16.0.1][56832] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...256] [ip4][..tcp] [.....172.16.0.1][56832] -> [..192.168.10.50][...80] guessed: [...257] [ip4][..tcp] [.....172.16.0.1][56858] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...257] [ip4][..tcp] [.....172.16.0.1][56858] -> [..192.168.10.50][...80] guessed: [...258] [ip4][..tcp] [.....172.16.0.1][56872] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...258] [ip4][..tcp] [.....172.16.0.1][56872] -> [..192.168.10.50][...80] guessed: [...259] [ip4][..tcp] [.....172.16.0.1][56886] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...259] [ip4][..tcp] [.....172.16.0.1][56886] -> [..192.168.10.50][...80] new: [...336] [ip4][..tcp] [.....172.16.0.1][58252] -> [..192.168.10.50][...80] new: [...337] [ip4][..tcp] [.....172.16.0.1][58278] -> [..192.168.10.50][...80] new: [...338] [ip4][..tcp] [.....172.16.0.1][58292] -> [..192.168.10.50][...80] new: [...339] [ip4][..tcp] [.....172.16.0.1][58306] -> [..192.168.10.50][...80] new: [...340] [ip4][..tcp] [.....172.16.0.1][58332] -> [..192.168.10.50][...80] new: [...341] [ip4][..tcp] [.....172.16.0.1][58346] -> [..192.168.10.50][...80] end: [...227] [ip4][..tcp] [.....172.16.0.1][56306] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [...260] [ip4][..tcp] [.....172.16.0.1][56912] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...260] [ip4][..tcp] [.....172.16.0.1][56912] -> [..192.168.10.50][...80] guessed: [...261] [ip4][..tcp] [.....172.16.0.1][56926] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...261] [ip4][..tcp] [.....172.16.0.1][56926] -> [..192.168.10.50][...80] guessed: [...262] [ip4][..tcp] [.....172.16.0.1][56940] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...262] [ip4][..tcp] [.....172.16.0.1][56940] -> [..192.168.10.50][...80] guessed: [...263] [ip4][..tcp] [.....172.16.0.1][56966] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...263] [ip4][..tcp] [.....172.16.0.1][56966] -> [..192.168.10.50][...80] guessed: [...264] [ip4][..tcp] [.....172.16.0.1][56980] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...264] [ip4][..tcp] [.....172.16.0.1][56980] -> [..192.168.10.50][...80] guessed: [...266] [ip4][..tcp] [.....172.16.0.1][57008] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...266] [ip4][..tcp] [.....172.16.0.1][57008] -> [..192.168.10.50][...80] new: [...342] [ip4][..tcp] [.....172.16.0.1][58360] -> [..192.168.10.50][...80] new: [...343] [ip4][..tcp] [.....172.16.0.1][58386] -> [..192.168.10.50][...80] new: [...344] [ip4][..tcp] [.....172.16.0.1][58400] -> [..192.168.10.50][...80] detected: [...342] [ip4][..tcp] [.....172.16.0.1][58360] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [...345] [ip4][..tcp] [.....172.16.0.1][58414] -> [..192.168.10.50][...80] new: [...346] [ip4][..tcp] [.....172.16.0.1][58440] -> [..192.168.10.50][...80] new: [...347] [ip4][..tcp] [.....172.16.0.1][58454] -> [..192.168.10.50][...80] guessed: [...267] [ip4][..tcp] [.....172.16.0.1][57022] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...267] [ip4][..tcp] [.....172.16.0.1][57022] -> [..192.168.10.50][...80] guessed: [...268] [ip4][..tcp] [.....172.16.0.1][57036] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...268] [ip4][..tcp] [.....172.16.0.1][57036] -> [..192.168.10.50][...80] guessed: [...269] [ip4][..tcp] [.....172.16.0.1][57062] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...269] [ip4][..tcp] [.....172.16.0.1][57062] -> [..192.168.10.50][...80] guessed: [...270] [ip4][..tcp] [.....172.16.0.1][57076] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...270] [ip4][..tcp] [.....172.16.0.1][57076] -> [..192.168.10.50][...80] guessed: [...271] [ip4][..tcp] [.....172.16.0.1][57090] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...271] [ip4][..tcp] [.....172.16.0.1][57090] -> [..192.168.10.50][...80] guessed: [...272] [ip4][..tcp] [.....172.16.0.1][57116] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...272] [ip4][..tcp] [.....172.16.0.1][57116] -> [..192.168.10.50][...80] analyse: [...342] [ip4][..tcp] [.....172.16.0.1][58360] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 3.810| 0.603| 0.941| 884966.883| 3.700] [PKTLEN......: 52.000| 1921.000| 716.800| 755.700| 571097.900| 4.200] [BINS(c->s)..: 11,0,0,0,0,0,0,0,0,0,0,5,0,0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0] [IATS(ms)....: 0.1,0.7,3808.9,3809.5,3.4,4.1,1007.1,1011.3,4.3,225.9,229.5,3.8,1021.8,1025.8,4.1,234.0,238.5,4.5,1006.3,1010.7,4.3,238.5,243.2,4.5,1006.7,1011.2,4.5,253.5,257.1,3.6,1008.0] [PKTLENS.....: 60,60,52,637,52,1920,52,435,1822,52,637,1920,52,435,1822,52,637,1919,52,435,1822,52,637,1919,52,435,1822,52,637,1921,52,435] [ENTROPIES...: 4.6,5.1,5.0,6.0,5.0,7.8,5.0,5.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,5.0,6.0,7.8,5.0,5.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,4.9,6.0,7.8,4.8,5.9] new: [...348] [ip4][..tcp] [.....172.16.0.1][58468] -> [..192.168.10.50][...80] new: [...349] [ip4][..tcp] [.....172.16.0.1][58482] -> [..192.168.10.50][...80] new: [...350] [ip4][..tcp] [.....172.16.0.1][58496] -> [..192.168.10.50][...80] new: [...351] [ip4][..tcp] [.....172.16.0.1][58510] -> [..192.168.10.50][...80] new: [...352] [ip4][..tcp] [.....172.16.0.1][58536] -> [..192.168.10.50][...80] new: [...353] [ip4][..tcp] [.....172.16.0.1][58550] -> [..192.168.10.50][...80] new: [...354] [ip4][..tcp] [.....172.16.0.1][58564] -> [..192.168.10.50][...80] guessed: [...273] [ip4][..tcp] [.....172.16.0.1][57130] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...273] [ip4][..tcp] [.....172.16.0.1][57130] -> [..192.168.10.50][...80] guessed: [...274] [ip4][..tcp] [.....172.16.0.1][57144] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...274] [ip4][..tcp] [.....172.16.0.1][57144] -> [..192.168.10.50][...80] guessed: [...275] [ip4][..tcp] [.....172.16.0.1][57170] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...275] [ip4][..tcp] [.....172.16.0.1][57170] -> [..192.168.10.50][...80] guessed: [...276] [ip4][..tcp] [.....172.16.0.1][57184] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...276] [ip4][..tcp] [.....172.16.0.1][57184] -> [..192.168.10.50][...80] guessed: [...277] [ip4][..tcp] [.....172.16.0.1][57210] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...277] [ip4][..tcp] [.....172.16.0.1][57210] -> [..192.168.10.50][...80] guessed: [...278] [ip4][..tcp] [.....172.16.0.1][57224] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...278] [ip4][..tcp] [.....172.16.0.1][57224] -> [..192.168.10.50][...80] new: [...355] [ip4][..tcp] [.....172.16.0.1][58590] -> [..192.168.10.50][...80] new: [...356] [ip4][..tcp] [.....172.16.0.1][58604] -> [..192.168.10.50][...80] new: [...357] [ip4][..tcp] [.....172.16.0.1][58630] -> [..192.168.10.50][...80] new: [...358] [ip4][..tcp] [.....172.16.0.1][58650] -> [..192.168.10.50][...80] new: [...359] [ip4][..tcp] [.....172.16.0.1][58664] -> [..192.168.10.50][...80] guessed: [...279] [ip4][..tcp] [.....172.16.0.1][57238] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...279] [ip4][..tcp] [.....172.16.0.1][57238] -> [..192.168.10.50][...80] guessed: [...280] [ip4][..tcp] [.....172.16.0.1][57264] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...280] [ip4][..tcp] [.....172.16.0.1][57264] -> [..192.168.10.50][...80] guessed: [...281] [ip4][..tcp] [.....172.16.0.1][57278] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...281] [ip4][..tcp] [.....172.16.0.1][57278] -> [..192.168.10.50][...80] guessed: [...282] [ip4][..tcp] [.....172.16.0.1][57292] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...282] [ip4][..tcp] [.....172.16.0.1][57292] -> [..192.168.10.50][...80] guessed: [...283] [ip4][..tcp] [.....172.16.0.1][57318] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...283] [ip4][..tcp] [.....172.16.0.1][57318] -> [..192.168.10.50][...80] guessed: [...284] [ip4][..tcp] [.....172.16.0.1][57332] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...284] [ip4][..tcp] [.....172.16.0.1][57332] -> [..192.168.10.50][...80] new: [...360] [ip4][..tcp] [.....172.16.0.1][58690] -> [..192.168.10.50][...80] new: [...361] [ip4][..tcp] [.....172.16.0.1][58704] -> [..192.168.10.50][...80] new: [...362] [ip4][..tcp] [.....172.16.0.1][58718] -> [..192.168.10.50][...80] new: [...363] [ip4][..tcp] [.....172.16.0.1][58744] -> [..192.168.10.50][...80] new: [...364] [ip4][..tcp] [.....172.16.0.1][58758] -> [..192.168.10.50][...80] new: [...365] [ip4][..tcp] [.....172.16.0.1][58772] -> [..192.168.10.50][...80] guessed: [...285] [ip4][..tcp] [.....172.16.0.1][57346] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...285] [ip4][..tcp] [.....172.16.0.1][57346] -> [..192.168.10.50][...80] guessed: [...286] [ip4][..tcp] [.....172.16.0.1][57372] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...286] [ip4][..tcp] [.....172.16.0.1][57372] -> [..192.168.10.50][...80] guessed: [...287] [ip4][..tcp] [.....172.16.0.1][57386] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...287] [ip4][..tcp] [.....172.16.0.1][57386] -> [..192.168.10.50][...80] guessed: [...288] [ip4][..tcp] [.....172.16.0.1][57400] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...288] [ip4][..tcp] [.....172.16.0.1][57400] -> [..192.168.10.50][...80] guessed: [...289] [ip4][..tcp] [.....172.16.0.1][57426] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...289] [ip4][..tcp] [.....172.16.0.1][57426] -> [..192.168.10.50][...80] guessed: [...290] [ip4][..tcp] [.....172.16.0.1][57440] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...290] [ip4][..tcp] [.....172.16.0.1][57440] -> [..192.168.10.50][...80] new: [...366] [ip4][..tcp] [.....172.16.0.1][58798] -> [..192.168.10.50][...80] new: [...367] [ip4][..tcp] [.....172.16.0.1][58812] -> [..192.168.10.50][...80] new: [...368] [ip4][..tcp] [.....172.16.0.1][58838] -> [..192.168.10.50][...80] new: [...369] [ip4][..tcp] [.....172.16.0.1][58852] -> [..192.168.10.50][...80] new: [...370] [ip4][..tcp] [.....172.16.0.1][58866] -> [..192.168.10.50][...80] new: [...371] [ip4][..tcp] [.....172.16.0.1][58892] -> [..192.168.10.50][...80] guessed: [...291] [ip4][..tcp] [.....172.16.0.1][57454] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...291] [ip4][..tcp] [.....172.16.0.1][57454] -> [..192.168.10.50][...80] guessed: [...292] [ip4][..tcp] [.....172.16.0.1][57480] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...292] [ip4][..tcp] [.....172.16.0.1][57480] -> [..192.168.10.50][...80] guessed: [...293] [ip4][..tcp] [.....172.16.0.1][57494] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...293] [ip4][..tcp] [.....172.16.0.1][57494] -> [..192.168.10.50][...80] guessed: [...294] [ip4][..tcp] [.....172.16.0.1][57508] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...294] [ip4][..tcp] [.....172.16.0.1][57508] -> [..192.168.10.50][...80] guessed: [...295] [ip4][..tcp] [.....172.16.0.1][57522] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...295] [ip4][..tcp] [.....172.16.0.1][57522] -> [..192.168.10.50][...80] guessed: [...296] [ip4][..tcp] [.....172.16.0.1][57536] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...296] [ip4][..tcp] [.....172.16.0.1][57536] -> [..192.168.10.50][...80] guessed: [...297] [ip4][..tcp] [.....172.16.0.1][57550] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...297] [ip4][..tcp] [.....172.16.0.1][57550] -> [..192.168.10.50][...80] new: [...372] [ip4][..tcp] [.....172.16.0.1][58906] -> [..192.168.10.50][...80] new: [...373] [ip4][..tcp] [.....172.16.0.1][58920] -> [..192.168.10.50][...80] new: [...374] [ip4][..tcp] [.....172.16.0.1][58946] -> [..192.168.10.50][...80] new: [...375] [ip4][..tcp] [.....172.16.0.1][58960] -> [..192.168.10.50][...80] new: [...376] [ip4][..tcp] [.....172.16.0.1][58974] -> [..192.168.10.50][...80] new: [...377] [ip4][..tcp] [.....172.16.0.1][58988] -> [..192.168.10.50][...80] new: [...378] [ip4][..tcp] [.....172.16.0.1][59002] -> [..192.168.10.50][...80] end: [...265] [ip4][..tcp] [.....172.16.0.1][56994] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [...298] [ip4][..tcp] [.....172.16.0.1][57576] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...298] [ip4][..tcp] [.....172.16.0.1][57576] -> [..192.168.10.50][...80] guessed: [...299] [ip4][..tcp] [.....172.16.0.1][57590] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...299] [ip4][..tcp] [.....172.16.0.1][57590] -> [..192.168.10.50][...80] guessed: [...300] [ip4][..tcp] [.....172.16.0.1][57604] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...300] [ip4][..tcp] [.....172.16.0.1][57604] -> [..192.168.10.50][...80] guessed: [...301] [ip4][..tcp] [.....172.16.0.1][57630] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...301] [ip4][..tcp] [.....172.16.0.1][57630] -> [..192.168.10.50][...80] guessed: [...302] [ip4][..tcp] [.....172.16.0.1][57644] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...302] [ip4][..tcp] [.....172.16.0.1][57644] -> [..192.168.10.50][...80] guessed: [...303] [ip4][..tcp] [.....172.16.0.1][57658] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...303] [ip4][..tcp] [.....172.16.0.1][57658] -> [..192.168.10.50][...80] new: [...379] [ip4][..tcp] [.....172.16.0.1][59016] -> [..192.168.10.50][...80] new: [...380] [ip4][..tcp] [.....172.16.0.1][59042] -> [..192.168.10.50][...80] new: [...381] [ip4][..tcp] [.....172.16.0.1][59056] -> [..192.168.10.50][...80] new: [...382] [ip4][..tcp] [.....172.16.0.1][59070] -> [..192.168.10.50][...80] detected: [...380] [ip4][..tcp] [.....172.16.0.1][59042] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [...383] [ip4][..tcp] [.....172.16.0.1][59096] -> [..192.168.10.50][...80] new: [...384] [ip4][..tcp] [.....172.16.0.1][59110] -> [..192.168.10.50][...80] guessed: [...305] [ip4][..tcp] [.....172.16.0.1][57698] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...305] [ip4][..tcp] [.....172.16.0.1][57698] -> [..192.168.10.50][...80] guessed: [...306] [ip4][..tcp] [.....172.16.0.1][57712] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...306] [ip4][..tcp] [.....172.16.0.1][57712] -> [..192.168.10.50][...80] guessed: [...307] [ip4][..tcp] [.....172.16.0.1][57738] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...307] [ip4][..tcp] [.....172.16.0.1][57738] -> [..192.168.10.50][...80] guessed: [...308] [ip4][..tcp] [.....172.16.0.1][57752] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...308] [ip4][..tcp] [.....172.16.0.1][57752] -> [..192.168.10.50][...80] new: [...385] [ip4][..tcp] [.....172.16.0.1][59124] -> [..192.168.10.50][...80] analyse: [...380] [ip4][..tcp] [.....172.16.0.1][59042] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 4.823| 0.637| 1.173| 1374936.236| 3.400] [PKTLEN......: 52.000| 1921.000| 695.600| 759.800| 577334.100| 4.100] [BINS(c->s)..: 12,0,0,0,0,0,0,0,0,0,0,5,0,0,0,0,0,0,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0] [IATS(ms)....: 0.1,1.1,4821.8,4822.9,2.9,6.0,222.0,227.9,5.0,1.0,1005.0,1011.2,4.1,265.5,269.3,3.6,1019.9,1023.5,4.0,238.2,242.3,4.8,1006.0,1010.7,4.0,237.9,242.4,5.0,1011.0,1016.0,5.0] [PKTLENS.....: 60,60,52,435,52,1823,52,637,1921,52,52,435,1822,52,637,1919,52,435,1822,52,637,1921,52,435,1822,52,637,1919,52,435,1822,52] [ENTROPIES...: 4.6,5.1,4.9,5.9,4.8,7.7,4.9,6.0,7.8,4.9,4.9,5.8,7.7,4.9,6.0,7.8,4.9,5.9,7.7,4.8,6.0,7.8,4.9,5.9,7.7,4.9,6.0,7.7,5.0,5.9,7.7,5.0] new: [...386] [ip4][..tcp] [.....172.16.0.1][59150] -> [..192.168.10.50][...80] new: [...387] [ip4][..tcp] [.....172.16.0.1][59164] -> [..192.168.10.50][...80] new: [...388] [ip4][..tcp] [.....172.16.0.1][59178] -> [..192.168.10.50][...80] new: [...389] [ip4][..tcp] [.....172.16.0.1][59192] -> [..192.168.10.50][...80] new: [...390] [ip4][..tcp] [.....172.16.0.1][59206] -> [..192.168.10.50][...80] new: [...391] [ip4][..tcp] [.....172.16.0.1][59220] -> [..192.168.10.50][...80] guessed: [...309] [ip4][..tcp] [.....172.16.0.1][57778] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...309] [ip4][..tcp] [.....172.16.0.1][57778] -> [..192.168.10.50][...80] guessed: [...310] [ip4][..tcp] [.....172.16.0.1][57792] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...310] [ip4][..tcp] [.....172.16.0.1][57792] -> [..192.168.10.50][...80] guessed: [...311] [ip4][..tcp] [.....172.16.0.1][57806] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...311] [ip4][..tcp] [.....172.16.0.1][57806] -> [..192.168.10.50][...80] guessed: [...312] [ip4][..tcp] [.....172.16.0.1][57832] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...312] [ip4][..tcp] [.....172.16.0.1][57832] -> [..192.168.10.50][...80] guessed: [...313] [ip4][..tcp] [.....172.16.0.1][57846] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...313] [ip4][..tcp] [.....172.16.0.1][57846] -> [..192.168.10.50][...80] guessed: [...314] [ip4][..tcp] [.....172.16.0.1][57860] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...314] [ip4][..tcp] [.....172.16.0.1][57860] -> [..192.168.10.50][...80] new: [...392] [ip4][..tcp] [.....172.16.0.1][59246] -> [..192.168.10.50][...80] new: [...393] [ip4][..tcp] [.....172.16.0.1][59260] -> [..192.168.10.50][...80] new: [...394] [ip4][..tcp] [.....172.16.0.1][59274] -> [..192.168.10.50][...80] new: [...395] [ip4][..tcp] [.....172.16.0.1][59300] -> [..192.168.10.50][...80] new: [...396] [ip4][..tcp] [.....172.16.0.1][59314] -> [..192.168.10.50][...80] new: [...397] [ip4][..tcp] [.....172.16.0.1][59328] -> [..192.168.10.50][...80] guessed: [...315] [ip4][..tcp] [.....172.16.0.1][57886] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...315] [ip4][..tcp] [.....172.16.0.1][57886] -> [..192.168.10.50][...80] guessed: [...316] [ip4][..tcp] [.....172.16.0.1][57900] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...316] [ip4][..tcp] [.....172.16.0.1][57900] -> [..192.168.10.50][...80] guessed: [...317] [ip4][..tcp] [.....172.16.0.1][57914] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...317] [ip4][..tcp] [.....172.16.0.1][57914] -> [..192.168.10.50][...80] guessed: [...318] [ip4][..tcp] [.....172.16.0.1][57940] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...318] [ip4][..tcp] [.....172.16.0.1][57940] -> [..192.168.10.50][...80] guessed: [...319] [ip4][..tcp] [.....172.16.0.1][57954] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...319] [ip4][..tcp] [.....172.16.0.1][57954] -> [..192.168.10.50][...80] guessed: [...320] [ip4][..tcp] [.....172.16.0.1][57980] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...320] [ip4][..tcp] [.....172.16.0.1][57980] -> [..192.168.10.50][...80] new: [...398] [ip4][..tcp] [.....172.16.0.1][59354] -> [..192.168.10.50][...80] new: [...399] [ip4][..tcp] [.....172.16.0.1][59368] -> [..192.168.10.50][...80] new: [...400] [ip4][..tcp] [.....172.16.0.1][59382] -> [..192.168.10.50][...80] new: [...401] [ip4][..tcp] [.....172.16.0.1][59408] -> [..192.168.10.50][...80] new: [...402] [ip4][..tcp] [.....172.16.0.1][59422] -> [..192.168.10.50][...80] new: [...403] [ip4][..tcp] [.....172.16.0.1][59436] -> [..192.168.10.50][...80] guessed: [...321] [ip4][..tcp] [.....172.16.0.1][57994] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...321] [ip4][..tcp] [.....172.16.0.1][57994] -> [..192.168.10.50][...80] guessed: [...322] [ip4][..tcp] [.....172.16.0.1][58008] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...322] [ip4][..tcp] [.....172.16.0.1][58008] -> [..192.168.10.50][...80] guessed: [...323] [ip4][..tcp] [.....172.16.0.1][58034] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...323] [ip4][..tcp] [.....172.16.0.1][58034] -> [..192.168.10.50][...80] guessed: [...324] [ip4][..tcp] [.....172.16.0.1][58048] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...324] [ip4][..tcp] [.....172.16.0.1][58048] -> [..192.168.10.50][...80] guessed: [...325] [ip4][..tcp] [.....172.16.0.1][58062] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...325] [ip4][..tcp] [.....172.16.0.1][58062] -> [..192.168.10.50][...80] guessed: [...326] [ip4][..tcp] [.....172.16.0.1][58088] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...326] [ip4][..tcp] [.....172.16.0.1][58088] -> [..192.168.10.50][...80] new: [...404] [ip4][..tcp] [.....172.16.0.1][59462] -> [..192.168.10.50][...80] new: [...405] [ip4][..tcp] [.....172.16.0.1][59476] -> [..192.168.10.50][...80] new: [...406] [ip4][..tcp] [.....172.16.0.1][59502] -> [..192.168.10.50][...80] new: [...407] [ip4][..tcp] [.....172.16.0.1][59516] -> [..192.168.10.50][...80] new: [...408] [ip4][..tcp] [.....172.16.0.1][59530] -> [..192.168.10.50][...80] guessed: [...327] [ip4][..tcp] [.....172.16.0.1][58102] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...327] [ip4][..tcp] [.....172.16.0.1][58102] -> [..192.168.10.50][...80] guessed: [...328] [ip4][..tcp] [.....172.16.0.1][58116] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...328] [ip4][..tcp] [.....172.16.0.1][58116] -> [..192.168.10.50][...80] guessed: [...329] [ip4][..tcp] [.....172.16.0.1][58130] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...329] [ip4][..tcp] [.....172.16.0.1][58130] -> [..192.168.10.50][...80] guessed: [...330] [ip4][..tcp] [.....172.16.0.1][58144] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...330] [ip4][..tcp] [.....172.16.0.1][58144] -> [..192.168.10.50][...80] guessed: [...331] [ip4][..tcp] [.....172.16.0.1][58158] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...331] [ip4][..tcp] [.....172.16.0.1][58158] -> [..192.168.10.50][...80] guessed: [...332] [ip4][..tcp] [.....172.16.0.1][58184] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...332] [ip4][..tcp] [.....172.16.0.1][58184] -> [..192.168.10.50][...80] guessed: [...333] [ip4][..tcp] [.....172.16.0.1][58198] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...333] [ip4][..tcp] [.....172.16.0.1][58198] -> [..192.168.10.50][...80] new: [...409] [ip4][..tcp] [.....172.16.0.1][59556] -> [..192.168.10.50][...80] new: [...410] [ip4][..tcp] [.....172.16.0.1][59570] -> [..192.168.10.50][...80] new: [...411] [ip4][..tcp] [.....172.16.0.1][59584] -> [..192.168.10.50][...80] new: [...412] [ip4][..tcp] [.....172.16.0.1][59610] -> [..192.168.10.50][...80] new: [...413] [ip4][..tcp] [.....172.16.0.1][59624] -> [..192.168.10.50][...80] new: [...414] [ip4][..tcp] [.....172.16.0.1][59650] -> [..192.168.10.50][...80] guessed: [...334] [ip4][..tcp] [.....172.16.0.1][58224] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...334] [ip4][..tcp] [.....172.16.0.1][58224] -> [..192.168.10.50][...80] guessed: [...335] [ip4][..tcp] [.....172.16.0.1][58238] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...335] [ip4][..tcp] [.....172.16.0.1][58238] -> [..192.168.10.50][...80] guessed: [...336] [ip4][..tcp] [.....172.16.0.1][58252] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...336] [ip4][..tcp] [.....172.16.0.1][58252] -> [..192.168.10.50][...80] guessed: [...337] [ip4][..tcp] [.....172.16.0.1][58278] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...337] [ip4][..tcp] [.....172.16.0.1][58278] -> [..192.168.10.50][...80] guessed: [...338] [ip4][..tcp] [.....172.16.0.1][58292] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...338] [ip4][..tcp] [.....172.16.0.1][58292] -> [..192.168.10.50][...80] guessed: [...339] [ip4][..tcp] [.....172.16.0.1][58306] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...339] [ip4][..tcp] [.....172.16.0.1][58306] -> [..192.168.10.50][...80] new: [...415] [ip4][..tcp] [.....172.16.0.1][59664] -> [..192.168.10.50][...80] new: [...416] [ip4][..tcp] [.....172.16.0.1][59678] -> [..192.168.10.50][...80] new: [...417] [ip4][..tcp] [.....172.16.0.1][59704] -> [..192.168.10.50][...80] new: [...418] [ip4][..tcp] [.....172.16.0.1][59718] -> [..192.168.10.50][...80] new: [...419] [ip4][..tcp] [.....172.16.0.1][59732] -> [..192.168.10.50][...80] new: [...420] [ip4][..tcp] [.....172.16.0.1][59758] -> [..192.168.10.50][...80] end: [...304] [ip4][..tcp] [.....172.16.0.1][57684] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [...340] [ip4][..tcp] [.....172.16.0.1][58332] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...340] [ip4][..tcp] [.....172.16.0.1][58332] -> [..192.168.10.50][...80] guessed: [...341] [ip4][..tcp] [.....172.16.0.1][58346] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...341] [ip4][..tcp] [.....172.16.0.1][58346] -> [..192.168.10.50][...80] guessed: [...343] [ip4][..tcp] [.....172.16.0.1][58386] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...343] [ip4][..tcp] [.....172.16.0.1][58386] -> [..192.168.10.50][...80] guessed: [...344] [ip4][..tcp] [.....172.16.0.1][58400] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...344] [ip4][..tcp] [.....172.16.0.1][58400] -> [..192.168.10.50][...80] guessed: [...345] [ip4][..tcp] [.....172.16.0.1][58414] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...345] [ip4][..tcp] [.....172.16.0.1][58414] -> [..192.168.10.50][...80] new: [...421] [ip4][..tcp] [.....172.16.0.1][59772] -> [..192.168.10.50][...80] detected: [...419] [ip4][..tcp] [.....172.16.0.1][59732] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [...422] [ip4][..tcp] [.....172.16.0.1][59786] -> [..192.168.10.50][...80] new: [...423] [ip4][..tcp] [.....172.16.0.1][59812] -> [..192.168.10.50][...80] new: [...424] [ip4][..tcp] [.....172.16.0.1][59826] -> [..192.168.10.50][...80] analyse: [...419] [ip4][..tcp] [.....172.16.0.1][59732] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 3.767| 0.604| 0.933| 871184.138| 3.700] [PKTLEN......: 52.000| 1921.000| 716.800| 755.700| 571022.900| 4.200] [BINS(c->s)..: 11,0,0,0,0,0,0,0,0,0,0,5,0,0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0] [IATS(ms)....: 0.1,0.7,3766.4,3767.0,3.5,4.2,1039.9,1045.4,5.5,227.3,230.9,3.6,1037.1,1040.9,3.8,252.9,256.6,3.8,1024.0,1027.8,3.7,237.3,241.0,3.6,1007.8,1011.5,3.7,235.0,238.7,3.7,1007.2] [PKTLENS.....: 60,60,52,637,52,1920,52,435,1822,52,637,1918,52,435,1822,52,637,1921,52,435,1822,52,637,1919,52,435,1822,52,637,1920,52,435] [ENTROPIES...: 4.6,5.1,4.9,6.0,4.9,7.8,4.9,5.9,7.7,5.0,6.0,7.8,4.8,5.9,7.7,4.9,6.0,7.8,4.8,5.9,7.7,4.9,6.0,7.8,4.8,5.9,7.7,4.9,6.0,7.8,4.9,5.9] new: [...425] [ip4][..tcp] [.....172.16.0.1][59852] -> [..192.168.10.50][...80] new: [...426] [ip4][..tcp] [.....172.16.0.1][59866] -> [..192.168.10.50][...80] guessed: [...346] [ip4][..tcp] [.....172.16.0.1][58440] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...346] [ip4][..tcp] [.....172.16.0.1][58440] -> [..192.168.10.50][...80] guessed: [...347] [ip4][..tcp] [.....172.16.0.1][58454] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...347] [ip4][..tcp] [.....172.16.0.1][58454] -> [..192.168.10.50][...80] guessed: [...348] [ip4][..tcp] [.....172.16.0.1][58468] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...348] [ip4][..tcp] [.....172.16.0.1][58468] -> [..192.168.10.50][...80] guessed: [...349] [ip4][..tcp] [.....172.16.0.1][58482] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...349] [ip4][..tcp] [.....172.16.0.1][58482] -> [..192.168.10.50][...80] guessed: [...350] [ip4][..tcp] [.....172.16.0.1][58496] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...350] [ip4][..tcp] [.....172.16.0.1][58496] -> [..192.168.10.50][...80] guessed: [...351] [ip4][..tcp] [.....172.16.0.1][58510] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...351] [ip4][..tcp] [.....172.16.0.1][58510] -> [..192.168.10.50][...80] new: [...427] [ip4][..tcp] [.....172.16.0.1][59880] -> [..192.168.10.50][...80] new: [...428] [ip4][..tcp] [.....172.16.0.1][59906] -> [..192.168.10.50][...80] new: [...429] [ip4][..tcp] [.....172.16.0.1][59920] -> [..192.168.10.50][...80] new: [...430] [ip4][..tcp] [.....172.16.0.1][59934] -> [..192.168.10.50][...80] new: [...431] [ip4][..tcp] [.....172.16.0.1][59960] -> [..192.168.10.50][...80] new: [...432] [ip4][..tcp] [.....172.16.0.1][59974] -> [..192.168.10.50][...80] guessed: [...352] [ip4][..tcp] [.....172.16.0.1][58536] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...352] [ip4][..tcp] [.....172.16.0.1][58536] -> [..192.168.10.50][...80] guessed: [...353] [ip4][..tcp] [.....172.16.0.1][58550] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...353] [ip4][..tcp] [.....172.16.0.1][58550] -> [..192.168.10.50][...80] guessed: [...354] [ip4][..tcp] [.....172.16.0.1][58564] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...354] [ip4][..tcp] [.....172.16.0.1][58564] -> [..192.168.10.50][...80] guessed: [...355] [ip4][..tcp] [.....172.16.0.1][58590] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...355] [ip4][..tcp] [.....172.16.0.1][58590] -> [..192.168.10.50][...80] guessed: [...356] [ip4][..tcp] [.....172.16.0.1][58604] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...356] [ip4][..tcp] [.....172.16.0.1][58604] -> [..192.168.10.50][...80] guessed: [...357] [ip4][..tcp] [.....172.16.0.1][58630] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...357] [ip4][..tcp] [.....172.16.0.1][58630] -> [..192.168.10.50][...80] new: [...433] [ip4][..tcp] [.....172.16.0.1][59988] -> [..192.168.10.50][...80] new: [...434] [ip4][..tcp] [.....172.16.0.1][60014] -> [..192.168.10.50][...80] new: [...435] [ip4][..tcp] [.....172.16.0.1][60028] -> [..192.168.10.50][...80] new: [...436] [ip4][..tcp] [.....172.16.0.1][60042] -> [..192.168.10.50][...80] new: [...437] [ip4][..tcp] [.....172.16.0.1][60056] -> [..192.168.10.50][...80] new: [...438] [ip4][..tcp] [.....172.16.0.1][60084] -> [..192.168.10.50][...80] guessed: [...358] [ip4][..tcp] [.....172.16.0.1][58650] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...358] [ip4][..tcp] [.....172.16.0.1][58650] -> [..192.168.10.50][...80] guessed: [...359] [ip4][..tcp] [.....172.16.0.1][58664] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...359] [ip4][..tcp] [.....172.16.0.1][58664] -> [..192.168.10.50][...80] guessed: [...360] [ip4][..tcp] [.....172.16.0.1][58690] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...360] [ip4][..tcp] [.....172.16.0.1][58690] -> [..192.168.10.50][...80] guessed: [...361] [ip4][..tcp] [.....172.16.0.1][58704] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...361] [ip4][..tcp] [.....172.16.0.1][58704] -> [..192.168.10.50][...80] guessed: [...362] [ip4][..tcp] [.....172.16.0.1][58718] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...362] [ip4][..tcp] [.....172.16.0.1][58718] -> [..192.168.10.50][...80] guessed: [...363] [ip4][..tcp] [.....172.16.0.1][58744] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...363] [ip4][..tcp] [.....172.16.0.1][58744] -> [..192.168.10.50][...80] new: [...439] [ip4][..tcp] [.....172.16.0.1][60134] -> [..192.168.10.50][...80] new: [...440] [ip4][..tcp] [.....172.16.0.1][60136] -> [..192.168.10.50][...80] new: [...441] [ip4][..tcp] [.....172.16.0.1][60154] -> [..192.168.10.50][...80] new: [...442] [ip4][..tcp] [.....172.16.0.1][60180] -> [..192.168.10.50][...80] new: [...443] [ip4][..tcp] [.....172.16.0.1][60194] -> [..192.168.10.50][...80] new: [...444] [ip4][..tcp] [.....172.16.0.1][60220] -> [..192.168.10.50][...80] guessed: [...364] [ip4][..tcp] [.....172.16.0.1][58758] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...364] [ip4][..tcp] [.....172.16.0.1][58758] -> [..192.168.10.50][...80] guessed: [...365] [ip4][..tcp] [.....172.16.0.1][58772] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...365] [ip4][..tcp] [.....172.16.0.1][58772] -> [..192.168.10.50][...80] guessed: [...366] [ip4][..tcp] [.....172.16.0.1][58798] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...366] [ip4][..tcp] [.....172.16.0.1][58798] -> [..192.168.10.50][...80] guessed: [...367] [ip4][..tcp] [.....172.16.0.1][58812] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...367] [ip4][..tcp] [.....172.16.0.1][58812] -> [..192.168.10.50][...80] guessed: [...368] [ip4][..tcp] [.....172.16.0.1][58838] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...368] [ip4][..tcp] [.....172.16.0.1][58838] -> [..192.168.10.50][...80] guessed: [...369] [ip4][..tcp] [.....172.16.0.1][58852] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...369] [ip4][..tcp] [.....172.16.0.1][58852] -> [..192.168.10.50][...80] guessed: [...370] [ip4][..tcp] [.....172.16.0.1][58866] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...370] [ip4][..tcp] [.....172.16.0.1][58866] -> [..192.168.10.50][...80] new: [...445] [ip4][..tcp] [.....172.16.0.1][60234] -> [..192.168.10.50][...80] new: [...446] [ip4][..tcp] [.....172.16.0.1][60260] -> [..192.168.10.50][...80] new: [...447] [ip4][..tcp] [.....172.16.0.1][60274] -> [..192.168.10.50][...80] new: [...448] [ip4][..tcp] [.....172.16.0.1][60288] -> [..192.168.10.50][...80] new: [...449] [ip4][..tcp] [.....172.16.0.1][60314] -> [..192.168.10.50][...80] new: [...450] [ip4][..tcp] [.....172.16.0.1][60328] -> [..192.168.10.50][...80] guessed: [...371] [ip4][..tcp] [.....172.16.0.1][58892] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...371] [ip4][..tcp] [.....172.16.0.1][58892] -> [..192.168.10.50][...80] guessed: [...372] [ip4][..tcp] [.....172.16.0.1][58906] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...372] [ip4][..tcp] [.....172.16.0.1][58906] -> [..192.168.10.50][...80] guessed: [...373] [ip4][..tcp] [.....172.16.0.1][58920] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...373] [ip4][..tcp] [.....172.16.0.1][58920] -> [..192.168.10.50][...80] guessed: [...374] [ip4][..tcp] [.....172.16.0.1][58946] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...374] [ip4][..tcp] [.....172.16.0.1][58946] -> [..192.168.10.50][...80] guessed: [...375] [ip4][..tcp] [.....172.16.0.1][58960] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...375] [ip4][..tcp] [.....172.16.0.1][58960] -> [..192.168.10.50][...80] guessed: [...376] [ip4][..tcp] [.....172.16.0.1][58974] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...376] [ip4][..tcp] [.....172.16.0.1][58974] -> [..192.168.10.50][...80] new: [...451] [ip4][..tcp] [.....172.16.0.1][60342] -> [..192.168.10.50][...80] new: [...452] [ip4][..tcp] [.....172.16.0.1][60356] -> [..192.168.10.50][...80] new: [...453] [ip4][..tcp] [.....172.16.0.1][60370] -> [..192.168.10.50][...80] new: [...454] [ip4][..tcp] [.....172.16.0.1][60384] -> [..192.168.10.50][...80] new: [...455] [ip4][..tcp] [.....172.16.0.1][60410] -> [..192.168.10.50][...80] new: [...456] [ip4][..tcp] [.....172.16.0.1][60424] -> [..192.168.10.50][...80] new: [...457] [ip4][..tcp] [.....172.16.0.1][60438] -> [..192.168.10.50][...80] end: [...342] [ip4][..tcp] [.....172.16.0.1][58360] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [...377] [ip4][..tcp] [.....172.16.0.1][58988] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...377] [ip4][..tcp] [.....172.16.0.1][58988] -> [..192.168.10.50][...80] guessed: [...378] [ip4][..tcp] [.....172.16.0.1][59002] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...378] [ip4][..tcp] [.....172.16.0.1][59002] -> [..192.168.10.50][...80] guessed: [...379] [ip4][..tcp] [.....172.16.0.1][59016] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...379] [ip4][..tcp] [.....172.16.0.1][59016] -> [..192.168.10.50][...80] guessed: [...381] [ip4][..tcp] [.....172.16.0.1][59056] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...381] [ip4][..tcp] [.....172.16.0.1][59056] -> [..192.168.10.50][...80] guessed: [...382] [ip4][..tcp] [.....172.16.0.1][59070] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...382] [ip4][..tcp] [.....172.16.0.1][59070] -> [..192.168.10.50][...80] new: [...458] [ip4][..tcp] [.....172.16.0.1][60464] -> [..192.168.10.50][...80] new: [...459] [ip4][..tcp] [.....172.16.0.1][60478] -> [..192.168.10.50][...80] detected: [...458] [ip4][..tcp] [.....172.16.0.1][60464] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [...460] [ip4][..tcp] [.....172.16.0.1][60504] -> [..192.168.10.50][...80] new: [...461] [ip4][..tcp] [.....172.16.0.1][60518] -> [..192.168.10.50][...80] new: [...462] [ip4][..tcp] [.....172.16.0.1][60532] -> [..192.168.10.50][...80] guessed: [...383] [ip4][..tcp] [.....172.16.0.1][59096] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...383] [ip4][..tcp] [.....172.16.0.1][59096] -> [..192.168.10.50][...80] guessed: [...384] [ip4][..tcp] [.....172.16.0.1][59110] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...384] [ip4][..tcp] [.....172.16.0.1][59110] -> [..192.168.10.50][...80] guessed: [...385] [ip4][..tcp] [.....172.16.0.1][59124] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...385] [ip4][..tcp] [.....172.16.0.1][59124] -> [..192.168.10.50][...80] guessed: [...386] [ip4][..tcp] [.....172.16.0.1][59150] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...386] [ip4][..tcp] [.....172.16.0.1][59150] -> [..192.168.10.50][...80] guessed: [...387] [ip4][..tcp] [.....172.16.0.1][59164] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...387] [ip4][..tcp] [.....172.16.0.1][59164] -> [..192.168.10.50][...80] guessed: [...388] [ip4][..tcp] [.....172.16.0.1][59178] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...388] [ip4][..tcp] [.....172.16.0.1][59178] -> [..192.168.10.50][...80] guessed: [...389] [ip4][..tcp] [.....172.16.0.1][59192] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...389] [ip4][..tcp] [.....172.16.0.1][59192] -> [..192.168.10.50][...80] new: [...463] [ip4][..tcp] [.....172.16.0.1][60558] -> [..192.168.10.50][...80] analyse: [...458] [ip4][..tcp] [.....172.16.0.1][60464] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 3.582| 0.571| 0.887| 786468.045| 3.700] [PKTLEN......: 52.000| 1920.000| 713.700| 750.900| 563862.600| 4.200] [BINS(c->s)..: 11,0,0,0,0,0,0,0,0,0,0,5,0,0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0] [IATS(ms)....: 0.1,0.9,3581.2,3582.1,3.3,4.1,271.0,275.6,4.6,1007.5,1011.3,3.8,268.9,273.0,4.1,1007.5,1011.6,4.2,263.6,267.5,3.9,1019.8,1023.7,4.0,253.2,261.2,7.9,1002.9,1011.8,8.9,255.9] [PKTLENS.....: 60,60,52,435,52,1823,52,637,1919,52,435,1822,52,637,1920,52,435,1822,52,637,1917,52,435,1822,52,637,1920,52,435,1822,52,637] [ENTROPIES...: 4.6,5.1,4.9,5.9,4.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,4.9,6.0,7.8,5.0,5.9,7.7,4.9,6.0,7.8,5.0,5.9,7.7,4.9,6.0,7.8,5.0,5.8,7.7,4.9,6.0] new: [...464] [ip4][..tcp] [.....172.16.0.1][60572] -> [..192.168.10.50][...80] new: [...465] [ip4][..tcp] [.....172.16.0.1][60598] -> [..192.168.10.50][...80] new: [...466] [ip4][..tcp] [.....172.16.0.1][60612] -> [..192.168.10.50][...80] new: [...467] [ip4][..tcp] [.....172.16.0.1][60626] -> [..192.168.10.50][...80] new: [...468] [ip4][..tcp] [.....172.16.0.1][60652] -> [..192.168.10.50][...80] guessed: [...390] [ip4][..tcp] [.....172.16.0.1][59206] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...390] [ip4][..tcp] [.....172.16.0.1][59206] -> [..192.168.10.50][...80] guessed: [...391] [ip4][..tcp] [.....172.16.0.1][59220] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...391] [ip4][..tcp] [.....172.16.0.1][59220] -> [..192.168.10.50][...80] guessed: [...392] [ip4][..tcp] [.....172.16.0.1][59246] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...392] [ip4][..tcp] [.....172.16.0.1][59246] -> [..192.168.10.50][...80] guessed: [...393] [ip4][..tcp] [.....172.16.0.1][59260] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...393] [ip4][..tcp] [.....172.16.0.1][59260] -> [..192.168.10.50][...80] guessed: [...394] [ip4][..tcp] [.....172.16.0.1][59274] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...394] [ip4][..tcp] [.....172.16.0.1][59274] -> [..192.168.10.50][...80] guessed: [...395] [ip4][..tcp] [.....172.16.0.1][59300] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...395] [ip4][..tcp] [.....172.16.0.1][59300] -> [..192.168.10.50][...80] guessed: [...396] [ip4][..tcp] [.....172.16.0.1][59314] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...396] [ip4][..tcp] [.....172.16.0.1][59314] -> [..192.168.10.50][...80] new: [...469] [ip4][..tcp] [.....172.16.0.1][60666] -> [..192.168.10.50][...80] new: [...470] [ip4][..tcp] [.....172.16.0.1][60692] -> [..192.168.10.50][...80] new: [...471] [ip4][..tcp] [.....172.16.0.1][60706] -> [..192.168.10.50][...80] new: [...472] [ip4][..tcp] [.....172.16.0.1][60720] -> [..192.168.10.50][...80] new: [...473] [ip4][..tcp] [.....172.16.0.1][60734] -> [..192.168.10.50][...80] new: [...474] [ip4][..tcp] [.....172.16.0.1][60748] -> [..192.168.10.50][...80] new: [...475] [ip4][..tcp] [.....172.16.0.1][60762] -> [..192.168.10.50][...80] guessed: [...397] [ip4][..tcp] [.....172.16.0.1][59328] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...397] [ip4][..tcp] [.....172.16.0.1][59328] -> [..192.168.10.50][...80] guessed: [...398] [ip4][..tcp] [.....172.16.0.1][59354] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...398] [ip4][..tcp] [.....172.16.0.1][59354] -> [..192.168.10.50][...80] guessed: [...399] [ip4][..tcp] [.....172.16.0.1][59368] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...399] [ip4][..tcp] [.....172.16.0.1][59368] -> [..192.168.10.50][...80] guessed: [...400] [ip4][..tcp] [.....172.16.0.1][59382] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...400] [ip4][..tcp] [.....172.16.0.1][59382] -> [..192.168.10.50][...80] guessed: [...401] [ip4][..tcp] [.....172.16.0.1][59408] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...401] [ip4][..tcp] [.....172.16.0.1][59408] -> [..192.168.10.50][...80] guessed: [...402] [ip4][..tcp] [.....172.16.0.1][59422] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...402] [ip4][..tcp] [.....172.16.0.1][59422] -> [..192.168.10.50][...80] new: [...476] [ip4][..tcp] [.....172.16.0.1][60788] -> [..192.168.10.50][...80] new: [...477] [ip4][..tcp] [.....172.16.0.1][60802] -> [..192.168.10.50][...80] new: [...478] [ip4][..tcp] [.....172.16.0.1][60816] -> [..192.168.10.50][...80] new: [...479] [ip4][..tcp] [.....172.16.0.1][60842] -> [..192.168.10.50][...80] new: [...480] [ip4][..tcp] [.....172.16.0.1][60856] -> [..192.168.10.50][...80] guessed: [...403] [ip4][..tcp] [.....172.16.0.1][59436] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...403] [ip4][..tcp] [.....172.16.0.1][59436] -> [..192.168.10.50][...80] guessed: [...404] [ip4][..tcp] [.....172.16.0.1][59462] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...404] [ip4][..tcp] [.....172.16.0.1][59462] -> [..192.168.10.50][...80] guessed: [...405] [ip4][..tcp] [.....172.16.0.1][59476] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...405] [ip4][..tcp] [.....172.16.0.1][59476] -> [..192.168.10.50][...80] guessed: [...406] [ip4][..tcp] [.....172.16.0.1][59502] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...406] [ip4][..tcp] [.....172.16.0.1][59502] -> [..192.168.10.50][...80] guessed: [...407] [ip4][..tcp] [.....172.16.0.1][59516] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...407] [ip4][..tcp] [.....172.16.0.1][59516] -> [..192.168.10.50][...80] guessed: [...408] [ip4][..tcp] [.....172.16.0.1][59530] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...408] [ip4][..tcp] [.....172.16.0.1][59530] -> [..192.168.10.50][...80] new: [...481] [ip4][..tcp] [.....172.16.0.1][60882] -> [..192.168.10.50][...80] new: [...482] [ip4][..tcp] [.....172.16.0.1][60896] -> [..192.168.10.50][...80] new: [...483] [ip4][..tcp] [.....172.16.0.1][60922] -> [..192.168.10.50][...80] new: [...484] [ip4][..tcp] [.....172.16.0.1][60936] -> [..192.168.10.50][...80] new: [...485] [ip4][..tcp] [.....172.16.0.1][60950] -> [..192.168.10.50][...80] new: [...486] [ip4][..tcp] [.....172.16.0.1][60976] -> [..192.168.10.50][...80] guessed: [...409] [ip4][..tcp] [.....172.16.0.1][59556] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...409] [ip4][..tcp] [.....172.16.0.1][59556] -> [..192.168.10.50][...80] guessed: [...410] [ip4][..tcp] [.....172.16.0.1][59570] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...410] [ip4][..tcp] [.....172.16.0.1][59570] -> [..192.168.10.50][...80] guessed: [...411] [ip4][..tcp] [.....172.16.0.1][59584] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...411] [ip4][..tcp] [.....172.16.0.1][59584] -> [..192.168.10.50][...80] guessed: [...412] [ip4][..tcp] [.....172.16.0.1][59610] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...412] [ip4][..tcp] [.....172.16.0.1][59610] -> [..192.168.10.50][...80] guessed: [...413] [ip4][..tcp] [.....172.16.0.1][59624] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...413] [ip4][..tcp] [.....172.16.0.1][59624] -> [..192.168.10.50][...80] new: [...487] [ip4][..tcp] [.....172.16.0.1][60990] -> [..192.168.10.50][...80] new: [...488] [ip4][..tcp] [.....172.16.0.1][32784] -> [..192.168.10.50][...80] new: [...489] [ip4][..tcp] [.....172.16.0.1][32798] -> [..192.168.10.50][...80] new: [...490] [ip4][..tcp] [.....172.16.0.1][32812] -> [..192.168.10.50][...80] new: [...491] [ip4][..tcp] [.....172.16.0.1][32838] -> [..192.168.10.50][...80] new: [...492] [ip4][..tcp] [.....172.16.0.1][32852] -> [..192.168.10.50][...80] end: [...380] [ip4][..tcp] [.....172.16.0.1][59042] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [...414] [ip4][..tcp] [.....172.16.0.1][59650] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...414] [ip4][..tcp] [.....172.16.0.1][59650] -> [..192.168.10.50][...80] guessed: [...415] [ip4][..tcp] [.....172.16.0.1][59664] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...415] [ip4][..tcp] [.....172.16.0.1][59664] -> [..192.168.10.50][...80] guessed: [...416] [ip4][..tcp] [.....172.16.0.1][59678] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...416] [ip4][..tcp] [.....172.16.0.1][59678] -> [..192.168.10.50][...80] guessed: [...417] [ip4][..tcp] [.....172.16.0.1][59704] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...417] [ip4][..tcp] [.....172.16.0.1][59704] -> [..192.168.10.50][...80] guessed: [...418] [ip4][..tcp] [.....172.16.0.1][59718] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...418] [ip4][..tcp] [.....172.16.0.1][59718] -> [..192.168.10.50][...80] new: [...493] [ip4][..tcp] [.....172.16.0.1][32878] -> [..192.168.10.50][...80] new: [...494] [ip4][..tcp] [.....172.16.0.1][32892] -> [..192.168.10.50][...80] new: [...495] [ip4][..tcp] [.....172.16.0.1][32906] -> [..192.168.10.50][...80] new: [...496] [ip4][..tcp] [.....172.16.0.1][32932] -> [..192.168.10.50][...80] new: [...497] [ip4][..tcp] [.....172.16.0.1][32946] -> [..192.168.10.50][...80] detected: [...495] [ip4][..tcp] [.....172.16.0.1][32906] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [...498] [ip4][..tcp] [.....172.16.0.1][32960] -> [..192.168.10.50][...80] guessed: [...420] [ip4][..tcp] [.....172.16.0.1][59758] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...420] [ip4][..tcp] [.....172.16.0.1][59758] -> [..192.168.10.50][...80] guessed: [...421] [ip4][..tcp] [.....172.16.0.1][59772] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...421] [ip4][..tcp] [.....172.16.0.1][59772] -> [..192.168.10.50][...80] guessed: [...422] [ip4][..tcp] [.....172.16.0.1][59786] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...422] [ip4][..tcp] [.....172.16.0.1][59786] -> [..192.168.10.50][...80] guessed: [...423] [ip4][..tcp] [.....172.16.0.1][59812] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...423] [ip4][..tcp] [.....172.16.0.1][59812] -> [..192.168.10.50][...80] guessed: [...424] [ip4][..tcp] [.....172.16.0.1][59826] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...424] [ip4][..tcp] [.....172.16.0.1][59826] -> [..192.168.10.50][...80] new: [...499] [ip4][..tcp] [.....172.16.0.1][32974] -> [..192.168.10.50][...80] new: [...500] [ip4][..tcp] [.....172.16.0.1][32988] -> [..192.168.10.50][...80] new: [...501] [ip4][..tcp] [.....172.16.0.1][33002] -> [..192.168.10.50][...80] analyse: [...495] [ip4][..tcp] [.....172.16.0.1][32906] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 3.862| 0.614| 0.953| 908128.223| 3.700] [PKTLEN......: 52.000| 1921.000| 716.800| 755.600| 570948.000| 4.200] [BINS(c->s)..: 11,0,0,0,0,0,0,0,0,0,0,5,0,0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0] [IATS(ms)....: 0.2,0.9,3861.2,3862.0,3.2,4.0,1007.4,1011.0,3.7,256.9,260.5,3.6,1018.3,1022.0,3.6,243.4,247.0,3.6,1033.5,1037.2,3.7,244.2,248.3,4.1,1037.5,1041.7,4.2,261.5,265.1,3.6,1039.0] [PKTLENS.....: 60,60,52,637,52,1920,52,435,1822,52,637,1920,52,435,1822,52,637,1920,52,435,1822,52,637,1916,52,435,1822,52,637,1921,52,435] [ENTROPIES...: 4.5,5.1,4.9,6.0,4.9,7.8,4.9,5.9,7.7,4.8,6.0,7.8,4.9,5.9,7.7,4.8,6.0,7.8,4.9,5.9,7.7,4.9,6.1,7.8,4.9,5.9,7.7,4.9,6.0,7.8,4.9,5.9] new: [...502] [ip4][..tcp] [.....172.16.0.1][33028] -> [..192.168.10.50][...80] new: [...503] [ip4][..tcp] [.....172.16.0.1][33042] -> [..192.168.10.50][...80] new: [...504] [ip4][..tcp] [.....172.16.0.1][33068] -> [..192.168.10.50][...80] guessed: [...425] [ip4][..tcp] [.....172.16.0.1][59852] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...425] [ip4][..tcp] [.....172.16.0.1][59852] -> [..192.168.10.50][...80] guessed: [...426] [ip4][..tcp] [.....172.16.0.1][59866] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...426] [ip4][..tcp] [.....172.16.0.1][59866] -> [..192.168.10.50][...80] guessed: [...427] [ip4][..tcp] [.....172.16.0.1][59880] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...427] [ip4][..tcp] [.....172.16.0.1][59880] -> [..192.168.10.50][...80] guessed: [...428] [ip4][..tcp] [.....172.16.0.1][59906] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...428] [ip4][..tcp] [.....172.16.0.1][59906] -> [..192.168.10.50][...80] guessed: [...429] [ip4][..tcp] [.....172.16.0.1][59920] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...429] [ip4][..tcp] [.....172.16.0.1][59920] -> [..192.168.10.50][...80] guessed: [...430] [ip4][..tcp] [.....172.16.0.1][59934] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...430] [ip4][..tcp] [.....172.16.0.1][59934] -> [..192.168.10.50][...80] guessed: [...431] [ip4][..tcp] [.....172.16.0.1][59960] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...431] [ip4][..tcp] [.....172.16.0.1][59960] -> [..192.168.10.50][...80] new: [...505] [ip4][..tcp] [.....172.16.0.1][33082] -> [..192.168.10.50][...80] new: [...506] [ip4][..tcp] [.....172.16.0.1][33096] -> [..192.168.10.50][...80] new: [...507] [ip4][..tcp] [.....172.16.0.1][33122] -> [..192.168.10.50][...80] new: [...508] [ip4][..tcp] [.....172.16.0.1][33136] -> [..192.168.10.50][...80] new: [...509] [ip4][..tcp] [.....172.16.0.1][33162] -> [..192.168.10.50][...80] new: [...510] [ip4][..tcp] [.....172.16.0.1][33176] -> [..192.168.10.50][...80] guessed: [...432] [ip4][..tcp] [.....172.16.0.1][59974] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...432] [ip4][..tcp] [.....172.16.0.1][59974] -> [..192.168.10.50][...80] guessed: [...433] [ip4][..tcp] [.....172.16.0.1][59988] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...433] [ip4][..tcp] [.....172.16.0.1][59988] -> [..192.168.10.50][...80] guessed: [...434] [ip4][..tcp] [.....172.16.0.1][60014] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...434] [ip4][..tcp] [.....172.16.0.1][60014] -> [..192.168.10.50][...80] guessed: [...435] [ip4][..tcp] [.....172.16.0.1][60028] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...435] [ip4][..tcp] [.....172.16.0.1][60028] -> [..192.168.10.50][...80] guessed: [...436] [ip4][..tcp] [.....172.16.0.1][60042] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...436] [ip4][..tcp] [.....172.16.0.1][60042] -> [..192.168.10.50][...80] guessed: [...437] [ip4][..tcp] [.....172.16.0.1][60056] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...437] [ip4][..tcp] [.....172.16.0.1][60056] -> [..192.168.10.50][...80] new: [...511] [ip4][..tcp] [.....172.16.0.1][33202] -> [..192.168.10.50][...80] new: [...512] [ip4][..tcp] [.....172.16.0.1][33216] -> [..192.168.10.50][...80] new: [...513] [ip4][..tcp] [.....172.16.0.1][33230] -> [..192.168.10.50][...80] new: [...514] [ip4][..tcp] [.....172.16.0.1][33256] -> [..192.168.10.50][...80] new: [...515] [ip4][..tcp] [.....172.16.0.1][33270] -> [..192.168.10.50][...80] guessed: [...438] [ip4][..tcp] [.....172.16.0.1][60084] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...438] [ip4][..tcp] [.....172.16.0.1][60084] -> [..192.168.10.50][...80] guessed: [...439] [ip4][..tcp] [.....172.16.0.1][60134] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...439] [ip4][..tcp] [.....172.16.0.1][60134] -> [..192.168.10.50][...80] guessed: [...440] [ip4][..tcp] [.....172.16.0.1][60136] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...440] [ip4][..tcp] [.....172.16.0.1][60136] -> [..192.168.10.50][...80] guessed: [...441] [ip4][..tcp] [.....172.16.0.1][60154] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...441] [ip4][..tcp] [.....172.16.0.1][60154] -> [..192.168.10.50][...80] guessed: [...442] [ip4][..tcp] [.....172.16.0.1][60180] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...442] [ip4][..tcp] [.....172.16.0.1][60180] -> [..192.168.10.50][...80] guessed: [...443] [ip4][..tcp] [.....172.16.0.1][60194] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...443] [ip4][..tcp] [.....172.16.0.1][60194] -> [..192.168.10.50][...80] new: [...516] [ip4][..tcp] [.....172.16.0.1][33296] -> [..192.168.10.50][...80] new: [...517] [ip4][..tcp] [.....172.16.0.1][33310] -> [..192.168.10.50][...80] new: [...518] [ip4][..tcp] [.....172.16.0.1][33324] -> [..192.168.10.50][...80] new: [...519] [ip4][..tcp] [.....172.16.0.1][33350] -> [..192.168.10.50][...80] new: [...520] [ip4][..tcp] [.....172.16.0.1][33364] -> [..192.168.10.50][...80] new: [...521] [ip4][..tcp] [.....172.16.0.1][33378] -> [..192.168.10.50][...80] guessed: [...444] [ip4][..tcp] [.....172.16.0.1][60220] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...444] [ip4][..tcp] [.....172.16.0.1][60220] -> [..192.168.10.50][...80] guessed: [...445] [ip4][..tcp] [.....172.16.0.1][60234] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...445] [ip4][..tcp] [.....172.16.0.1][60234] -> [..192.168.10.50][...80] guessed: [...446] [ip4][..tcp] [.....172.16.0.1][60260] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...446] [ip4][..tcp] [.....172.16.0.1][60260] -> [..192.168.10.50][...80] guessed: [...447] [ip4][..tcp] [.....172.16.0.1][60274] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...447] [ip4][..tcp] [.....172.16.0.1][60274] -> [..192.168.10.50][...80] guessed: [...448] [ip4][..tcp] [.....172.16.0.1][60288] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...448] [ip4][..tcp] [.....172.16.0.1][60288] -> [..192.168.10.50][...80] new: [...522] [ip4][..tcp] [.....172.16.0.1][33404] -> [..192.168.10.50][...80] new: [...523] [ip4][..tcp] [.....172.16.0.1][33418] -> [..192.168.10.50][...80] new: [...524] [ip4][..tcp] [.....172.16.0.1][33444] -> [..192.168.10.50][...80] new: [...525] [ip4][..tcp] [.....172.16.0.1][33458] -> [..192.168.10.50][...80] new: [...526] [ip4][..tcp] [.....172.16.0.1][33472] -> [..192.168.10.50][...80] new: [...527] [ip4][..tcp] [.....172.16.0.1][33486] -> [..192.168.10.50][...80] new: [...528] [ip4][..tcp] [.....172.16.0.1][33500] -> [..192.168.10.50][...80] guessed: [...449] [ip4][..tcp] [.....172.16.0.1][60314] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...449] [ip4][..tcp] [.....172.16.0.1][60314] -> [..192.168.10.50][...80] guessed: [...450] [ip4][..tcp] [.....172.16.0.1][60328] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...450] [ip4][..tcp] [.....172.16.0.1][60328] -> [..192.168.10.50][...80] guessed: [...451] [ip4][..tcp] [.....172.16.0.1][60342] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...451] [ip4][..tcp] [.....172.16.0.1][60342] -> [..192.168.10.50][...80] guessed: [...452] [ip4][..tcp] [.....172.16.0.1][60356] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...452] [ip4][..tcp] [.....172.16.0.1][60356] -> [..192.168.10.50][...80] guessed: [...453] [ip4][..tcp] [.....172.16.0.1][60370] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...453] [ip4][..tcp] [.....172.16.0.1][60370] -> [..192.168.10.50][...80] guessed: [...454] [ip4][..tcp] [.....172.16.0.1][60384] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...454] [ip4][..tcp] [.....172.16.0.1][60384] -> [..192.168.10.50][...80] guessed: [...455] [ip4][..tcp] [.....172.16.0.1][60410] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...455] [ip4][..tcp] [.....172.16.0.1][60410] -> [..192.168.10.50][...80] guessed: [...456] [ip4][..tcp] [.....172.16.0.1][60424] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...456] [ip4][..tcp] [.....172.16.0.1][60424] -> [..192.168.10.50][...80] new: [...529] [ip4][..tcp] [.....172.16.0.1][33526] -> [..192.168.10.50][...80] new: [...530] [ip4][..tcp] [.....172.16.0.1][33540] -> [..192.168.10.50][...80] new: [...531] [ip4][..tcp] [.....172.16.0.1][33554] -> [..192.168.10.50][...80] new: [...532] [ip4][..tcp] [.....172.16.0.1][33580] -> [..192.168.10.50][...80] new: [...533] [ip4][..tcp] [.....172.16.0.1][33594] -> [..192.168.10.50][...80] new: [...534] [ip4][..tcp] [.....172.16.0.1][33608] -> [..192.168.10.50][...80] end: [...419] [ip4][..tcp] [.....172.16.0.1][59732] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [...457] [ip4][..tcp] [.....172.16.0.1][60438] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...457] [ip4][..tcp] [.....172.16.0.1][60438] -> [..192.168.10.50][...80] guessed: [...459] [ip4][..tcp] [.....172.16.0.1][60478] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...459] [ip4][..tcp] [.....172.16.0.1][60478] -> [..192.168.10.50][...80] guessed: [...460] [ip4][..tcp] [.....172.16.0.1][60504] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...460] [ip4][..tcp] [.....172.16.0.1][60504] -> [..192.168.10.50][...80] guessed: [...461] [ip4][..tcp] [.....172.16.0.1][60518] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...461] [ip4][..tcp] [.....172.16.0.1][60518] -> [..192.168.10.50][...80] guessed: [...462] [ip4][..tcp] [.....172.16.0.1][60532] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...462] [ip4][..tcp] [.....172.16.0.1][60532] -> [..192.168.10.50][...80] detected: [...532] [ip4][..tcp] [.....172.16.0.1][33580] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [...535] [ip4][..tcp] [.....172.16.0.1][33634] -> [..192.168.10.50][...80] new: [...536] [ip4][..tcp] [.....172.16.0.1][33648] -> [..192.168.10.50][...80] new: [...537] [ip4][..tcp] [.....172.16.0.1][33674] -> [..192.168.10.50][...80] analyse: [...532] [ip4][..tcp] [.....172.16.0.1][33580] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 4.841| 0.651| 1.171| 1372280.717| 3.500] [PKTLEN......: 52.000| 1921.000| 713.800| 751.000| 564013.300| 4.200] [BINS(c->s)..: 11,0,0,0,0,0,0,0,0,0,0,5,0,0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0] [IATS(ms)....: 0.1,0.9,4839.8,4840.6,3.7,4.5,263.2,266.8,3.7,1005.3,1009.1,3.8,260.6,264.4,3.8,1025.0,1028.7,3.7,266.1,269.7,3.7,1007.6,1011.9,4.3,260.9,265.1,4.2,1006.7,1010.8,4.2,244.8] [PKTLENS.....: 60,60,52,435,52,1823,52,637,1919,52,435,1822,52,637,1921,52,435,1822,52,637,1918,52,435,1822,52,637,1920,52,435,1822,52,637] [ENTROPIES...: 4.6,5.1,4.9,5.9,4.9,7.7,4.9,6.0,7.8,5.0,5.9,7.7,4.9,6.0,7.8,5.0,5.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,5.0,6.0] new: [...538] [ip4][..tcp] [.....172.16.0.1][33688] -> [..192.168.10.50][...80] new: [...539] [ip4][..tcp] [.....172.16.0.1][33702] -> [..192.168.10.50][...80] guessed: [...463] [ip4][..tcp] [.....172.16.0.1][60558] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...463] [ip4][..tcp] [.....172.16.0.1][60558] -> [..192.168.10.50][...80] guessed: [...464] [ip4][..tcp] [.....172.16.0.1][60572] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...464] [ip4][..tcp] [.....172.16.0.1][60572] -> [..192.168.10.50][...80] guessed: [...465] [ip4][..tcp] [.....172.16.0.1][60598] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...465] [ip4][..tcp] [.....172.16.0.1][60598] -> [..192.168.10.50][...80] guessed: [...466] [ip4][..tcp] [.....172.16.0.1][60612] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...466] [ip4][..tcp] [.....172.16.0.1][60612] -> [..192.168.10.50][...80] guessed: [...467] [ip4][..tcp] [.....172.16.0.1][60626] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...467] [ip4][..tcp] [.....172.16.0.1][60626] -> [..192.168.10.50][...80] new: [...540] [ip4][..tcp] [.....172.16.0.1][33728] -> [..192.168.10.50][...80] new: [...541] [ip4][..tcp] [.....172.16.0.1][33742] -> [..192.168.10.50][...80] new: [...542] [ip4][..tcp] [.....172.16.0.1][33768] -> [..192.168.10.50][...80] new: [...543] [ip4][..tcp] [.....172.16.0.1][33782] -> [..192.168.10.50][...80] new: [...544] [ip4][..tcp] [.....172.16.0.1][33808] -> [..192.168.10.50][...80] new: [...545] [ip4][..tcp] [.....172.16.0.1][33822] -> [..192.168.10.50][...80] guessed: [...468] [ip4][..tcp] [.....172.16.0.1][60652] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...468] [ip4][..tcp] [.....172.16.0.1][60652] -> [..192.168.10.50][...80] guessed: [...469] [ip4][..tcp] [.....172.16.0.1][60666] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...469] [ip4][..tcp] [.....172.16.0.1][60666] -> [..192.168.10.50][...80] guessed: [...470] [ip4][..tcp] [.....172.16.0.1][60692] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...470] [ip4][..tcp] [.....172.16.0.1][60692] -> [..192.168.10.50][...80] guessed: [...471] [ip4][..tcp] [.....172.16.0.1][60706] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...471] [ip4][..tcp] [.....172.16.0.1][60706] -> [..192.168.10.50][...80] guessed: [...472] [ip4][..tcp] [.....172.16.0.1][60720] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...472] [ip4][..tcp] [.....172.16.0.1][60720] -> [..192.168.10.50][...80] guessed: [...473] [ip4][..tcp] [.....172.16.0.1][60734] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...473] [ip4][..tcp] [.....172.16.0.1][60734] -> [..192.168.10.50][...80] guessed: [...474] [ip4][..tcp] [.....172.16.0.1][60748] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...474] [ip4][..tcp] [.....172.16.0.1][60748] -> [..192.168.10.50][...80] new: [...546] [ip4][..tcp] [.....172.16.0.1][33836] -> [..192.168.10.50][...80] new: [...547] [ip4][..tcp] [.....172.16.0.1][33862] -> [..192.168.10.50][...80] new: [...548] [ip4][..tcp] [.....172.16.0.1][33876] -> [..192.168.10.50][...80] new: [...549] [ip4][..tcp] [.....172.16.0.1][33902] -> [..192.168.10.50][...80] new: [...550] [ip4][..tcp] [.....172.16.0.1][33916] -> [..192.168.10.50][...80] new: [...551] [ip4][..tcp] [.....172.16.0.1][33930] -> [..192.168.10.50][...80] guessed: [...475] [ip4][..tcp] [.....172.16.0.1][60762] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...475] [ip4][..tcp] [.....172.16.0.1][60762] -> [..192.168.10.50][...80] guessed: [...476] [ip4][..tcp] [.....172.16.0.1][60788] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...476] [ip4][..tcp] [.....172.16.0.1][60788] -> [..192.168.10.50][...80] guessed: [...477] [ip4][..tcp] [.....172.16.0.1][60802] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...477] [ip4][..tcp] [.....172.16.0.1][60802] -> [..192.168.10.50][...80] guessed: [...478] [ip4][..tcp] [.....172.16.0.1][60816] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...478] [ip4][..tcp] [.....172.16.0.1][60816] -> [..192.168.10.50][...80] guessed: [...479] [ip4][..tcp] [.....172.16.0.1][60842] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...479] [ip4][..tcp] [.....172.16.0.1][60842] -> [..192.168.10.50][...80] guessed: [...480] [ip4][..tcp] [.....172.16.0.1][60856] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...480] [ip4][..tcp] [.....172.16.0.1][60856] -> [..192.168.10.50][...80] new: [...552] [ip4][..tcp] [.....172.16.0.1][33956] -> [..192.168.10.50][...80] new: [...553] [ip4][..tcp] [.....172.16.0.1][33970] -> [..192.168.10.50][...80] new: [...554] [ip4][..tcp] [.....172.16.0.1][33996] -> [..192.168.10.50][...80] new: [...555] [ip4][..tcp] [.....172.16.0.1][34010] -> [..192.168.10.50][...80] new: [...556] [ip4][..tcp] [.....172.16.0.1][34024] -> [..192.168.10.50][...80] guessed: [...481] [ip4][..tcp] [.....172.16.0.1][60882] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...481] [ip4][..tcp] [.....172.16.0.1][60882] -> [..192.168.10.50][...80] guessed: [...482] [ip4][..tcp] [.....172.16.0.1][60896] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...482] [ip4][..tcp] [.....172.16.0.1][60896] -> [..192.168.10.50][...80] guessed: [...483] [ip4][..tcp] [.....172.16.0.1][60922] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...483] [ip4][..tcp] [.....172.16.0.1][60922] -> [..192.168.10.50][...80] guessed: [...484] [ip4][..tcp] [.....172.16.0.1][60936] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...484] [ip4][..tcp] [.....172.16.0.1][60936] -> [..192.168.10.50][...80] guessed: [...485] [ip4][..tcp] [.....172.16.0.1][60950] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...485] [ip4][..tcp] [.....172.16.0.1][60950] -> [..192.168.10.50][...80] new: [...557] [ip4][..tcp] [.....172.16.0.1][34050] -> [..192.168.10.50][...80] new: [...558] [ip4][..tcp] [.....172.16.0.1][34064] -> [..192.168.10.50][...80] new: [...559] [ip4][..tcp] [.....172.16.0.1][34090] -> [..192.168.10.50][...80] new: [...560] [ip4][..tcp] [.....172.16.0.1][34104] -> [..192.168.10.50][...80] new: [...561] [ip4][..tcp] [.....172.16.0.1][34118] -> [..192.168.10.50][...80] new: [...562] [ip4][..tcp] [.....172.16.0.1][34144] -> [..192.168.10.50][...80] guessed: [...486] [ip4][..tcp] [.....172.16.0.1][60976] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...486] [ip4][..tcp] [.....172.16.0.1][60976] -> [..192.168.10.50][...80] guessed: [...487] [ip4][..tcp] [.....172.16.0.1][60990] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...487] [ip4][..tcp] [.....172.16.0.1][60990] -> [..192.168.10.50][...80] guessed: [...488] [ip4][..tcp] [.....172.16.0.1][32784] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...488] [ip4][..tcp] [.....172.16.0.1][32784] -> [..192.168.10.50][...80] guessed: [...489] [ip4][..tcp] [.....172.16.0.1][32798] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...489] [ip4][..tcp] [.....172.16.0.1][32798] -> [..192.168.10.50][...80] guessed: [...490] [ip4][..tcp] [.....172.16.0.1][32812] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...490] [ip4][..tcp] [.....172.16.0.1][32812] -> [..192.168.10.50][...80] guessed: [...491] [ip4][..tcp] [.....172.16.0.1][32838] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...491] [ip4][..tcp] [.....172.16.0.1][32838] -> [..192.168.10.50][...80] new: [...563] [ip4][..tcp] [.....172.16.0.1][34158] -> [..192.168.10.50][...80] new: [...564] [ip4][..tcp] [.....172.16.0.1][34184] -> [..192.168.10.50][...80] new: [...565] [ip4][..tcp] [.....172.16.0.1][34198] -> [..192.168.10.50][...80] new: [...566] [ip4][..tcp] [.....172.16.0.1][34224] -> [..192.168.10.50][...80] new: [...567] [ip4][..tcp] [.....172.16.0.1][34238] -> [..192.168.10.50][...80] new: [...568] [ip4][..tcp] [.....172.16.0.1][34252] -> [..192.168.10.50][...80] end: [...458] [ip4][..tcp] [.....172.16.0.1][60464] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [...492] [ip4][..tcp] [.....172.16.0.1][32852] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...492] [ip4][..tcp] [.....172.16.0.1][32852] -> [..192.168.10.50][...80] guessed: [...493] [ip4][..tcp] [.....172.16.0.1][32878] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...493] [ip4][..tcp] [.....172.16.0.1][32878] -> [..192.168.10.50][...80] guessed: [...494] [ip4][..tcp] [.....172.16.0.1][32892] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...494] [ip4][..tcp] [.....172.16.0.1][32892] -> [..192.168.10.50][...80] guessed: [...496] [ip4][..tcp] [.....172.16.0.1][32932] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...496] [ip4][..tcp] [.....172.16.0.1][32932] -> [..192.168.10.50][...80] guessed: [...497] [ip4][..tcp] [.....172.16.0.1][32946] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...497] [ip4][..tcp] [.....172.16.0.1][32946] -> [..192.168.10.50][...80] new: [...569] [ip4][..tcp] [.....172.16.0.1][34278] -> [..192.168.10.50][...80] new: [...570] [ip4][..tcp] [.....172.16.0.1][34292] -> [..192.168.10.50][...80] detected: [...569] [ip4][..tcp] [.....172.16.0.1][34278] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [...571] [ip4][..tcp] [.....172.16.0.1][34318] -> [..192.168.10.50][...80] new: [...572] [ip4][..tcp] [.....172.16.0.1][34332] -> [..192.168.10.50][...80] new: [...573] [ip4][..tcp] [.....172.16.0.1][34346] -> [..192.168.10.50][...80] analyse: [...569] [ip4][..tcp] [.....172.16.0.1][34278] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 2.588| 0.498| 0.689| 474371.129| 3.700] [PKTLEN......: 52.000| 1920.000| 704.700| 762.800| 581830.000| 4.100] [BINS(c->s)..: 12,0,0,0,0,0,0,0,0,0,0,4,0,0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,0,1,0,0,1,0] [IATS(ms)....: 0.2,0.7,2587.7,2588.4,3.7,4.5,1020.5,1024.9,4.4,244.7,248.4,3.7,1042.3,1047.0,4.6,242.3,246.0,3.7,1031.2,1034.9,3.7,241.4,245.1,3.6,0.5,1025.2,1029.3,3.8,251.3,255.5,4.2] [PKTLENS.....: 60,60,52,637,52,1918,52,435,1822,52,637,1918,52,435,1822,52,637,1919,52,435,1822,52,637,1920,52,52,435,1822,52,637,1918,52] [ENTROPIES...: 4.6,5.0,5.0,6.0,4.9,7.8,4.9,5.9,7.7,4.9,6.0,7.8,5.0,5.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,4.9,6.0,7.8,4.9,4.9,5.9,7.7,4.8,6.0,7.7,4.9] guessed: [...498] [ip4][..tcp] [.....172.16.0.1][32960] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...498] [ip4][..tcp] [.....172.16.0.1][32960] -> [..192.168.10.50][...80] guessed: [...499] [ip4][..tcp] [.....172.16.0.1][32974] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...499] [ip4][..tcp] [.....172.16.0.1][32974] -> [..192.168.10.50][...80] guessed: [...500] [ip4][..tcp] [.....172.16.0.1][32988] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...500] [ip4][..tcp] [.....172.16.0.1][32988] -> [..192.168.10.50][...80] guessed: [...501] [ip4][..tcp] [.....172.16.0.1][33002] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...501] [ip4][..tcp] [.....172.16.0.1][33002] -> [..192.168.10.50][...80] guessed: [...502] [ip4][..tcp] [.....172.16.0.1][33028] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...502] [ip4][..tcp] [.....172.16.0.1][33028] -> [..192.168.10.50][...80] guessed: [...503] [ip4][..tcp] [.....172.16.0.1][33042] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...503] [ip4][..tcp] [.....172.16.0.1][33042] -> [..192.168.10.50][...80] new: [...574] [ip4][..tcp] [.....172.16.0.1][34372] -> [..192.168.10.50][...80] new: [...575] [ip4][..tcp] [.....172.16.0.1][34386] -> [..192.168.10.50][...80] new: [...576] [ip4][..tcp] [.....172.16.0.1][34412] -> [..192.168.10.50][...80] new: [...577] [ip4][..tcp] [.....172.16.0.1][34426] -> [..192.168.10.50][...80] new: [...578] [ip4][..tcp] [.....172.16.0.1][34440] -> [..192.168.10.50][...80] new: [...579] [ip4][..tcp] [.....172.16.0.1][34466] -> [..192.168.10.50][...80] guessed: [...504] [ip4][..tcp] [.....172.16.0.1][33068] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...504] [ip4][..tcp] [.....172.16.0.1][33068] -> [..192.168.10.50][...80] guessed: [...505] [ip4][..tcp] [.....172.16.0.1][33082] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...505] [ip4][..tcp] [.....172.16.0.1][33082] -> [..192.168.10.50][...80] guessed: [...506] [ip4][..tcp] [.....172.16.0.1][33096] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...506] [ip4][..tcp] [.....172.16.0.1][33096] -> [..192.168.10.50][...80] guessed: [...507] [ip4][..tcp] [.....172.16.0.1][33122] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...507] [ip4][..tcp] [.....172.16.0.1][33122] -> [..192.168.10.50][...80] guessed: [...508] [ip4][..tcp] [.....172.16.0.1][33136] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...508] [ip4][..tcp] [.....172.16.0.1][33136] -> [..192.168.10.50][...80] guessed: [...509] [ip4][..tcp] [.....172.16.0.1][33162] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...509] [ip4][..tcp] [.....172.16.0.1][33162] -> [..192.168.10.50][...80] new: [...580] [ip4][..tcp] [.....172.16.0.1][34480] -> [..192.168.10.50][...80] new: [...581] [ip4][..tcp] [.....172.16.0.1][34506] -> [..192.168.10.50][...80] new: [...582] [ip4][..tcp] [.....172.16.0.1][34520] -> [..192.168.10.50][...80] new: [...583] [ip4][..tcp] [.....172.16.0.1][34534] -> [..192.168.10.50][...80] new: [...584] [ip4][..tcp] [.....172.16.0.1][34548] -> [..192.168.10.50][...80] new: [...585] [ip4][..tcp] [.....172.16.0.1][34562] -> [..192.168.10.50][...80] new: [...586] [ip4][..tcp] [.....172.16.0.1][34576] -> [..192.168.10.50][...80] guessed: [...510] [ip4][..tcp] [.....172.16.0.1][33176] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...510] [ip4][..tcp] [.....172.16.0.1][33176] -> [..192.168.10.50][...80] guessed: [...511] [ip4][..tcp] [.....172.16.0.1][33202] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...511] [ip4][..tcp] [.....172.16.0.1][33202] -> [..192.168.10.50][...80] guessed: [...512] [ip4][..tcp] [.....172.16.0.1][33216] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...512] [ip4][..tcp] [.....172.16.0.1][33216] -> [..192.168.10.50][...80] guessed: [...513] [ip4][..tcp] [.....172.16.0.1][33230] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...513] [ip4][..tcp] [.....172.16.0.1][33230] -> [..192.168.10.50][...80] guessed: [...514] [ip4][..tcp] [.....172.16.0.1][33256] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...514] [ip4][..tcp] [.....172.16.0.1][33256] -> [..192.168.10.50][...80] guessed: [...515] [ip4][..tcp] [.....172.16.0.1][33270] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...515] [ip4][..tcp] [.....172.16.0.1][33270] -> [..192.168.10.50][...80] new: [...587] [ip4][..tcp] [.....172.16.0.1][34602] -> [..192.168.10.50][...80] new: [...588] [ip4][..tcp] [.....172.16.0.1][34616] -> [..192.168.10.50][...80] new: [...589] [ip4][..tcp] [.....172.16.0.1][34642] -> [..192.168.10.50][...80] new: [...590] [ip4][..tcp] [.....172.16.0.1][34656] -> [..192.168.10.50][...80] new: [...591] [ip4][..tcp] [.....172.16.0.1][34670] -> [..192.168.10.50][...80] guessed: [...516] [ip4][..tcp] [.....172.16.0.1][33296] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...516] [ip4][..tcp] [.....172.16.0.1][33296] -> [..192.168.10.50][...80] guessed: [...517] [ip4][..tcp] [.....172.16.0.1][33310] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...517] [ip4][..tcp] [.....172.16.0.1][33310] -> [..192.168.10.50][...80] guessed: [...518] [ip4][..tcp] [.....172.16.0.1][33324] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...518] [ip4][..tcp] [.....172.16.0.1][33324] -> [..192.168.10.50][...80] guessed: [...519] [ip4][..tcp] [.....172.16.0.1][33350] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...519] [ip4][..tcp] [.....172.16.0.1][33350] -> [..192.168.10.50][...80] guessed: [...520] [ip4][..tcp] [.....172.16.0.1][33364] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...520] [ip4][..tcp] [.....172.16.0.1][33364] -> [..192.168.10.50][...80] guessed: [...521] [ip4][..tcp] [.....172.16.0.1][33378] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...521] [ip4][..tcp] [.....172.16.0.1][33378] -> [..192.168.10.50][...80] new: [...592] [ip4][..tcp] [.....172.16.0.1][34696] -> [..192.168.10.50][...80] new: [...593] [ip4][..tcp] [.....172.16.0.1][34710] -> [..192.168.10.50][...80] new: [...594] [ip4][..tcp] [.....172.16.0.1][34724] -> [..192.168.10.50][...80] new: [...595] [ip4][..tcp] [.....172.16.0.1][34738] -> [..192.168.10.50][...80] new: [...596] [ip4][..tcp] [.....172.16.0.1][34752] -> [..192.168.10.50][...80] new: [...597] [ip4][..tcp] [.....172.16.0.1][34766] -> [..192.168.10.50][...80] new: [...598] [ip4][..tcp] [.....172.16.0.1][34792] -> [..192.168.10.50][...80] guessed: [...522] [ip4][..tcp] [.....172.16.0.1][33404] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...522] [ip4][..tcp] [.....172.16.0.1][33404] -> [..192.168.10.50][...80] guessed: [...523] [ip4][..tcp] [.....172.16.0.1][33418] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...523] [ip4][..tcp] [.....172.16.0.1][33418] -> [..192.168.10.50][...80] guessed: [...524] [ip4][..tcp] [.....172.16.0.1][33444] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...524] [ip4][..tcp] [.....172.16.0.1][33444] -> [..192.168.10.50][...80] guessed: [...525] [ip4][..tcp] [.....172.16.0.1][33458] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...525] [ip4][..tcp] [.....172.16.0.1][33458] -> [..192.168.10.50][...80] guessed: [...526] [ip4][..tcp] [.....172.16.0.1][33472] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...526] [ip4][..tcp] [.....172.16.0.1][33472] -> [..192.168.10.50][...80] guessed: [...527] [ip4][..tcp] [.....172.16.0.1][33486] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...527] [ip4][..tcp] [.....172.16.0.1][33486] -> [..192.168.10.50][...80] new: [...599] [ip4][..tcp] [.....172.16.0.1][34806] -> [..192.168.10.50][...80] new: [...600] [ip4][..tcp] [.....172.16.0.1][34832] -> [..192.168.10.50][...80] new: [...601] [ip4][..tcp] [.....172.16.0.1][34846] -> [..192.168.10.50][...80] new: [...602] [ip4][..tcp] [.....172.16.0.1][34860] -> [..192.168.10.50][...80] new: [...603] [ip4][..tcp] [.....172.16.0.1][34886] -> [..192.168.10.50][...80] new: [...604] [ip4][..tcp] [.....172.16.0.1][34900] -> [..192.168.10.50][...80] end: [...495] [ip4][..tcp] [.....172.16.0.1][32906] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [...528] [ip4][..tcp] [.....172.16.0.1][33500] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...528] [ip4][..tcp] [.....172.16.0.1][33500] -> [..192.168.10.50][...80] guessed: [...529] [ip4][..tcp] [.....172.16.0.1][33526] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...529] [ip4][..tcp] [.....172.16.0.1][33526] -> [..192.168.10.50][...80] guessed: [...530] [ip4][..tcp] [.....172.16.0.1][33540] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...530] [ip4][..tcp] [.....172.16.0.1][33540] -> [..192.168.10.50][...80] guessed: [...531] [ip4][..tcp] [.....172.16.0.1][33554] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...531] [ip4][..tcp] [.....172.16.0.1][33554] -> [..192.168.10.50][...80] guessed: [...533] [ip4][..tcp] [.....172.16.0.1][33594] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...533] [ip4][..tcp] [.....172.16.0.1][33594] -> [..192.168.10.50][...80] new: [...605] [ip4][..tcp] [.....172.16.0.1][34926] -> [..192.168.10.50][...80] new: [...606] [ip4][..tcp] [.....172.16.0.1][34940] -> [..192.168.10.50][...80] new: [...607] [ip4][..tcp] [.....172.16.0.1][34954] -> [..192.168.10.50][...80] new: [...608] [ip4][..tcp] [.....172.16.0.1][34980] -> [..192.168.10.50][...80] detected: [...606] [ip4][..tcp] [.....172.16.0.1][34940] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [...609] [ip4][..tcp] [.....172.16.0.1][34994] -> [..192.168.10.50][...80] guessed: [...534] [ip4][..tcp] [.....172.16.0.1][33608] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...534] [ip4][..tcp] [.....172.16.0.1][33608] -> [..192.168.10.50][...80] guessed: [...535] [ip4][..tcp] [.....172.16.0.1][33634] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...535] [ip4][..tcp] [.....172.16.0.1][33634] -> [..192.168.10.50][...80] guessed: [...536] [ip4][..tcp] [.....172.16.0.1][33648] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...536] [ip4][..tcp] [.....172.16.0.1][33648] -> [..192.168.10.50][...80] guessed: [...537] [ip4][..tcp] [.....172.16.0.1][33674] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...537] [ip4][..tcp] [.....172.16.0.1][33674] -> [..192.168.10.50][...80] guessed: [...538] [ip4][..tcp] [.....172.16.0.1][33688] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...538] [ip4][..tcp] [.....172.16.0.1][33688] -> [..192.168.10.50][...80] guessed: [...539] [ip4][..tcp] [.....172.16.0.1][33702] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...539] [ip4][..tcp] [.....172.16.0.1][33702] -> [..192.168.10.50][...80] new: [...610] [ip4][..tcp] [.....172.16.0.1][35020] -> [..192.168.10.50][...80] new: [...611] [ip4][..tcp] [.....172.16.0.1][35034] -> [..192.168.10.50][...80] new: [...612] [ip4][..tcp] [.....172.16.0.1][35048] -> [..192.168.10.50][...80] analyse: [...606] [ip4][..tcp] [.....172.16.0.1][34940] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 4.897| 0.655| 1.187| 1408178.323| 3.500] [PKTLEN......: 52.000| 1920.000| 713.800| 751.000| 564013.200| 4.200] [BINS(c->s)..: 11,0,0,0,0,0,0,0,0,0,0,5,0,0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0] [IATS(ms)....: 0.2,0.9,4896.4,4897.2,3.1,3.9,250.4,254.5,4.1,1006.9,1011.0,4.1,267.3,271.2,3.9,1008.0,1012.0,4.0,246.8,250.4,3.6,1038.7,1042.4,3.7,241.6,245.2,3.6,1046.3,1049.9,3.8,242.0] [PKTLENS.....: 60,60,52,435,52,1823,52,637,1920,52,435,1822,52,637,1919,52,435,1822,52,637,1919,52,435,1822,52,637,1920,52,435,1822,52,637] [ENTROPIES...: 4.6,5.1,5.0,5.9,4.9,7.7,4.9,6.0,7.8,4.9,5.9,7.7,5.0,6.0,7.8,5.0,5.9,7.7,5.0,6.0,7.8,5.0,5.9,7.7,5.0,6.0,7.8,4.9,5.9,7.7,5.0,6.0] new: [...613] [ip4][..tcp] [.....172.16.0.1][35074] -> [..192.168.10.50][...80] new: [...614] [ip4][..tcp] [.....172.16.0.1][35088] -> [..192.168.10.50][...80] new: [...615] [ip4][..tcp] [.....172.16.0.1][35114] -> [..192.168.10.50][...80] guessed: [...540] [ip4][..tcp] [.....172.16.0.1][33728] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...540] [ip4][..tcp] [.....172.16.0.1][33728] -> [..192.168.10.50][...80] guessed: [...541] [ip4][..tcp] [.....172.16.0.1][33742] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...541] [ip4][..tcp] [.....172.16.0.1][33742] -> [..192.168.10.50][...80] guessed: [...542] [ip4][..tcp] [.....172.16.0.1][33768] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...542] [ip4][..tcp] [.....172.16.0.1][33768] -> [..192.168.10.50][...80] guessed: [...543] [ip4][..tcp] [.....172.16.0.1][33782] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...543] [ip4][..tcp] [.....172.16.0.1][33782] -> [..192.168.10.50][...80] new: [...616] [ip4][..tcp] [.....172.16.0.1][35128] -> [..192.168.10.50][...80] new: [...617] [ip4][..tcp] [.....172.16.0.1][35142] -> [..192.168.10.50][...80] new: [...618] [ip4][..tcp] [.....172.16.0.1][35168] -> [..192.168.10.50][...80] new: [...619] [ip4][..tcp] [.....172.16.0.1][35182] -> [..192.168.10.50][...80] new: [...620] [ip4][..tcp] [.....172.16.0.1][35208] -> [..192.168.10.50][...80] new: [...621] [ip4][..tcp] [.....172.16.0.1][35222] -> [..192.168.10.50][...80] guessed: [...544] [ip4][..tcp] [.....172.16.0.1][33808] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...544] [ip4][..tcp] [.....172.16.0.1][33808] -> [..192.168.10.50][...80] guessed: [...545] [ip4][..tcp] [.....172.16.0.1][33822] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...545] [ip4][..tcp] [.....172.16.0.1][33822] -> [..192.168.10.50][...80] guessed: [...546] [ip4][..tcp] [.....172.16.0.1][33836] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...546] [ip4][..tcp] [.....172.16.0.1][33836] -> [..192.168.10.50][...80] guessed: [...547] [ip4][..tcp] [.....172.16.0.1][33862] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...547] [ip4][..tcp] [.....172.16.0.1][33862] -> [..192.168.10.50][...80] guessed: [...548] [ip4][..tcp] [.....172.16.0.1][33876] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...548] [ip4][..tcp] [.....172.16.0.1][33876] -> [..192.168.10.50][...80] guessed: [...549] [ip4][..tcp] [.....172.16.0.1][33902] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...549] [ip4][..tcp] [.....172.16.0.1][33902] -> [..192.168.10.50][...80] guessed: [...550] [ip4][..tcp] [.....172.16.0.1][33916] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...550] [ip4][..tcp] [.....172.16.0.1][33916] -> [..192.168.10.50][...80] new: [...622] [ip4][..tcp] [.....172.16.0.1][35236] -> [..192.168.10.50][...80] new: [...623] [ip4][..tcp] [.....172.16.0.1][35262] -> [..192.168.10.50][...80] new: [...624] [ip4][..tcp] [.....172.16.0.1][35276] -> [..192.168.10.50][...80] new: [...625] [ip4][..tcp] [.....172.16.0.1][35302] -> [..192.168.10.50][...80] new: [...626] [ip4][..tcp] [.....172.16.0.1][35316] -> [..192.168.10.50][...80] guessed: [...551] [ip4][..tcp] [.....172.16.0.1][33930] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...551] [ip4][..tcp] [.....172.16.0.1][33930] -> [..192.168.10.50][...80] guessed: [...552] [ip4][..tcp] [.....172.16.0.1][33956] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...552] [ip4][..tcp] [.....172.16.0.1][33956] -> [..192.168.10.50][...80] guessed: [...553] [ip4][..tcp] [.....172.16.0.1][33970] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...553] [ip4][..tcp] [.....172.16.0.1][33970] -> [..192.168.10.50][...80] guessed: [...554] [ip4][..tcp] [.....172.16.0.1][33996] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...554] [ip4][..tcp] [.....172.16.0.1][33996] -> [..192.168.10.50][...80] guessed: [...555] [ip4][..tcp] [.....172.16.0.1][34010] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...555] [ip4][..tcp] [.....172.16.0.1][34010] -> [..192.168.10.50][...80] guessed: [...556] [ip4][..tcp] [.....172.16.0.1][34024] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...556] [ip4][..tcp] [.....172.16.0.1][34024] -> [..192.168.10.50][...80] new: [...627] [ip4][..tcp] [.....172.16.0.1][35342] -> [..192.168.10.50][...80] new: [...628] [ip4][..tcp] [.....172.16.0.1][35356] -> [..192.168.10.50][...80] new: [...629] [ip4][..tcp] [.....172.16.0.1][35370] -> [..192.168.10.50][...80] new: [...630] [ip4][..tcp] [.....172.16.0.1][35396] -> [..192.168.10.50][...80] new: [...631] [ip4][..tcp] [.....172.16.0.1][35410] -> [..192.168.10.50][...80] new: [...632] [ip4][..tcp] [.....172.16.0.1][35436] -> [..192.168.10.50][...80] guessed: [...557] [ip4][..tcp] [.....172.16.0.1][34050] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...557] [ip4][..tcp] [.....172.16.0.1][34050] -> [..192.168.10.50][...80] guessed: [...558] [ip4][..tcp] [.....172.16.0.1][34064] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...558] [ip4][..tcp] [.....172.16.0.1][34064] -> [..192.168.10.50][...80] guessed: [...559] [ip4][..tcp] [.....172.16.0.1][34090] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...559] [ip4][..tcp] [.....172.16.0.1][34090] -> [..192.168.10.50][...80] guessed: [...560] [ip4][..tcp] [.....172.16.0.1][34104] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...560] [ip4][..tcp] [.....172.16.0.1][34104] -> [..192.168.10.50][...80] guessed: [...561] [ip4][..tcp] [.....172.16.0.1][34118] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...561] [ip4][..tcp] [.....172.16.0.1][34118] -> [..192.168.10.50][...80] new: [...633] [ip4][..tcp] [.....172.16.0.1][35450] -> [..192.168.10.50][...80] new: [...634] [ip4][..tcp] [.....172.16.0.1][35464] -> [..192.168.10.50][...80] new: [...635] [ip4][..tcp] [.....172.16.0.1][35490] -> [..192.168.10.50][...80] new: [...636] [ip4][..tcp] [.....172.16.0.1][35504] -> [..192.168.10.50][...80] new: [...637] [ip4][..tcp] [.....172.16.0.1][35518] -> [..192.168.10.50][...80] new: [...638] [ip4][..tcp] [.....172.16.0.1][35532] -> [..192.168.10.50][...80] new: [...639] [ip4][..tcp] [.....172.16.0.1][35546] -> [..192.168.10.50][...80] guessed: [...562] [ip4][..tcp] [.....172.16.0.1][34144] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...562] [ip4][..tcp] [.....172.16.0.1][34144] -> [..192.168.10.50][...80] guessed: [...563] [ip4][..tcp] [.....172.16.0.1][34158] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...563] [ip4][..tcp] [.....172.16.0.1][34158] -> [..192.168.10.50][...80] guessed: [...564] [ip4][..tcp] [.....172.16.0.1][34184] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...564] [ip4][..tcp] [.....172.16.0.1][34184] -> [..192.168.10.50][...80] guessed: [...565] [ip4][..tcp] [.....172.16.0.1][34198] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...565] [ip4][..tcp] [.....172.16.0.1][34198] -> [..192.168.10.50][...80] guessed: [...566] [ip4][..tcp] [.....172.16.0.1][34224] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...566] [ip4][..tcp] [.....172.16.0.1][34224] -> [..192.168.10.50][...80] guessed: [...567] [ip4][..tcp] [.....172.16.0.1][34238] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...567] [ip4][..tcp] [.....172.16.0.1][34238] -> [..192.168.10.50][...80] new: [...640] [ip4][..tcp] [.....172.16.0.1][35560] -> [..192.168.10.50][...80] new: [...641] [ip4][..tcp] [.....172.16.0.1][35586] -> [..192.168.10.50][...80] new: [...642] [ip4][..tcp] [.....172.16.0.1][35600] -> [..192.168.10.50][...80] new: [...643] [ip4][..tcp] [.....172.16.0.1][35626] -> [..192.168.10.50][...80] new: [...644] [ip4][..tcp] [.....172.16.0.1][35640] -> [..192.168.10.50][...80] new: [...645] [ip4][..tcp] [.....172.16.0.1][35654] -> [..192.168.10.50][...80] end: [...532] [ip4][..tcp] [.....172.16.0.1][33580] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [...568] [ip4][..tcp] [.....172.16.0.1][34252] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...568] [ip4][..tcp] [.....172.16.0.1][34252] -> [..192.168.10.50][...80] guessed: [...570] [ip4][..tcp] [.....172.16.0.1][34292] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...570] [ip4][..tcp] [.....172.16.0.1][34292] -> [..192.168.10.50][...80] guessed: [...571] [ip4][..tcp] [.....172.16.0.1][34318] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...571] [ip4][..tcp] [.....172.16.0.1][34318] -> [..192.168.10.50][...80] guessed: [...572] [ip4][..tcp] [.....172.16.0.1][34332] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...572] [ip4][..tcp] [.....172.16.0.1][34332] -> [..192.168.10.50][...80] guessed: [...573] [ip4][..tcp] [.....172.16.0.1][34346] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...573] [ip4][..tcp] [.....172.16.0.1][34346] -> [..192.168.10.50][...80] new: [...646] [ip4][..tcp] [.....172.16.0.1][35668] -> [..192.168.10.50][...80] detected: [...643] [ip4][..tcp] [.....172.16.0.1][35626] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header new: [...647] [ip4][..tcp] [.....172.16.0.1][35682] -> [..192.168.10.50][...80] new: [...648] [ip4][..tcp] [.....172.16.0.1][35696] -> [..192.168.10.50][...80] new: [...649] [ip4][..tcp] [.....172.16.0.1][35722] -> [..192.168.10.50][...80] analyse: [...643] [ip4][..tcp] [.....172.16.0.1][35626] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] min| max| avg| stddev| variance| entropy [IAT.........: < 0.001| 3.954| 0.620| 0.972| 945707.024| 3.700] [PKTLEN......: 52.000| 1920.000| 716.700| 755.500| 570797.200| 4.200] [BINS(c->s)..: 11,0,0,0,0,0,0,0,0,0,0,5,0,0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0] [BINS(s->c)..: 2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9] [DIRECTIONS..: 0,1,0,0,1,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0,1,0,0] [IATS(ms)....: 0.1,0.7,3953.2,3953.8,3.0,3.8,1020.6,1024.3,3.7,248.2,252.3,4.2,1041.7,1046.0,4.3,255.1,258.8,3.6,1007.1,1010.8,3.7,252.7,256.2,3.6,1010.5,1014.2,3.8,262.9,266.7,3.8,1039.9] [PKTLENS.....: 60,60,52,637,52,1920,52,435,1822,52,637,1918,52,435,1822,52,637,1919,52,435,1822,52,637,1919,52,435,1822,52,637,1919,52,435] [ENTROPIES...: 4.6,5.1,5.0,6.0,4.9,7.8,5.0,5.9,7.7,5.0,6.0,7.8,5.0,5.9,7.7,5.0,6.0,7.8,5.0,5.9,7.7,5.0,6.0,7.8,5.0,5.9,7.7,4.9,6.0,7.8,4.9,5.9] new: [...650] [ip4][..tcp] [.....172.16.0.1][35736] -> [..192.168.10.50][...80] new: [...651] [ip4][..tcp] [.....172.16.0.1][35762] -> [..192.168.10.50][...80] guessed: [...574] [ip4][..tcp] [.....172.16.0.1][34372] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...574] [ip4][..tcp] [.....172.16.0.1][34372] -> [..192.168.10.50][...80] guessed: [...575] [ip4][..tcp] [.....172.16.0.1][34386] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...575] [ip4][..tcp] [.....172.16.0.1][34386] -> [..192.168.10.50][...80] guessed: [...576] [ip4][..tcp] [.....172.16.0.1][34412] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...576] [ip4][..tcp] [.....172.16.0.1][34412] -> [..192.168.10.50][...80] guessed: [...577] [ip4][..tcp] [.....172.16.0.1][34426] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...577] [ip4][..tcp] [.....172.16.0.1][34426] -> [..192.168.10.50][...80] guessed: [...578] [ip4][..tcp] [.....172.16.0.1][34440] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...578] [ip4][..tcp] [.....172.16.0.1][34440] -> [..192.168.10.50][...80] new: [...652] [ip4][..tcp] [.....172.16.0.1][35776] -> [..192.168.10.50][...80] new: [...653] [ip4][..tcp] [.....172.16.0.1][35790] -> [..192.168.10.50][...80] new: [...654] [ip4][..tcp] [.....172.16.0.1][35816] -> [..192.168.10.50][...80] new: [...655] [ip4][..tcp] [.....172.16.0.1][35830] -> [..192.168.10.50][...80] new: [...656] [ip4][..tcp] [.....172.16.0.1][35856] -> [..192.168.10.50][...80] new: [...657] [ip4][..tcp] [.....172.16.0.1][35870] -> [..192.168.10.50][...80] guessed: [...579] [ip4][..tcp] [.....172.16.0.1][34466] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...579] [ip4][..tcp] [.....172.16.0.1][34466] -> [..192.168.10.50][...80] guessed: [...580] [ip4][..tcp] [.....172.16.0.1][34480] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...580] [ip4][..tcp] [.....172.16.0.1][34480] -> [..192.168.10.50][...80] guessed: [...581] [ip4][..tcp] [.....172.16.0.1][34506] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...581] [ip4][..tcp] [.....172.16.0.1][34506] -> [..192.168.10.50][...80] guessed: [...582] [ip4][..tcp] [.....172.16.0.1][34520] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...582] [ip4][..tcp] [.....172.16.0.1][34520] -> [..192.168.10.50][...80] guessed: [...583] [ip4][..tcp] [.....172.16.0.1][34534] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...583] [ip4][..tcp] [.....172.16.0.1][34534] -> [..192.168.10.50][...80] guessed: [...584] [ip4][..tcp] [.....172.16.0.1][34548] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...584] [ip4][..tcp] [.....172.16.0.1][34548] -> [..192.168.10.50][...80] guessed: [...585] [ip4][..tcp] [.....172.16.0.1][34562] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...585] [ip4][..tcp] [.....172.16.0.1][34562] -> [..192.168.10.50][...80] new: [...658] [ip4][..tcp] [.....172.16.0.1][35884] -> [..192.168.10.50][...80] new: [...659] [ip4][..tcp] [.....172.16.0.1][35910] -> [..192.168.10.50][...80] new: [...660] [ip4][..tcp] [.....172.16.0.1][35924] -> [..192.168.10.50][...80] new: [...661] [ip4][..tcp] [.....172.16.0.1][35950] -> [..192.168.10.50][...80] end: [...569] [ip4][..tcp] [.....172.16.0.1][34278] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [...586] [ip4][..tcp] [.....172.16.0.1][34576] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...586] [ip4][..tcp] [.....172.16.0.1][34576] -> [..192.168.10.50][...80] guessed: [...587] [ip4][..tcp] [.....172.16.0.1][34602] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...587] [ip4][..tcp] [.....172.16.0.1][34602] -> [..192.168.10.50][...80] guessed: [...588] [ip4][..tcp] [.....172.16.0.1][34616] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...588] [ip4][..tcp] [.....172.16.0.1][34616] -> [..192.168.10.50][...80] guessed: [...589] [ip4][..tcp] [.....172.16.0.1][34642] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...589] [ip4][..tcp] [.....172.16.0.1][34642] -> [..192.168.10.50][...80] guessed: [...590] [ip4][..tcp] [.....172.16.0.1][34656] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...590] [ip4][..tcp] [.....172.16.0.1][34656] -> [..192.168.10.50][...80] guessed: [...591] [ip4][..tcp] [.....172.16.0.1][34670] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...591] [ip4][..tcp] [.....172.16.0.1][34670] -> [..192.168.10.50][...80] guessed: [...592] [ip4][..tcp] [.....172.16.0.1][34696] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...592] [ip4][..tcp] [.....172.16.0.1][34696] -> [..192.168.10.50][...80] guessed: [...593] [ip4][..tcp] [.....172.16.0.1][34710] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...593] [ip4][..tcp] [.....172.16.0.1][34710] -> [..192.168.10.50][...80] guessed: [...594] [ip4][..tcp] [.....172.16.0.1][34724] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...594] [ip4][..tcp] [.....172.16.0.1][34724] -> [..192.168.10.50][...80] guessed: [...595] [ip4][..tcp] [.....172.16.0.1][34738] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...595] [ip4][..tcp] [.....172.16.0.1][34738] -> [..192.168.10.50][...80] guessed: [...596] [ip4][..tcp] [.....172.16.0.1][34752] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...596] [ip4][..tcp] [.....172.16.0.1][34752] -> [..192.168.10.50][...80] guessed: [...597] [ip4][..tcp] [.....172.16.0.1][34766] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...597] [ip4][..tcp] [.....172.16.0.1][34766] -> [..192.168.10.50][...80] guessed: [...598] [ip4][..tcp] [.....172.16.0.1][34792] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...598] [ip4][..tcp] [.....172.16.0.1][34792] -> [..192.168.10.50][...80] guessed: [...599] [ip4][..tcp] [.....172.16.0.1][34806] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...599] [ip4][..tcp] [.....172.16.0.1][34806] -> [..192.168.10.50][...80] guessed: [...600] [ip4][..tcp] [.....172.16.0.1][34832] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...600] [ip4][..tcp] [.....172.16.0.1][34832] -> [..192.168.10.50][...80] guessed: [...601] [ip4][..tcp] [.....172.16.0.1][34846] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...601] [ip4][..tcp] [.....172.16.0.1][34846] -> [..192.168.10.50][...80] guessed: [...602] [ip4][..tcp] [.....172.16.0.1][34860] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...602] [ip4][..tcp] [.....172.16.0.1][34860] -> [..192.168.10.50][...80] guessed: [...603] [ip4][..tcp] [.....172.16.0.1][34886] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...603] [ip4][..tcp] [.....172.16.0.1][34886] -> [..192.168.10.50][...80] guessed: [...604] [ip4][..tcp] [.....172.16.0.1][34900] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...604] [ip4][..tcp] [.....172.16.0.1][34900] -> [..192.168.10.50][...80] guessed: [...605] [ip4][..tcp] [.....172.16.0.1][34926] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...605] [ip4][..tcp] [.....172.16.0.1][34926] -> [..192.168.10.50][...80] end: [...606] [ip4][..tcp] [.....172.16.0.1][34940] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [...607] [ip4][..tcp] [.....172.16.0.1][34954] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...607] [ip4][..tcp] [.....172.16.0.1][34954] -> [..192.168.10.50][...80] guessed: [...608] [ip4][..tcp] [.....172.16.0.1][34980] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...608] [ip4][..tcp] [.....172.16.0.1][34980] -> [..192.168.10.50][...80] guessed: [...609] [ip4][..tcp] [.....172.16.0.1][34994] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...609] [ip4][..tcp] [.....172.16.0.1][34994] -> [..192.168.10.50][...80] guessed: [...610] [ip4][..tcp] [.....172.16.0.1][35020] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...610] [ip4][..tcp] [.....172.16.0.1][35020] -> [..192.168.10.50][...80] guessed: [...611] [ip4][..tcp] [.....172.16.0.1][35034] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...611] [ip4][..tcp] [.....172.16.0.1][35034] -> [..192.168.10.50][...80] guessed: [...612] [ip4][..tcp] [.....172.16.0.1][35048] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...612] [ip4][..tcp] [.....172.16.0.1][35048] -> [..192.168.10.50][...80] guessed: [...613] [ip4][..tcp] [.....172.16.0.1][35074] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...613] [ip4][..tcp] [.....172.16.0.1][35074] -> [..192.168.10.50][...80] guessed: [...614] [ip4][..tcp] [.....172.16.0.1][35088] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...614] [ip4][..tcp] [.....172.16.0.1][35088] -> [..192.168.10.50][...80] guessed: [...615] [ip4][..tcp] [.....172.16.0.1][35114] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...615] [ip4][..tcp] [.....172.16.0.1][35114] -> [..192.168.10.50][...80] guessed: [...616] [ip4][..tcp] [.....172.16.0.1][35128] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...616] [ip4][..tcp] [.....172.16.0.1][35128] -> [..192.168.10.50][...80] guessed: [...617] [ip4][..tcp] [.....172.16.0.1][35142] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...617] [ip4][..tcp] [.....172.16.0.1][35142] -> [..192.168.10.50][...80] guessed: [...618] [ip4][..tcp] [.....172.16.0.1][35168] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...618] [ip4][..tcp] [.....172.16.0.1][35168] -> [..192.168.10.50][...80] guessed: [...619] [ip4][..tcp] [.....172.16.0.1][35182] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...619] [ip4][..tcp] [.....172.16.0.1][35182] -> [..192.168.10.50][...80] guessed: [...620] [ip4][..tcp] [.....172.16.0.1][35208] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...620] [ip4][..tcp] [.....172.16.0.1][35208] -> [..192.168.10.50][...80] guessed: [...621] [ip4][..tcp] [.....172.16.0.1][35222] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...621] [ip4][..tcp] [.....172.16.0.1][35222] -> [..192.168.10.50][...80] guessed: [...622] [ip4][..tcp] [.....172.16.0.1][35236] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...622] [ip4][..tcp] [.....172.16.0.1][35236] -> [..192.168.10.50][...80] guessed: [...623] [ip4][..tcp] [.....172.16.0.1][35262] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...623] [ip4][..tcp] [.....172.16.0.1][35262] -> [..192.168.10.50][...80] guessed: [...624] [ip4][..tcp] [.....172.16.0.1][35276] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...624] [ip4][..tcp] [.....172.16.0.1][35276] -> [..192.168.10.50][...80] guessed: [...625] [ip4][..tcp] [.....172.16.0.1][35302] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...625] [ip4][..tcp] [.....172.16.0.1][35302] -> [..192.168.10.50][...80] guessed: [...626] [ip4][..tcp] [.....172.16.0.1][35316] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...626] [ip4][..tcp] [.....172.16.0.1][35316] -> [..192.168.10.50][...80] guessed: [...627] [ip4][..tcp] [.....172.16.0.1][35342] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...627] [ip4][..tcp] [.....172.16.0.1][35342] -> [..192.168.10.50][...80] guessed: [...628] [ip4][..tcp] [.....172.16.0.1][35356] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...628] [ip4][..tcp] [.....172.16.0.1][35356] -> [..192.168.10.50][...80] guessed: [...629] [ip4][..tcp] [.....172.16.0.1][35370] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...629] [ip4][..tcp] [.....172.16.0.1][35370] -> [..192.168.10.50][...80] guessed: [...630] [ip4][..tcp] [.....172.16.0.1][35396] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...630] [ip4][..tcp] [.....172.16.0.1][35396] -> [..192.168.10.50][...80] guessed: [...631] [ip4][..tcp] [.....172.16.0.1][35410] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...631] [ip4][..tcp] [.....172.16.0.1][35410] -> [..192.168.10.50][...80] guessed: [...632] [ip4][..tcp] [.....172.16.0.1][35436] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...632] [ip4][..tcp] [.....172.16.0.1][35436] -> [..192.168.10.50][...80] guessed: [...633] [ip4][..tcp] [.....172.16.0.1][35450] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...633] [ip4][..tcp] [.....172.16.0.1][35450] -> [..192.168.10.50][...80] guessed: [...634] [ip4][..tcp] [.....172.16.0.1][35464] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...634] [ip4][..tcp] [.....172.16.0.1][35464] -> [..192.168.10.50][...80] guessed: [...635] [ip4][..tcp] [.....172.16.0.1][35490] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...635] [ip4][..tcp] [.....172.16.0.1][35490] -> [..192.168.10.50][...80] guessed: [...636] [ip4][..tcp] [.....172.16.0.1][35504] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...636] [ip4][..tcp] [.....172.16.0.1][35504] -> [..192.168.10.50][...80] guessed: [...637] [ip4][..tcp] [.....172.16.0.1][35518] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...637] [ip4][..tcp] [.....172.16.0.1][35518] -> [..192.168.10.50][...80] guessed: [...638] [ip4][..tcp] [.....172.16.0.1][35532] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...638] [ip4][..tcp] [.....172.16.0.1][35532] -> [..192.168.10.50][...80] guessed: [...639] [ip4][..tcp] [.....172.16.0.1][35546] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...639] [ip4][..tcp] [.....172.16.0.1][35546] -> [..192.168.10.50][...80] guessed: [...640] [ip4][..tcp] [.....172.16.0.1][35560] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...640] [ip4][..tcp] [.....172.16.0.1][35560] -> [..192.168.10.50][...80] guessed: [...641] [ip4][..tcp] [.....172.16.0.1][35586] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...641] [ip4][..tcp] [.....172.16.0.1][35586] -> [..192.168.10.50][...80] guessed: [...642] [ip4][..tcp] [.....172.16.0.1][35600] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...642] [ip4][..tcp] [.....172.16.0.1][35600] -> [..192.168.10.50][...80] idle: [...643] [ip4][..tcp] [.....172.16.0.1][35626] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][205.174.165.68] RISK: XSS Attack, HTTP/TLS/QUIC Numeric Hostname/SNI, HTTP Susp Header guessed: [...644] [ip4][..tcp] [.....172.16.0.1][35640] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...644] [ip4][..tcp] [.....172.16.0.1][35640] -> [..192.168.10.50][...80] guessed: [...645] [ip4][..tcp] [.....172.16.0.1][35654] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...645] [ip4][..tcp] [.....172.16.0.1][35654] -> [..192.168.10.50][...80] guessed: [...646] [ip4][..tcp] [.....172.16.0.1][35668] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...646] [ip4][..tcp] [.....172.16.0.1][35668] -> [..192.168.10.50][...80] guessed: [...647] [ip4][..tcp] [.....172.16.0.1][35682] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...647] [ip4][..tcp] [.....172.16.0.1][35682] -> [..192.168.10.50][...80] guessed: [...648] [ip4][..tcp] [.....172.16.0.1][35696] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...648] [ip4][..tcp] [.....172.16.0.1][35696] -> [..192.168.10.50][...80] guessed: [...649] [ip4][..tcp] [.....172.16.0.1][35722] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...649] [ip4][..tcp] [.....172.16.0.1][35722] -> [..192.168.10.50][...80] guessed: [...650] [ip4][..tcp] [.....172.16.0.1][35736] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...650] [ip4][..tcp] [.....172.16.0.1][35736] -> [..192.168.10.50][...80] guessed: [...651] [ip4][..tcp] [.....172.16.0.1][35762] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...651] [ip4][..tcp] [.....172.16.0.1][35762] -> [..192.168.10.50][...80] guessed: [...652] [ip4][..tcp] [.....172.16.0.1][35776] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...652] [ip4][..tcp] [.....172.16.0.1][35776] -> [..192.168.10.50][...80] guessed: [...653] [ip4][..tcp] [.....172.16.0.1][35790] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...653] [ip4][..tcp] [.....172.16.0.1][35790] -> [..192.168.10.50][...80] guessed: [...654] [ip4][..tcp] [.....172.16.0.1][35816] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...654] [ip4][..tcp] [.....172.16.0.1][35816] -> [..192.168.10.50][...80] guessed: [...655] [ip4][..tcp] [.....172.16.0.1][35830] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...655] [ip4][..tcp] [.....172.16.0.1][35830] -> [..192.168.10.50][...80] guessed: [...656] [ip4][..tcp] [.....172.16.0.1][35856] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...656] [ip4][..tcp] [.....172.16.0.1][35856] -> [..192.168.10.50][...80] guessed: [...657] [ip4][..tcp] [.....172.16.0.1][35870] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...657] [ip4][..tcp] [.....172.16.0.1][35870] -> [..192.168.10.50][...80] guessed: [...658] [ip4][..tcp] [.....172.16.0.1][35884] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] end: [...658] [ip4][..tcp] [.....172.16.0.1][35884] -> [..192.168.10.50][...80] guessed: [...659] [ip4][..tcp] [.....172.16.0.1][35910] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] idle: [...659] [ip4][..tcp] [.....172.16.0.1][35910] -> [..192.168.10.50][...80] guessed: [...660] [ip4][..tcp] [.....172.16.0.1][35924] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] idle: [...660] [ip4][..tcp] [.....172.16.0.1][35924] -> [..192.168.10.50][...80] guessed: [...661] [ip4][..tcp] [.....172.16.0.1][35950] -> [..192.168.10.50][...80] [HTTP][Unknown][Web][Acceptable][] idle: [...661] [ip4][..tcp] [.....172.16.0.1][35950] -> [..192.168.10.50][...80] DAEMON-EVENT: shutdown