0 ratings0% found this document useful (0 votes)
166 views209 pagesLog
The document is a traffic log listing connections and data transfers between devices on a network. It includes details like timestamps, source and destination addresses and ports, protocols, and amounts of data sent and received. Over 30 entries are shown in the log from the past few minutes, documenting things like DNS queries, HTTPS sessions, and other network activity of devices on the 10.41.0.0/16 subnet.
Uploaded by
procriesCopyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
0 ratings0% found this document useful (0 votes)
166 views209 pagesLog
The document is a traffic log listing connections and data transfers between devices on a network. It includes details like timestamps, source and destination addresses and ports, protocols, and amounts of data sent and received. Over 30 entries are shown in the log from the past few minutes, documenting things like DNS queries, HTTPS sessions, and other network activity of devices on the 10.41.0.0/16 subnet.
Uploaded by
procriesCopyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 209
===================================================================================
======================================
Entire Traffic Log list
Current system time is Mon, 10 Dec 2018 10:19:38
===================================================================================
======================================
Time Stamp Action Source Destination Translated
Source Translated Dest Duration Bytes Sent Bytes Received Application
Reason
2018-12-10 10:19:38 Permit 10.41.0.131:51408 10.41.100.1:49154
10.41.0.131:51408 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:38 Permit 10.41.0.131:56117 10.41.100.1:135
10.41.0.131:56117 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:38 Permit 10.41.0.131:56116 10.41.100.1:135
10.41.0.131:56116 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:38 Permit 10.41.100.1:49333 10.10.1.40:53
10.41.100.1:49333 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:38 Permit 10.41.5.77:57195 10.41.100.1:53
10.41.5.77:57195 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:38 Permit 10.41.100.1:49719 10.10.1.40:53
10.41.100.1:49719 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:38 Permit 10.41.203.4:50157 10.41.100.1:53
10.41.203.4:50157 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:37 Permit 10.41.1.57:62164 10.41.100.7:60313
10.41.1.57:62164 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:19:37 Permit 10.41.200.55:51340 172.217.166.142:443
1.9.140.18:16229 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:37 Permit 10.41.1.112:55276 172.217.31.78:80
1.9.140.18:56690 172.217.31.78:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:37 Permit 10.41.200.80:55331 10.41.100.1:53
10.41.200.80:55331 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:37 Permit 10.41.100.1:50239 10.10.1.4:53
10.41.100.1:50239 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:37 Permit 10.41.100.1:49335 10.10.1.4:53
10.41.100.1:49335 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:37 Permit 10.41.200.55:51339 172.217.166.142:443
1.9.140.18:31227 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:37 Permit 10.41.100.1:49880 10.10.1.40:53
10.41.100.1:49880 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:37 Permit 10.41.100.1:50826 10.10.1.40:53
10.41.100.1:50826 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:37 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:37 Permit 10.41.100.1:50168 10.10.1.40:53
10.41.100.1:50168 10.10.1.40:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:19:37 Permit 10.41.100.1:49916 10.10.1.24:53
10.41.100.1:49916 10.10.1.24:53 60 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:19:37 Permit 10.41.100.1:50731 10.10.1.4:53
10.41.100.1:50731 10.10.1.4:53 60 sec 87 0
DNS Close - AGE OUT
2018-12-10 10:19:37 Permit 10.41.100.1:49661 10.10.1.40:53
10.41.100.1:49661 10.10.1.40:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:19:37 Permit 10.41.5.81:63189 210.187.22.204:80
1.9.140.18:15280 210.187.22.204:80 1 sec 1062 21450
HTTP Close - TCP RST
2018-12-10 10:19:37 Permit 10.41.100.1:49802 10.10.1.24:53
10.41.100.1:49802 10.10.1.24:53 60 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:19:37 Permit 10.41.0.131:47066 8.8.8.8:53
1.9.140.18:38851 8.8.8.8:53 1 sec 78 125
DNS Close - RESP
2018-12-10 10:19:37 Permit 10.41.100.1:49356 10.10.1.4:53
10.41.100.1:49356 10.10.1.4:53 60 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:19:37 Permit 10.41.100.1:65251 10.10.1.40:53
10.41.100.1:65251 10.10.1.40:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:19:37 Permit 10.41.5.80:61093 104.103.70.10:80
1.9.140.18:13696 104.103.70.10:80 4 sec 804 25509
HTTP Close - TCP RST
2018-12-10 10:19:37 Permit 10.41.0.131:33908 10.41.100.1:53
10.41.0.131:33908 10.41.100.1:53 16 sec 75 75
DNS Close - RESP
2018-12-10 10:19:37 Permit 10.41.0.131:56103 10.41.100.1:135
10.41.0.131:56103 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:37 Permit 10.41.0.131:56107 10.41.100.1:135
10.41.0.131:56107 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:37 Permit 10.41.0.131:56106 10.41.100.1:135
10.41.0.131:56106 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:37 Permit 10.41.5.80:60412 10.41.100.1:53
10.41.5.80:60412 10.41.100.1:53 9 sec 92 92
DNS Close - RESP
2018-12-10 10:19:37 Permit 10.41.200.80:49977 10.41.100.1:53
10.41.200.80:49977 10.41.100.1:53 15 sec 86 86
DNS Close - RESP
2018-12-10 10:19:37 Permit 10.41.0.131:51395 10.41.100.1:49154
10.41.0.131:51395 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:37 Permit 10.41.0.131:56104 10.41.100.1:135
10.41.0.131:56104 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:37 Permit 10.41.200.80:56374 10.41.100.1:53
10.41.200.80:56374 10.41.100.1:53 14 sec 81 81
DNS Close - RESP
2018-12-10 10:19:37 Permit 10.41.200.80:56313 10.41.100.1:53
10.41.200.80:56313 10.41.100.1:53 14 sec 77 77
DNS Close - RESP
2018-12-10 10:19:37 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 396 91
DNS Close - RESP
2018-12-10 10:19:37 Permit 10.41.1.51:53354 10.41.100.7:60313
10.41.1.51:53354 10.41.100.7:60313 4 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:19:37 Permit 10.41.5.80:63675 10.41.100.1:53
10.41.5.80:63675 10.41.100.1:53 15 sec 92 92
DNS Close - RESP
2018-12-10 10:19:37 Permit 10.41.0.131:51398 10.41.100.1:49154
10.41.0.131:51398 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:37 Permit 10.41.200.80:59768 10.41.100.1:53
10.41.200.80:59768 10.41.100.1:53 15 sec 86 86
DNS Close - RESP
2018-12-10 10:19:37 Permit 10.41.200.80:52710 10.41.100.1:53
10.41.200.80:52710 10.41.100.1:53 15 sec 95 95
DNS Close - RESP
2018-12-10 10:19:37 Permit 10.41.5.80:62547 10.41.100.1:53
10.41.5.80:62547 10.41.100.1:53 11 sec 92 92
DNS Close - RESP
2018-12-10 10:19:36 Permit 10.41.0.131:51405 10.41.100.1:49154
10.41.0.131:51405 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:36 Permit 10.41.1.65:64199 72.34.250.78:443
1.9.140.18:26742 72.34.250.78:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:36 Permit 10.41.0.131:56114 10.41.100.1:135
10.41.0.131:56114 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:36 Permit 10.41.0.131:56113 10.41.100.1:135
10.41.0.131:56113 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:36 Permit 10.41.5.80:61094 104.103.70.10:80
1.9.140.18:34790 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:36 Permit 10.41.1.65:64198 72.34.250.78:443
1.9.140.18:58464 72.34.250.78:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:36 Permit 10.41.100.1:49733 10.10.1.40:53
10.41.100.1:49733 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:36 Permit 10.41.0.131:57868 10.41.100.1:53
10.41.0.131:57868 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:36 Permit 10.41.0.131:47066 8.8.8.8:53
1.9.140.18:38851 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:36 Permit 10.41.200.53:50933 172.217.166.133:443
1.9.140.18:44793 172.217.166.133:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:36 Permit 10.41.5.82:50932 10.41.100.1:49155
10.41.5.82:50932 10.41.100.1:49155 0 sec 0 0
TCP PORT 49155 Creation
2018-12-10 10:19:36 Permit 10.41.5.82:50931 10.41.100.1:135
10.41.5.82:50931 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:36 Permit 10.41.5.82:56561 10.41.100.1:389
10.41.5.82:56561 10.41.100.1:389 0 sec 0 0
UDP PORT 389 Creation
2018-12-10 10:19:36 Permit 10.41.5.81:63189 210.187.22.204:80
1.9.140.18:15280 210.187.22.204:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:35 Permit 10.41.5.81:63188 172.217.31.78:80
1.9.140.18:18741 172.217.31.78:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:35 Permit 10.41.100.1:50279 10.10.1.40:53
10.41.100.1:50279 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:35 Permit 10.41.200.55:64579 10.41.100.1:53
10.41.200.55:64579 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:35 Permit 10.41.0.131:51402 10.41.100.1:49154
10.41.0.131:51402 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:35 Permit 10.41.0.131:56111 10.41.100.1:135
10.41.0.131:56111 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:35 Permit 10.41.0.131:56110 10.41.100.1:135
10.41.0.131:56110 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:35 Permit 10.41.100.1:50822 10.10.1.24:53
10.41.100.1:50822 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:35 Permit 10.41.100.1:64919 10.10.1.24:53
10.41.100.1:64919 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:35 Permit 10.41.100.1:50943 10.10.1.4:53
10.41.100.1:50943 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:35 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:35 Permit 10.41.5.81:63185 172.217.31.78:80
1.9.140.18:18229 172.217.31.78:80 6 sec 976 1208
HTTP Close - TCP RST
2018-12-10 10:19:35 Permit 10.41.200.80:60991 172.217.31.34:443
1.9.140.18:48904 172.217.31.34:443 307 sec 19401 12739
HTTPS Close - TCP FIN
2018-12-10 10:19:35 Permit 10.41.1.55:52491 23.94.187.84:443
1.9.140.18:33951 23.94.187.84:443 2 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:19:35 Permit 10.41.200.80:60993 172.217.31.70:443
1.9.140.18:2177 172.217.31.70:443 307 sec 12061 156929
HTTPS Close - TCP FIN
2018-12-10 10:19:35 Permit 10.41.100.1:65019 10.10.1.4:53
10.41.100.1:65019 10.10.1.4:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:19:35 Permit 10.41.100.1:49740 10.10.1.40:53
10.41.100.1:49740 10.10.1.40:53 60 sec 82 0
DNS Close - AGE OUT
2018-12-10 10:19:35 Permit 10.41.200.58:58412 52.207.55.4:443
1.9.140.18:43726 52.207.55.4:443 66 sec 2827 6310
HTTPS Close - TCP RST
2018-12-10 10:19:35 Permit 10.41.100.1:50791 10.10.1.4:53
10.41.100.1:50791 10.10.1.4:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:19:35 Permit 10.41.100.1:50001 10.10.1.24:53
10.41.100.1:50001 10.10.1.24:53 60 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:19:35 Permit 10.41.2.74:56441 104.103.55.181:443
1.9.140.18:60630 104.103.55.181:443 14 sec 1585 585
HTTPS Close - TCP RST
2018-12-10 10:19:35 Permit 10.41.100.1:65451 10.10.1.24:53
10.41.100.1:65451 10.10.1.24:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:19:35 Permit 10.41.5.80:61091 104.103.70.10:80
1.9.140.18:54752 104.103.70.10:80 4 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:19:35 Permit 10.41.0.131:41827 8.8.8.8:53
1.9.140.18:27306 8.8.8.8:53 4 sec 78 125
DNS Close - RESP
2018-12-10 10:19:35 Permit 10.41.3.72:50741 74.82.35.89:443
1.9.140.18:1574 74.82.35.89:443 4 sec 1348 74
HTTPS Close - TCP RST
2018-12-10 10:19:35 Permit 10.41.203.3:57283 10.41.100.1:53
10.41.203.3:57283 10.41.100.1:53 16 sec 76 76
DNS Close - RESP
2018-12-10 10:19:35 Permit 10.41.203.2:58765 10.41.100.1:53
10.41.203.2:58765 10.41.100.1:53 8 sec 76 76
DNS Close - RESP
2018-12-10 10:19:35 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 4 sec 321 80
DNS Close - RESP
2018-12-10 10:19:35 Permit 10.41.0.131:51391 10.41.100.1:49154
10.41.0.131:51391 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:35 Permit 10.41.0.131:56100 10.41.100.1:135
10.41.0.131:56100 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:35 Permit 10.41.1.57:62163 10.41.100.7:60313
10.41.1.57:62163 10.41.100.7:60313 3 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:19:35 Permit 10.41.1.55:51624 10.41.100.1:53
10.41.1.55:51624 10.41.100.1:53 15 sec 102 102
DNS Close - RESP
2018-12-10 10:19:35 Permit 10.41.0.131:56099 10.41.100.1:135
10.41.0.131:56099 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:35 Permit 10.41.1.55:54913 10.41.100.1:53
10.41.1.55:54913 10.41.100.1:53 16 sec 79 79
DNS Close - RESP
2018-12-10 10:19:34 Permit 10.41.0.131:51398 10.41.100.1:49154
10.41.0.131:51398 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:34 Permit 10.41.0.131:56107 10.41.100.1:135
10.41.0.131:56107 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:34 Permit 10.41.0.131:56106 10.41.100.1:135
10.41.0.131:56106 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:34 Permit 10.41.100.1:49907 10.10.1.4:53
10.41.100.1:49907 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:34 Permit 10.41.100.1:50197 10.10.1.4:53
10.41.100.1:50197 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:34 Permit 10.41.100.1:65330 10.10.1.4:53
10.41.100.1:65330 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:34 Permit 10.41.100.1:50243 10.10.1.4:53
10.41.100.1:50243 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:33 Permit 10.41.1.51:53354 10.41.100.7:60313
10.41.1.51:53354 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:19:33 Permit 10.41.5.80:61093 104.103.70.10:80
1.9.140.18:13696 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:33 Permit 10.41.1.55:52491 23.94.187.84:443
1.9.140.18:33951 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:33 Permit 10.41.0.131:51395 10.41.100.1:49154
10.41.0.131:51395 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:33 Permit 10.41.0.131:56104 10.41.100.1:135
10.41.0.131:56104 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:33 Permit 10.41.0.131:56103 10.41.100.1:135
10.41.0.131:56103 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:33 Permit 10.41.100.1:50239 10.10.1.24:53
10.41.100.1:50239 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:33 Permit 10.41.100.1:49335 10.10.1.24:53
10.41.100.1:49335 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:33 Permit 10.41.200.51:52694 172.217.166.142:443
1.9.140.18:29397 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:33 Permit 10.41.100.1:49356 10.10.1.24:53
10.41.100.1:49356 10.10.1.24:53 60 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:19:33 Permit 10.41.100.1:49802 10.10.1.40:53
10.41.100.1:49802 10.10.1.40:53 60 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:19:33 Permit 10.41.100.1:50210 10.10.1.4:53
10.41.100.1:50210 10.10.1.4:53 59 sec 77 0
DNS Close - AGE OUT
2018-12-10 10:19:33 Permit 10.41.2.74:56405 50.112.254.249:443
1.9.140.18:36354 50.112.254.249:443 26 sec 2691 1351
HTTPS Close - TCP RST
2018-12-10 10:19:33 Permit 10.41.100.1:50731 10.10.1.24:53
10.41.100.1:50731 10.10.1.24:53 60 sec 87 0
DNS Close - AGE OUT
2018-12-10 10:19:33 Permit 10.41.200.80:60972 106.10.218.142:443
1.9.140.18:14082 106.10.218.142:443 309 sec 32440 23275
HTTPS Close - TCP FIN
2018-12-10 10:19:33 Permit 10.41.1.54:52554 117.18.232.215:443
1.9.140.18:46283 117.18.232.215:443 3 sec 2309 6200
HTTPS Close - TCP RST
2018-12-10 10:19:33 Permit 10.41.100.1:49916 10.10.1.40:53
10.41.100.1:49916 10.10.1.40:53 60 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:19:33 Permit 10.41.5.81:63186 210.187.22.204:80
1.9.140.18:33834 210.187.22.204:80 4 sec 1062 21450
HTTP Close - TCP RST
2018-12-10 10:19:33 Permit 10.41.0.131:51388 10.41.100.1:49154
10.41.0.131:51388 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:33 Permit 10.41.1.58:55729 10.41.100.1:53
10.41.1.58:55729 10.41.100.1:53 15 sec 85 85
DNS Close - RESP
2018-12-10 10:19:33 Permit 10.41.200.60:55524 10.41.100.1:53
10.41.200.60:55524 10.41.100.1:53 10 sec 85 85
DNS Close - RESP
2018-12-10 10:19:33 Permit 10.41.1.65:51879 10.41.100.1:53
10.41.1.65:51879 10.41.100.1:53 16 sec 81 81
DNS Close - RESP
2018-12-10 10:19:33 Permit 10.41.200.51:50257 10.41.100.1:53
10.41.200.51:50257 10.41.100.1:53 4 sec 82 98
DNS Close - RESP
2018-12-10 10:19:33 Permit 10.41.0.131:51384 10.41.100.1:49154
10.41.0.131:51384 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:33 Permit 10.41.200.55:51922 10.41.100.1:53
10.41.200.55:51922 10.41.100.1:53 3 sec 89 105
DNS Close - RESP
2018-12-10 10:19:33 Permit 10.41.0.131:56092 10.41.100.1:135
10.41.0.131:56092 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:33 Permit 10.41.0.131:56093 10.41.100.1:135
10.41.0.131:56093 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:33 Permit 10.41.0.131:56096 10.41.100.1:135
10.41.0.131:56096 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:33 Permit 10.41.0.131:56097 10.41.100.1:135
10.41.0.131:56097 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:33 Permit 10.41.200.62:50516 10.41.100.1:53
10.41.200.62:50516 10.41.100.1:53 15 sec 79 79
DNS Close - RESP
2018-12-10 10:19:33 Permit 10.41.200.59:50175 10.41.100.1:88
10.41.200.59:50175 10.41.100.1:88 4 sec 1585 1596
TCP PORT 88 Close - TCP RST
2018-12-10 10:19:33 Permit 10.41.200.51:52693 10.41.100.1:88
10.41.200.51:52693 10.41.100.1:88 4 sec 1611 1608
TCP PORT 88 Close - TCP RST
2018-12-10 10:19:33 Permit 10.41.200.51:52692 10.41.100.1:88
10.41.200.51:52692 10.41.100.1:88 4 sec 1598 350
TCP PORT 88 Close - TCP RST
2018-12-10 10:19:32 Permit 10.41.1.57:62163 10.41.100.7:60313
10.41.1.57:62163 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:19:32 Permit 10.41.1.53:50744 172.217.166.133:443
1.9.140.18:29101 172.217.166.133:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:32 Permit 10.41.1.53:59783 10.41.100.1:53
10.41.1.53:59783 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:32 Permit 10.41.0.131:51391 10.41.100.1:49154
10.41.0.131:51391 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:31 Permit 10.41.0.131:56100 10.41.100.1:135
10.41.0.131:56100 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:31 Permit 10.41.0.131:56099 10.41.100.1:135
10.41.0.131:56099 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:31 Permit 10.41.100.1:50822 10.10.1.40:53
10.41.100.1:50822 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:31 Permit 10.41.1.59:55784 10.41.100.1:53
10.41.1.59:55784 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:31 Permit 10.41.2.74:56449 50.112.254.249:443
1.9.140.18:26539 50.112.254.249:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:31 Permit 10.41.1.107:51957 172.217.166.133:443
1.9.140.18:53323 172.217.166.133:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:31 Permit 10.41.100.1:64919 10.10.1.40:53
10.41.100.1:64919 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:31 Permit 10.41.1.107:65232 10.41.100.1:53
10.41.1.107:65232 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:31 Permit 10.41.5.80:61091 104.103.70.10:80
1.9.140.18:54752 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:31 Permit 10.41.2.74:56448 50.112.254.249:443
1.9.140.18:40423 50.112.254.249:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:31 Permit 10.41.3.72:50741 74.82.35.89:443
1.9.140.18:1574 74.82.35.89:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:31 Permit 10.41.0.131:35183 10.41.100.1:53
10.41.0.131:35183 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:31 Permit 10.41.0.131:41827 8.8.8.8:53
1.9.140.18:27306 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:31 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:31 Permit 10.41.100.1:50943 10.10.1.24:53
10.41.100.1:50943 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:31 Permit 10.41.100.1:65019 10.10.1.24:53
10.41.100.1:65019 10.10.1.24:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:19:31 Permit 10.41.1.65:64188 103.243.221.109:80
1.9.140.18:62742 103.243.221.109:80 29 sec 6366 6679
HTTP Close - TCP RST
2018-12-10 10:19:31 Permit 10.41.5.80:61090 104.103.70.10:80
1.9.140.18:4151 104.103.70.10:80 3 sec 804 25509
HTTP Close - TCP RST
2018-12-10 10:19:31 Permit 10.41.200.80:61067 106.10.193.33:443
1.9.140.18:36127 106.10.193.33:443 117 sec 3462 6580
HTTPS Close - TCP FIN
2018-12-10 10:19:31 Permit 10.41.100.1:49664 10.10.1.4:53
10.41.100.1:49664 10.10.1.4:53 59 sec 71 0
DNS Close - AGE OUT
2018-12-10 10:19:31 Permit 10.41.100.2:59169 104.103.70.183:53
1.9.140.18:6221 104.103.70.183:53 2 sec 86 106
DNS Close - RESP
2018-12-10 10:19:31 Permit 10.41.1.65:63881 151.101.78.2:80
1.9.140.18:57748 151.101.78.2:80 338 sec 289806 16308
HTTP Close - TCP FIN
2018-12-10 10:19:31 Permit 10.41.1.65:64190 103.243.221.51:80
1.9.140.18:34901 103.243.221.51:80 28 sec 7423 1358
HTTP Close - TCP RST
2018-12-10 10:19:31 Permit 10.41.1.65:64187 103.243.221.109:80
1.9.140.18:39601 103.243.221.109:80 29 sec 6238 1379
HTTP Close - TCP RST
2018-12-10 10:19:31 Permit 10.41.1.65:63632 151.101.78.2:80
1.9.140.18:38725 151.101.78.2:80 470 sec 888558 51877
HTTP Close - TCP FIN
2018-12-10 10:19:31 Permit 10.41.100.1:65451 10.10.1.40:53
10.41.100.1:65451 10.10.1.40:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:19:31 Permit 10.41.100.1:50791 10.10.1.24:53
10.41.100.1:50791 10.10.1.24:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:19:31 Permit 10.41.5.81:63179 172.217.31.78:80
1.9.140.18:37051 172.217.31.78:80 68 sec 912 1276
HTTP Close - TCP FIN
2018-12-10 10:19:31 Permit 10.41.100.1:50001 10.10.1.40:53
10.41.100.1:50001 10.10.1.40:53 60 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:19:31 Permit 10.41.0.131:56087 10.41.100.1:135
10.41.0.131:56087 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:31 Permit 10.41.0.131:56086 10.41.100.1:135
10.41.0.131:56086 10.41.100.1:135 5 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:31 Permit 10.41.2.74:55545 10.41.100.1:53
10.41.2.74:55545 10.41.100.1:53 16 sec 89 89
DNS Close - RESP
2018-12-10 10:19:31 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 401 125
DNS Close - RESP
2018-12-10 10:19:31 Permit 10.41.0.131:56090 10.41.100.1:135
10.41.0.131:56090 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:31 Permit 10.41.1.57:62162 10.41.100.7:60313
10.41.1.57:62162 10.41.100.7:60313 4 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:19:31 Permit 10.41.0.131:56089 10.41.100.1:135
10.41.0.131:56089 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:31 Permit 10.41.0.131:51378 10.41.100.1:49154
10.41.0.131:51378 10.41.100.1:49154 4 sec 3808 4196
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:31 Permit 10.41.1.51:53347 10.41.100.7:60313
10.41.1.51:53347 10.41.100.7:60313 3 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:19:31 Permit 10.41.0.131:51381 10.41.100.1:49154
10.41.0.131:51381 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:31 Permit 10.41.203.2:58366 10.41.100.1:53
10.41.203.2:58366 10.41.100.1:53 5 sec 88 88
DNS Close - RESP
2018-12-10 10:19:31 Permit 10.41.203.2:49979 10.41.100.1:53
10.41.203.2:49979 10.41.100.1:53 15 sec 88 88
DNS Close - RESP
2018-12-10 10:19:30 Permit 10.41.0.131:51388 10.41.100.1:49154
10.41.0.131:51388 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:30 Permit 10.41.0.131:56097 10.41.100.1:135
10.41.0.131:56097 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:30 Permit 10.41.0.131:56096 10.41.100.1:135
10.41.0.131:56096 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:30 Permit 10.41.1.54:52554 117.18.232.215:443
1.9.140.18:46283 117.18.232.215:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:30 Permit 10.41.1.54:53297 10.41.100.1:53
10.41.1.54:53297 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:30 Permit 10.41.200.55:51922 10.41.100.1:53
10.41.200.55:51922 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:30 Permit 10.41.100.1:49907 10.10.1.24:53
10.41.100.1:49907 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:30 Permit 10.41.100.1:50197 10.10.1.24:53
10.41.100.1:50197 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:30 Permit 10.41.100.1:65330 10.10.1.24:53
10.41.100.1:65330 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:30 Permit 10.41.100.1:50243 10.10.1.24:53
10.41.100.1:50243 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:30 Permit 10.41.100.1:50698 10.10.1.4:53
10.41.100.1:50698 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:30 Permit 10.41.100.1:49308 10.10.1.4:53
10.41.100.1:49308 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:30 Permit 10.41.100.1:50079 10.10.1.4:53
10.41.100.1:50079 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:30 Permit 10.41.100.1:50619 10.10.1.4:53
10.41.100.1:50619 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:30 Permit 10.41.100.1:49997 10.10.1.4:53
10.41.100.1:49997 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:30 Permit 10.41.100.1:50735 10.10.1.4:53
10.41.100.1:50735 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:29 Permit 10.41.200.59:50175 10.41.100.1:88
10.41.200.59:50175 10.41.100.1:88 0 sec 0 0
TCP PORT 88 Creation
2018-12-10 10:19:29 Permit 10.41.200.59:50174 10.41.100.1:445
10.41.200.59:50174 10.41.100.1:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:19:29 Permit 10.41.203.3:62691 10.41.100.1:53
10.41.203.3:62691 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:29 Permit 10.41.5.81:63186 210.187.22.204:80
1.9.140.18:33834 210.187.22.204:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:29 Permit 10.41.5.81:63185 172.217.31.78:80
1.9.140.18:18229 172.217.31.78:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:29 Permit 10.41.1.65:64197 103.243.221.46:80
1.9.140.18:64242 103.243.221.46:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:29 Permit 10.41.200.50:50086 10.41.100.1:49155
10.41.200.50:50086 10.41.100.1:49155 0 sec 0 0
TCP PORT 49155 Creation
2018-12-10 10:19:29 Permit 10.41.200.50:50085 10.41.100.1:49155
10.41.200.50:50085 10.41.100.1:49155 0 sec 0 0
TCP PORT 49155 Creation
2018-12-10 10:19:29 Permit 10.41.200.50:50084 10.41.100.1:49155
10.41.200.50:50084 10.41.100.1:49155 0 sec 0 0
TCP PORT 49155 Creation
2018-12-10 10:19:29 Permit 10.41.200.50:50083 10.41.100.1:135
10.41.200.50:50083 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:29 Permit 10.41.200.50:50081 10.41.100.1:135
10.41.200.50:50081 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:29 Permit 10.41.200.50:50082 10.41.100.1:135
10.41.200.50:50082 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:29 Permit 10.41.100.1:50239 10.10.1.40:53
10.41.100.1:50239 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:29 Permit 10.41.1.65:63867 10.41.100.1:53
10.41.1.65:63867 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:29 Permit 10.41.100.1:49335 10.10.1.40:53
10.41.100.1:49335 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:29 Permit 10.41.1.65:57574 10.41.100.1:53
10.41.1.65:57574 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:29 Permit 10.41.0.131:51384 10.41.100.1:49154
10.41.0.131:51384 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:29 Permit 10.41.0.131:56093 10.41.100.1:135
10.41.0.131:56093 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:29 Permit 10.41.0.131:56092 10.41.100.1:135
10.41.0.131:56092 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:29 Permit 10.41.100.1:50414 10.10.1.4:53
10.41.100.1:50414 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:29 Permit 10.41.100.1:50038 10.10.1.4:53
10.41.100.1:50038 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:29 Permit 10.41.100.1:50147 10.10.1.4:53
10.41.100.1:50147 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:29 Permit 10.41.200.51:52693 10.41.100.1:88
10.41.200.51:52693 10.41.100.1:88 0 sec 0 0
TCP PORT 88 Creation
2018-12-10 10:19:29 Permit 10.41.200.51:52692 10.41.100.1:88
10.41.200.51:52692 10.41.100.1:88 0 sec 0 0
TCP PORT 88 Creation
2018-12-10 10:19:29 Permit 10.41.100.2:59169 104.103.70.183:53
1.9.140.18:6221 104.103.70.183:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:29 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:29 Permit 10.41.200.51:52691 10.41.100.1:445
10.41.200.51:52691 10.41.100.1:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:19:29 Permit 10.41.200.51:50257 10.41.100.1:53
10.41.200.51:50257 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:29 Permit 10.41.1.65:64189 72.34.250.78:443
1.9.140.18:50144 72.34.250.78:443 27 sec 2641 1602
HTTPS Close - TCP RST
2018-12-10 10:19:29 Permit 10.41.1.65:63864 23.51.34.70:443
1.9.140.18:46611 23.51.34.70:443 336 sec 8197 6585
HTTPS Close - TCP RST
2018-12-10 10:19:29 Permit 10.41.100.1:50438 10.10.1.4:53
10.41.100.1:50438 10.10.1.4:53 59 sec 95 0
DNS Close - AGE OUT
2018-12-10 10:19:29 Permit 10.41.200.51:52690 172.217.166.131:443
1.9.140.18:30727 172.217.166.131:443 9 sec 2567 1355
HTTPS Close - TCP FIN
2018-12-10 10:19:29 Permit 10.41.1.55:52489 23.94.187.84:443
1.9.140.18:20809 23.94.187.84:443 2 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:19:29 Permit 10.41.2.74:56445 157.240.10.35:443
1.9.140.18:57131 157.240.10.35:443 1 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:19:29 Permit 10.41.100.1:64980 10.10.1.4:53
10.41.100.1:64980 10.10.1.4:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:19:29 Permit 10.41.2.74:56442 157.240.10.35:443
1.9.140.18:11284 157.240.10.35:443 2 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:19:29 Permit 10.41.100.1:50210 10.10.1.24:53
10.41.100.1:50210 10.10.1.24:53 59 sec 77 0
DNS Close - AGE OUT
2018-12-10 10:19:29 Permit 10.41.100.1:50731 10.10.1.40:53
10.41.100.1:50731 10.10.1.40:53 60 sec 87 0
DNS Close - AGE OUT
2018-12-10 10:19:29 Permit 10.41.5.77:63574 172.217.166.142:443
1.9.140.18:1194 172.217.166.142:443 243 sec 1909 4972
HTTPS Close - TCP FIN
2018-12-10 10:19:29 Permit 10.41.2.74:56443 157.240.10.35:443
1.9.140.18:37825 157.240.10.35:443 1 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:19:29 Permit 10.41.200.80:61094 23.51.41.13:80
1.9.140.18:9201 23.51.41.13:80 1 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:19:29 Permit 10.41.200.50:50027 172.217.26.142:443
1.9.140.18:60337 172.217.26.142:443 981 sec 32495 26611
HTTPS Close - TCP FIN
2018-12-10 10:19:29 Permit 10.41.2.74:56444 157.240.10.35:443
1.9.140.18:22719 157.240.10.35:443 1 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:19:29 Permit 10.41.1.65:63630 23.51.34.70:443
1.9.140.18:40187 23.51.34.70:443 868 sec 73116 16315
HTTPS Close - TCP RST
2018-12-10 10:19:29 Permit 10.41.0.131:60634 8.8.8.8:53
1.9.140.18:25832 8.8.8.8:53 3 sec 75 95
DNS Close - RESP
2018-12-10 10:19:29 Permit 10.41.100.1:49356 10.10.1.40:53
10.41.100.1:49356 10.10.1.40:53 59 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:19:29 Permit 10.41.5.81:63183 172.217.31.78:80
1.9.140.18:10142 172.217.31.78:80 2 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:19:29 Permit 10.41.5.80:61088 104.103.70.10:80
1.9.140.18:5826 104.103.70.10:80 7 sec 934 550
HTTP Close - TCP RST
2018-12-10 10:19:29 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 2 sec 401 80
DNS Close - RESP
2018-12-10 10:19:29 Permit 10.41.0.131:51374 10.41.100.1:49154
10.41.0.131:51374 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:29 Permit 10.41.3.71:59748 10.41.100.1:445
10.41.3.71:59748 10.41.100.1:445 15 sec 4751 2036
TCP PORT 445 Close - TCP RST
2018-12-10 10:19:29 Permit 10.41.0.131:56082 10.41.100.1:135
10.41.0.131:56082 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:29 Permit 10.41.0.131:56083 10.41.100.1:135
10.41.0.131:56083 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:28 Permit 10.41.1.51:53347 10.41.100.7:60313
10.41.1.51:53347 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:19:28 Permit 10.41.1.65:64196 72.34.250.78:443
1.9.140.18:51025 72.34.250.78:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:28 Permit 10.41.1.65:64195 103.243.221.109:80
1.9.140.18:46407 103.243.221.109:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:28 Permit 10.41.1.65:64194 103.243.221.109:80
1.9.140.18:4293 103.243.221.109:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:28 Permit 10.41.1.65:64193 210.176.156.48:80
1.9.140.18:57500 210.176.156.48:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:28 Permit 10.41.2.74:56447 52.218.36.3:443
1.9.140.18:11269 52.218.36.3:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:28 Permit 10.41.5.80:60412 10.41.100.1:53
10.41.5.80:60412 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:28 Permit 10.41.5.80:61090 104.103.70.10:80
1.9.140.18:4151 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:28 Permit 10.41.2.74:56446 52.218.36.3:443
1.9.140.18:25734 52.218.36.3:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:28 Permit 10.41.0.131:51381 10.41.100.1:49154
10.41.0.131:51381 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:28 Permit 10.41.0.131:56090 10.41.100.1:135
10.41.0.131:56090 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:28 Permit 10.41.0.131:56089 10.41.100.1:135
10.41.0.131:56089 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:28 Permit 10.41.100.1:50653 10.10.1.4:53
10.41.100.1:50653 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:28 Permit 10.41.100.1:50943 10.10.1.40:53
10.41.100.1:50943 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:28 Permit 10.41.203.4:49957 10.41.100.1:53
10.41.203.4:49957 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:28 Permit 10.41.200.80:61094 23.51.41.13:80
1.9.140.18:9201 23.51.41.13:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:28 Permit 10.41.2.74:56445 157.240.10.35:443
1.9.140.18:57131 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:28 Permit 10.41.2.74:56444 157.240.10.35:443
1.9.140.18:22719 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:28 Permit 10.41.2.74:56443 157.240.10.35:443
1.9.140.18:37825 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:27 Permit 10.41.2.74:56442 157.240.10.35:443
1.9.140.18:11284 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:27 Permit 10.41.5.81:63183 172.217.31.78:80
1.9.140.18:10142 172.217.31.78:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:27 Permit 10.41.1.57:62162 10.41.100.7:60313
10.41.1.57:62162 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:19:27 Permit 10.41.1.55:52489 23.94.187.84:443
1.9.140.18:20809 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:27 Permit 10.41.100.1:49623 10.10.1.4:53
10.41.100.1:49623 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:27 Permit 10.41.100.1:49637 10.10.1.4:53
10.41.100.1:49637 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:27 Permit 10.41.203.2:58765 10.41.100.1:53
10.41.203.2:58765 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:27 Permit 10.41.100.1:49907 10.10.1.40:53
10.41.100.1:49907 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:27 Permit 10.41.100.1:50197 10.10.1.40:53
10.41.100.1:50197 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:27 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:27 Permit 10.41.0.131:51378 10.41.100.1:49154
10.41.0.131:51378 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:27 Permit 10.41.100.7:20 10.100.10.102:56201
10.41.100.7:20 10.100.10.102:56201 4 sec 576 194
TCP PORT 56201 Close - TCP FIN
2018-12-10 10:19:27 Permit 10.41.100.2:50879 23.45.232.164:53
1.9.140.18:60100 23.45.232.164:53 2 sec 86 106
DNS Close - RESP
2018-12-10 10:19:27 Permit 10.41.100.1:65019 10.10.1.40:53
10.41.100.1:65019 10.10.1.40:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:19:27 Permit 10.41.100.1:53 10.41.200.5:49154
10.41.100.1:53 10.41.200.5:49154 2 sec 76 0
UDP PORT 49154 Close - ICMP Unreach
2018-12-10 10:19:27 Permit 10.41.100.1:65183 10.10.1.4:53
10.41.100.1:65183 10.10.1.4:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:19:27 Permit 10.41.200.63:53372 1.9.57.142:80
1.9.140.18:15868 1.9.57.142:80 1 sec 1068 17809
HTTP Close - TCP RST
2018-12-10 10:19:27 Permit 10.41.100.2:54377 205.251.195.240:53
1.9.140.18:18014 205.251.195.240:53 2 sec 81 269
DNS Close - RESP
2018-12-10 10:19:27 Permit 10.41.100.1:50791 10.10.1.40:53
10.41.100.1:50791 10.10.1.40:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:19:27 Permit 10.41.100.1:49333 10.10.1.4:53
10.41.100.1:49333 10.10.1.4:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:19:27 Permit 10.41.100.1:49664 10.10.1.24:53
10.41.100.1:49664 10.10.1.24:53 59 sec 71 0
DNS Close - AGE OUT
2018-12-10 10:19:27 Permit 10.41.100.1:50210 10.10.1.40:53
10.41.100.1:50210 10.10.1.40:53 60 sec 77 0
DNS Close - AGE OUT
2018-12-10 10:19:27 Permit 10.41.100.7:20 10.100.10.102:61096
10.41.100.7:20 10.100.10.102:61096 4 sec 576 194
TCP PORT 61096 Close - TCP FIN
2018-12-10 10:19:27 Permit 10.41.200.55:51326 172.217.166.142:443
1.9.140.18:36170 172.217.166.142:443 254 sec 3830 7171
HTTPS Close - TCP FIN
2018-12-10 10:19:27 Permit 10.41.0.131:56087 10.41.100.1:135
10.41.0.131:56087 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:27 Permit 10.100.10.102:49864 10.41.100.7:21
10.100.10.102:49864 10.41.100.7:21 4 sec 1263 1399
FTP Close - TCP FIN
2018-12-10 10:19:27 Permit 10.41.0.131:51367 10.41.100.1:49154
10.41.0.131:51367 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:27 Permit 10.100.10.102:54617 10.41.100.7:21
10.100.10.102:54617 10.41.100.7:21 4 sec 1263 1387
FTP Close - TCP FIN
2018-12-10 10:19:27 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 476 91
DNS Close - RESP
2018-12-10 10:19:27 Permit 10.41.1.51:53346 10.41.100.7:60313
10.41.1.51:53346 10.41.100.7:60313 4 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:19:27 Permit 10.41.0.131:56080 10.41.100.1:135
10.41.0.131:56080 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:27 Permit 10.41.0.131:56079 10.41.100.1:135
10.41.0.131:56079 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:27 Permit 10.41.200.60:56834 10.41.100.1:53
10.41.200.60:56834 10.41.100.1:53 4 sec 78 143
DNS Close - RESP
2018-12-10 10:19:27 Permit 10.41.0.131:51371 10.41.100.1:49154
10.41.0.131:51371 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:27 Permit 10.41.0.131:56076 10.41.100.1:135
10.41.0.131:56076 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:27 Permit 10.41.0.131:56075 10.41.100.1:135
10.41.0.131:56075 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:26 Permit 10.41.0.131:56086 10.41.100.1:135
10.41.0.131:56086 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:26 Permit 10.41.100.1:65330 10.10.1.40:53
10.41.100.1:65330 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:26 Permit 10.41.2.74:50095 10.41.100.1:53
10.41.2.74:50095 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:26 Permit 10.41.200.63:53372 1.9.57.142:80
1.9.140.18:15868 1.9.57.142:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:26 Permit 10.41.200.63:53371 172.217.31.110:80
1.9.140.18:59704 172.217.31.110:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:26 Permit 10.41.100.1:50243 10.10.1.40:53
10.41.100.1:50243 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:26 Permit 10.41.0.131:54249 10.41.100.1:53
10.41.0.131:54249 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:26 Permit 10.41.5.80:62547 10.41.100.1:53
10.41.5.80:62547 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:26 Permit 10.41.0.131:60634 8.8.8.8:53
1.9.140.18:25832 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:26 Permit 10.41.203.2:58366 10.41.100.1:53
10.41.203.2:58366 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:26 Permit 10.41.100.1:50698 10.10.1.24:53
10.41.100.1:50698 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:26 Permit 10.41.100.1:49308 10.10.1.24:53
10.41.100.1:49308 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:26 Permit 10.41.100.1:50079 10.10.1.24:53
10.41.100.1:50079 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:26 Permit 10.41.100.1:50619 10.10.1.24:53
10.41.100.1:50619 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:26 Permit 10.41.100.1:49997 10.10.1.24:53
10.41.100.1:49997 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:26 Permit 10.41.100.1:50735 10.10.1.24:53
10.41.100.1:50735 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:26 Permit 10.41.100.1:50179 10.10.1.4:53
10.41.100.1:50179 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:25 Permit 10.41.200.53:50924 172.217.31.67:443
1.9.140.18:56476 172.217.31.67:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:25 Permit 10.41.0.131:51374 10.41.100.1:49154
10.41.0.131:51374 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:25 Permit 10.41.0.131:56083 10.41.100.1:135
10.41.0.131:56083 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:25 Permit 10.41.0.131:56082 10.41.100.1:135
10.41.0.131:56082 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:25 Permit 10.41.100.1:50414 10.10.1.24:53
10.41.100.1:50414 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:25 Permit 10.41.100.1:50038 10.10.1.24:53
10.41.100.1:50038 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:25 Permit 10.41.100.1:50147 10.10.1.24:53
10.41.100.1:50147 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:25 Permit 10.41.100.1:65045 10.10.1.4:53
10.41.100.1:65045 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:25 Permit 10.41.100.1:53 10.41.200.5:49154
10.41.100.1:53 10.41.200.5:49154 0 sec 0 0
UDP PORT 49154 Creation
2018-12-10 10:19:25 Permit 10.41.100.2:50879 23.45.232.164:53
1.9.140.18:60100 23.45.232.164:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:25 Permit 10.41.100.2:54377 205.251.195.240:53
1.9.140.18:18014 205.251.195.240:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:25 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:25 Permit 10.41.200.63:53368 172.217.31.110:80
1.9.140.18:11937 172.217.31.110:80 5 sec 982 1214
HTTP Close - TCP RST
2018-12-10 10:19:25 Permit 10.41.2.74:56437 104.103.55.181:443
1.9.140.18:13982 104.103.55.181:443 5 sec 26117 4317
HTTPS Close - TCP FIN
2018-12-10 10:19:25 Permit 10.41.2.74:56433 104.103.55.181:443
1.9.140.18:28088 104.103.55.181:443 6 sec 93115 13897
HTTPS Close - TCP FIN
2018-12-10 10:19:25 Permit 10.41.2.74:56435 104.103.55.181:443
1.9.140.18:10161 104.103.55.181:443 6 sec 103804 14625
HTTPS Close - TCP FIN
2018-12-10 10:19:25 Permit 10.41.1.65:64175 52.175.39.99:443
1.9.140.18:24289 52.175.39.99:443 63 sec 2956 5363
HTTPS Close - TCP FIN
2018-12-10 10:19:25 Permit 10.41.1.57:62159 65.55.50.190:80
1.9.140.18:29624 65.55.50.190:80 4 sec 198 142
HTTP Close - TCP RST
2018-12-10 10:19:25 Permit 10.41.1.59:58824 172.217.26.131:443
1.9.140.18:20968 172.217.26.131:443 242 sec 2816 5960
HTTPS Close - TCP FIN
2018-12-10 10:19:25 Permit 10.41.100.1:65052 10.10.1.4:53
10.41.100.1:65052 10.10.1.4:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:19:25 Permit 10.41.200.50:50074 172.217.26.132:443
1.9.140.18:28994 172.217.26.132:443 313 sec 4685 7621
HTTPS Close - TCP FIN
2018-12-10 10:19:25 Permit 10.41.100.1:65438 10.10.1.4:53
10.41.100.1:65438 10.10.1.4:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:19:25 Permit 10.41.100.1:64980 10.10.1.24:53
10.41.100.1:64980 10.10.1.24:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:19:25 Permit 10.41.1.82:3350 104.237.191.1:443
1.9.140.18:28247 104.237.191.1:443 6 sec 198 210
HTTPS Close - TCP RST
2018-12-10 10:19:25 Permit 10.41.100.1:49664 10.10.1.40:53
10.41.100.1:49664 10.10.1.40:53 60 sec 71 0
DNS Close - AGE OUT
2018-12-10 10:19:25 Permit 10.41.100.1:50438 10.10.1.24:53
10.41.100.1:50438 10.10.1.24:53 59 sec 95 0
DNS Close - AGE OUT
2018-12-10 10:19:25 Permit 10.41.1.57:53831 8.8.4.4:53
1.9.140.18:32867 8.8.4.4:53 4 sec 75 95
DNS Close - RESP
2018-12-10 10:19:25 Permit 10.41.1.57:53829 8.8.4.4:53
1.9.140.18:25065 8.8.4.4:53 4 sec 84 182
DNS Close - RESP
2018-12-10 10:19:25 Permit 10.41.2.74:56440 104.103.55.181:443
1.9.140.18:10112 104.103.55.181:443 5 sec 19062 3363
HTTPS Close - TCP FIN
2018-12-10 10:19:25 Permit 10.41.5.80:61087 104.103.70.8:80
1.9.140.18:30651 104.103.70.8:80 3 sec 804 39714
HTTP Close - TCP RST
2018-12-10 10:19:25 Permit 10.41.203.3:58107 10.41.100.1:53
10.41.203.3:58107 10.41.100.1:53 16 sec 76 76
DNS Close - RESP
2018-12-10 10:19:25 Permit 10.41.2.74:50611 10.41.100.1:53
10.41.2.74:50611 10.41.100.1:53 12 sec 91 91
DNS Close - RESP
2018-12-10 10:19:25 Permit 10.41.0.131:51361 10.41.100.1:49154
10.41.0.131:51361 10.41.100.1:49154 5 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:25 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 4 sec 320 76
DNS Close - RESP
2018-12-10 10:19:25 Permit 10.41.5.72:53496 10.41.100.1:53
10.41.5.72:53496 10.41.100.1:53 15 sec 91 91
DNS Close - RESP
2018-12-10 10:19:25 Permit 10.41.1.57:62161 10.41.100.7:60313
10.41.1.57:62161 10.41.100.7:60313 3 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:19:25 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 12 sec 76 76
DNS Close - RESP
2018-12-10 10:19:25 Permit 10.41.0.131:56580 10.41.100.1:53
10.41.0.131:56580 10.41.100.1:53 9 sec 81 81
DNS Close - RESP
2018-12-10 10:19:25 Permit 10.41.0.131:56073 10.41.100.1:135
10.41.0.131:56073 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:25 Permit 10.41.0.131:59871 10.41.100.1:53
10.41.0.131:59871 10.41.100.1:53 14 sec 81 81
DNS Close - RESP
2018-12-10 10:19:25 Permit 10.41.0.131:56072 10.41.100.1:135
10.41.0.131:56072 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:25 Permit 10.41.0.131:51364 10.41.100.1:49154
10.41.0.131:51364 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:24 Permit 10.41.0.131:51371 10.41.100.1:49154
10.41.0.131:51371 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:24 Permit 10.41.0.131:56080 10.41.100.1:135
10.41.0.131:56080 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:24 Permit 10.41.0.131:56079 10.41.100.1:135
10.41.0.131:56079 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:24 Permit 10.41.200.80:61093 40.100.17.2:443
1.9.140.18:56707 40.100.17.2:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:24 Permit 10.41.100.1:50653 10.10.1.24:53
10.41.100.1:50653 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:24 Permit 10.41.100.1:49330 10.10.1.4:53
10.41.100.1:49330 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:24 Permit 10.41.100.1:65119 10.10.1.4:53
10.41.100.1:65119 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:23 Permit 10.41.100.7:20 10.100.10.102:61096
10.41.100.7:20 10.100.10.102:61096 0 sec 0 0
TCP PORT 61096 Creation
2018-12-10 10:19:23 Deny 10.41.5.81:63182 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 28 HTTPS Traffic
Denied
2018-12-10 10:19:23 Permit 10.41.1.51:53346 10.41.100.7:60313
10.41.1.51:53346 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:19:23 Permit 10.100.10.102:49864 10.41.100.7:21
10.100.10.102:49864 10.41.100.7:21 0 sec 0 0
FTP Creation
2018-12-10 10:19:23 Permit 10.41.200.80:61092 40.100.17.2:443
1.9.140.18:19407 40.100.17.2:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:23 Permit 10.41.100.7:20 10.100.10.102:56201
10.41.100.7:20 10.100.10.102:56201 0 sec 0 0
TCP PORT 56201 Creation
2018-12-10 10:19:23 Permit 10.100.10.102:54617 10.41.100.7:21
10.100.10.102:54617 10.41.100.7:21 0 sec 0 0
FTP Creation
2018-12-10 10:19:23 Permit 10.41.200.80:61091 40.100.17.2:443
1.9.140.18:63948 40.100.17.2:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:23 Permit 10.41.0.131:51367 10.41.100.1:49154
10.41.0.131:51367 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:23 Permit 10.41.0.131:56076 10.41.100.1:135
10.41.0.131:56076 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:23 Permit 10.41.0.131:56075 10.41.100.1:135
10.41.0.131:56075 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:23 Permit 10.41.200.80:61090 40.100.17.2:443
1.9.140.18:16177 40.100.17.2:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:23 Permit 10.41.100.1:49623 10.10.1.24:53
10.41.100.1:49623 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:23 Permit 10.41.100.1:49637 10.10.1.24:53
10.41.100.1:49637 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:23 Permit 10.41.100.1:50766 10.10.1.4:53
10.41.100.1:50766 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:23 Permit 10.41.100.1:50698 10.10.1.40:53
10.41.100.1:50698 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:23 Permit 10.41.200.80:56313 10.41.100.1:53
10.41.200.80:56313 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:23 Permit 10.41.200.60:65205 172.217.166.131:443
1.9.140.18:34828 172.217.166.131:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:23 Permit 10.41.200.60:56834 10.41.100.1:53
10.41.200.60:56834 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:23 Permit 10.41.200.60:55524 10.41.100.1:53
10.41.200.60:55524 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:23 Permit 10.41.2.74:56438 104.103.55.181:443
1.9.140.18:32713 104.103.55.181:443 3 sec 33246 5345
HTTPS Close - TCP FIN
2018-12-10 10:19:23 Permit 10.41.100.1:49721 10.10.1.4:53
10.41.100.1:49721 10.10.1.4:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:19:23 Permit 10.41.200.50:50071 172.217.166.129:443
1.9.140.18:8664 172.217.166.129:443 319 sec 7822 112904
HTTPS Close - TCP FIN
2018-12-10 10:19:23 Permit 10.41.2.74:56426 104.103.55.181:443
1.9.140.18:41319 104.103.55.181:443 6 sec 54343 8195
HTTPS Close - TCP FIN
2018-12-10 10:19:23 Permit 10.41.2.74:56430 104.103.55.181:443
1.9.140.18:14312 104.103.55.181:443 5 sec 40299 6113
HTTPS Close - TCP FIN
2018-12-10 10:19:23 Permit 10.41.1.55:52483 23.94.187.84:443
1.9.140.18:23150 23.94.187.84:443 2 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:19:23 Permit 10.41.2.74:56434 104.103.55.181:443
1.9.140.18:19873 104.103.55.181:443 4 sec 72059 10685
HTTPS Close - TCP FIN
2018-12-10 10:19:23 Permit 10.41.2.74:56429 104.103.55.181:443
1.9.140.18:35669 104.103.55.181:443 5 sec 22661 3883
HTTPS Close - TCP FIN
2018-12-10 10:19:23 Permit 10.41.1.57:53830 8.8.4.4:53
1.9.140.18:56609 8.8.4.4:53 2 sec 75 95
DNS Close - RESP
2018-12-10 10:19:23 Permit 10.41.2.74:56436 104.103.55.181:443
1.9.140.18:19156 104.103.55.181:443 4 sec 26117 4317
HTTPS Close - TCP FIN
2018-12-10 10:19:23 Permit 10.41.100.1:65183 10.10.1.24:53
10.41.100.1:65183 10.10.1.24:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:19:23 Permit 10.41.0.131:33532 8.8.8.8:53
1.9.140.18:50567 8.8.8.8:53 2 sec 81 149
DNS Close - RESP
2018-12-10 10:19:23 Permit 10.41.2.74:56412 104.103.55.181:443
1.9.140.18:57090 104.103.55.181:443 10 sec 290360 53043
HTTPS Close - TCP FIN
2018-12-10 10:19:23 Permit 10.41.1.58:64140 172.217.166.131:443
1.9.140.18:47276 172.217.166.131:443 5 sec 2952 5921
HTTPS Close - TCP RST
2018-12-10 10:19:23 Permit 10.41.100.1:67 10.41.200.254:67
10.41.100.1:67 10.41.200.254:67 59 sec 346 0
DHCP Close - AGE OUT
2018-12-10 10:19:23 Permit 10.41.100.1:49333 10.10.1.24:53
10.41.100.1:49333 10.10.1.24:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:19:23 Permit 10.41.2.74:56431 104.103.55.181:443
1.9.140.18:2149 104.103.55.181:443 5 sec 22591 3747
HTTPS Close - TCP FIN
2018-12-10 10:19:23 Permit 10.41.200.63:53369 1.9.57.142:80
1.9.140.18:52234 1.9.57.142:80 3 sec 1068 17809
HTTP Close - TCP RST
2018-12-10 10:19:23 Permit 10.41.100.1:50495 10.10.1.4:53
10.41.100.1:50495 10.10.1.4:53 60 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:19:23 Permit 10.41.2.74:56432 104.103.55.181:443
1.9.140.18:33974 104.103.55.181:443 5 sec 54347 8071
HTTPS Close - TCP FIN
2018-12-10 10:19:23 Permit 10.41.5.81:63110 172.217.26.142:443
1.9.140.18:58187 172.217.26.142:443 406 sec 3912 3464
HTTPS Close - TCP FIN
2018-12-10 10:19:23 Permit 10.41.100.1:49308 10.10.1.40:53
10.41.100.1:49308 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:23 Permit 10.41.100.1:54857 10.10.1.155:443
10.41.100.1:54857 10.10.1.155:443 98 sec 59896 3526
HTTPS Close - TCP RST
2018-12-10 10:19:23 Permit 10.41.200.80:56374 10.41.100.1:53
10.41.200.80:56374 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:23 Permit 10.41.0.131:56065 10.41.100.1:135
10.41.0.131:56065 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:23 Permit 10.41.0.131:51357 10.41.100.1:49154
10.41.0.131:51357 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:23 Permit 10.41.0.131:56066 10.41.100.1:135
10.41.0.131:56066 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:23 Permit 10.41.0.131:56069 10.41.100.1:135
10.41.0.131:56069 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:23 Permit 10.41.5.80:60926 10.41.100.1:53
10.41.5.80:60926 10.41.100.1:53 15 sec 93 93
DNS Close - RESP
2018-12-10 10:19:23 Permit 10.41.0.131:56070 10.41.100.1:135
10.41.0.131:56070 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:23 Permit 10.41.200.62:60135 10.41.100.1:53
10.41.200.62:60135 10.41.100.1:53 15 sec 93 93
DNS Close - RESP
2018-12-10 10:19:22 Permit 10.41.200.80:61087 104.103.42.96:80
1.9.140.18:61328 104.103.42.96:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:22 Permit 10.41.200.80:61088 104.103.42.96:80
1.9.140.18:56645 104.103.42.96:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:22 Permit 10.41.200.80:61086 104.103.42.96:80
1.9.140.18:39014 104.103.42.96:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:22 Permit 10.41.200.80:61085 104.103.42.96:80
1.9.140.18:18297 104.103.42.96:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:22 Permit 10.41.200.80:61089 23.15.25.156:80
1.9.140.18:61810 23.15.25.156:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:22 Permit 10.41.100.1:50079 10.10.1.40:53
10.41.100.1:50079 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:22 Permit 10.41.100.1:50619 10.10.1.40:53
10.41.100.1:50619 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:22 Permit 10.41.100.1:49997 10.10.1.40:53
10.41.100.1:49997 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:22 Permit 10.41.200.80:59768 10.41.100.1:53
10.41.200.80:59768 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:22 Permit 10.41.200.80:52710 10.41.100.1:53
10.41.200.80:52710 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:22 Permit 10.41.200.80:49977 10.41.100.1:53
10.41.200.80:49977 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:22 Permit 10.41.1.57:62161 10.41.100.7:60313
10.41.1.57:62161 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:19:22 Permit 10.41.1.55:52487 172.217.26.129:443
1.9.140.18:10690 172.217.26.129:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:22 Permit 10.41.100.1:50735 10.10.1.40:53
10.41.100.1:50735 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:22 Permit 10.41.5.80:63675 10.41.100.1:53
10.41.5.80:63675 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:22 Permit 10.41.1.55:52486 172.217.31.110:443
1.9.140.18:17364 172.217.31.110:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:22 Permit 10.41.5.80:61088 104.103.70.10:80
1.9.140.18:5826 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:22 Permit 10.41.5.80:61087 104.103.70.8:80
1.9.140.18:30651 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:22 Permit 10.41.100.1:50179 10.10.1.24:53
10.41.100.1:50179 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:22 Permit 10.41.0.131:51364 10.41.100.1:49154
10.41.0.131:51364 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:22 Permit 10.41.0.131:56073 10.41.100.1:135
10.41.0.131:56073 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:22 Permit 10.41.0.131:56072 10.41.100.1:135
10.41.0.131:56072 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:21 Permit 10.41.1.55:52484 216.58.203.74:443
1.9.140.18:7430 216.58.203.74:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:21 Permit 10.41.1.57:62160 5.100.152.23:80
1.9.140.18:7789 5.100.152.23:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:21 Permit 10.41.1.57:53831 8.8.4.4:53
1.9.140.18:32867 8.8.4.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:21 Permit 10.41.1.57:53830 8.8.4.4:53
1.9.140.18:56609 8.8.4.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:21 Permit 10.41.1.55:52483 23.94.187.84:443
1.9.140.18:23150 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:21 Permit 10.41.100.1:50414 10.10.1.40:53
10.41.100.1:50414 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:21 Permit 10.41.0.131:33908 10.41.100.1:53
10.41.0.131:33908 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:21 Permit 10.41.1.55:52482 216.58.203.74:443
1.9.140.18:46300 216.58.203.74:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:21 Permit 10.41.1.57:62159 65.55.50.190:80
1.9.140.18:29624 65.55.50.190:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:21 Permit 10.41.0.131:33532 8.8.8.8:53
1.9.140.18:50567 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:21 Permit 10.40.200.106:54696 10.41.100.11:139
10.40.200.106:54696 10.41.100.11:139 0 sec 0 0
NETBIOS (SSN) Creation
2018-12-10 10:19:21 Permit 10.41.100.1:50038 10.10.1.40:53
10.41.100.1:50038 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:21 Permit 10.41.100.1:50147 10.10.1.40:53
10.41.100.1:50147 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:21 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:21 Permit 10.41.100.1:65045 10.10.1.24:53
10.41.100.1:65045 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:21 Permit 10.41.100.1:49566 10.10.1.4:53
10.41.100.1:49566 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:21 Permit 10.41.2.74:56441 104.103.55.181:443
1.9.140.18:60630 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:21 Permit 10.41.1.57:53829 8.8.4.4:53
1.9.140.18:25065 8.8.4.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:21 Permit 10.41.100.1:50905 10.10.1.4:53
10.41.100.1:50905 10.10.1.4:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:19:21 Permit 10.41.1.82:3344 104.237.191.1:443
1.9.140.18:46071 104.237.191.1:443 8 sec 636 210
HTTPS Close - TCP RST
2018-12-10 10:19:21 Permit 10.41.2.74:56427 104.103.55.181:443
1.9.140.18:39338 104.103.55.181:443 4 sec 19062 3239
HTTPS Close - TCP FIN
2018-12-10 10:19:21 Permit 10.41.2.74:56425 104.103.55.181:443
1.9.140.18:31323 104.103.55.181:443 4 sec 40294 6411
HTTPS Close - TCP FIN
2018-12-10 10:19:21 Permit 10.41.100.1:49905 10.10.1.4:53
10.41.100.1:49905 10.10.1.4:53 114 sec 170 0
DNS Close - AGE OUT
2018-12-10 10:19:21 Permit 10.41.200.51:52689 172.217.166.131:443
1.9.140.18:63674 172.217.166.131:443 4 sec 2567 1355
HTTPS Close - TCP FIN
2018-12-10 10:19:21 Permit 10.41.200.55:51330 216.58.196.42:443
1.9.140.18:18475 216.58.196.42:443 244 sec 5014 2368
HTTPS Close - TCP FIN
2018-12-10 10:19:21 Permit 10.41.2.74:56428 104.103.55.181:443
1.9.140.18:30158 104.103.55.181:443 3 sec 5013 1325
HTTPS Close - TCP FIN
2018-12-10 10:19:21 Permit 10.41.100.1:65438 10.10.1.24:53
10.41.100.1:65438 10.10.1.24:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:19:21 Permit 10.41.2.74:56422 104.103.55.181:443
1.9.140.18:18196 104.103.55.181:443 5 sec 19198 3375
HTTPS Close - TCP FIN
2018-12-10 10:19:21 Permit 10.41.2.74:56424 104.103.55.181:443
1.9.140.18:6555 104.103.55.181:443 4 sec 12004 2347
HTTPS Close - TCP FIN
2018-12-10 10:19:21 Permit 10.41.2.74:56423 104.103.55.181:443
1.9.140.18:35256 104.103.55.181:443 5 sec 19131 3437
HTTPS Close - TCP FIN
2018-12-10 10:19:21 Permit 10.41.2.74:56421 104.103.55.181:443
1.9.140.18:31089 104.103.55.181:443 5 sec 40235 6163
HTTPS Close - TCP FIN
2018-12-10 10:19:21 Permit 10.41.200.63:53365 172.217.31.110:80
1.9.140.18:45518 172.217.31.110:80 7 sec 982 1214
HTTP Close - TCP RST
2018-12-10 10:19:21 Permit 10.41.100.1:65052 10.10.1.24:53
10.41.100.1:65052 10.10.1.24:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:19:21 Permit 10.41.1.82:3349 104.237.191.1:443
1.9.140.18:18306 104.237.191.1:443 2 sec 1868 4756
HTTPS Close - TCP RST
2018-12-10 10:19:21 Permit 10.41.5.80:61085 104.103.70.8:80
1.9.140.18:48534 104.103.70.8:80 1 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:19:21 Permit 10.41.2.74:56417 104.103.55.181:443
1.9.140.18:2611 104.103.55.181:443 6 sec 96744 13869
HTTPS Close - TCP FIN
2018-12-10 10:19:21 Permit 10.41.100.1:65214 10.10.1.4:53
10.41.100.1:65214 10.10.1.4:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:19:21 Permit 10.41.100.1:50438 10.10.1.40:53
10.41.100.1:50438 10.10.1.40:53 59 sec 95 0
DNS Close - AGE OUT
2018-12-10 10:19:21 Permit 10.41.100.1:65183 10.10.1.40:53
10.41.100.1:65183 10.10.1.40:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:19:21 Permit 10.41.100.1:64980 10.10.1.40:53
10.41.100.1:64980 10.10.1.40:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:19:21 Permit 10.41.1.58:64878 10.41.100.1:53
10.41.1.58:64878 10.41.100.1:53 16 sec 93 93
DNS Close - RESP
2018-12-10 10:19:21 Permit 10.41.0.131:56062 10.41.100.1:135
10.41.0.131:56062 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:21 Permit 10.41.0.131:56063 10.41.100.1:135
10.41.0.131:56063 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:21 Permit 10.41.200.62:52099 10.41.100.1:53
10.41.200.62:52099 10.41.100.1:53 15 sec 78 78
DNS Close - RESP
2018-12-10 10:19:21 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 401 176
DNS Close - RESP
2018-12-10 10:19:21 Permit 10.41.0.131:51350 10.41.100.1:49154
10.41.0.131:51350 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:21 Permit 10.41.1.57:62158 10.41.100.7:60313
10.41.1.57:62158 10.41.100.7:60313 4 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:19:21 Permit 10.41.1.58:62039 10.41.100.1:53
10.41.1.58:62039 10.41.100.1:53 16 sec 96 96
DNS Close - RESP
2018-12-10 10:19:21 Permit 10.41.0.131:56059 10.41.100.1:135
10.41.0.131:56059 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:21 Permit 10.41.1.58:58177 10.41.100.1:53
10.41.1.58:58177 10.41.100.1:53 15 sec 81 81
DNS Close - RESP
2018-12-10 10:19:21 Permit 10.41.0.131:56058 10.41.100.1:135
10.41.0.131:56058 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:21 Permit 10.41.1.51:53339 10.41.100.7:60313
10.41.1.51:53339 10.41.100.7:60313 3 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:19:21 Permit 10.41.0.131:51354 10.41.100.1:49154
10.41.0.131:51354 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:20 Permit 10.41.2.74:56440 104.103.55.181:443
1.9.140.18:10112 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:20 Permit 10.41.2.74:56439 104.103.55.181:443
1.9.140.18:62395 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:20 Permit 10.41.0.131:51361 10.41.100.1:49154
10.41.0.131:51361 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:20 Permit 10.41.0.131:56070 10.41.100.1:135
10.41.0.131:56070 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:20 Permit 10.41.0.131:56069 10.41.100.1:135
10.41.0.131:56069 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:20 Permit 10.41.1.82:3351 172.217.166.131:443
1.9.140.18:7424 172.217.166.131:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:20 Permit 10.41.1.55:52481 64.233.184.120:443
1.9.140.18:55354 64.233.184.120:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:20 Permit 10.41.200.63:53369 1.9.57.142:80
1.9.140.18:52234 1.9.57.142:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:20 Permit 10.41.2.74:56438 104.103.55.181:443
1.9.140.18:32713 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:20 Permit 10.41.200.63:53368 172.217.31.110:80
1.9.140.18:11937 172.217.31.110:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:20 Permit 10.41.1.55:52480 64.233.184.120:443
1.9.140.18:29569 64.233.184.120:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:20 Permit 10.41.100.1:50653 10.10.1.40:53
10.41.100.1:50653 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:20 Permit 10.41.1.55:51624 10.41.100.1:53
10.41.1.55:51624 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:20 Permit 10.40.200.106:54695 10.41.100.11:445
10.40.200.106:54695 10.41.100.11:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:19:20 Permit 10.41.100.1:49330 10.10.1.24:53
10.41.100.1:49330 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:20 Permit 10.41.100.1:65119 10.10.1.24:53
10.41.100.1:65119 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:20 Permit 10.41.5.80:61085 104.103.70.8:80
1.9.140.18:48534 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:20 Permit 10.41.2.74:56437 104.103.55.181:443
1.9.140.18:13982 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:20 Permit 10.41.200.51:52690 172.217.166.131:443
1.9.140.18:30727 172.217.166.131:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:19 Permit 10.41.2.74:56436 104.103.55.181:443
1.9.140.18:19156 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:19 Permit 10.41.100.1:49623 10.10.1.40:53
10.41.100.1:49623 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:19 Permit 10.41.203.3:57283 10.41.100.1:53
10.41.203.3:57283 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:19 Permit 10.41.1.82:3350 104.237.191.1:443
1.9.140.18:28247 104.237.191.1:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:19 Permit 10.41.200.53:50918 10.41.100.11:2967
10.41.200.53:50918 10.41.100.11:2967 0 sec 0 0
TCP PORT 2967 Creation
2018-12-10 10:19:19 Permit 10.41.2.74:56435 104.103.55.181:443
1.9.140.18:10161 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:19 Permit 10.41.0.131:51357 10.41.100.1:49154
10.41.0.131:51357 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:19 Permit 10.41.0.131:56066 10.41.100.1:135
10.41.0.131:56066 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:19 Permit 10.41.0.131:56065 10.41.100.1:135
10.41.0.131:56065 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:19 Permit 10.70.200.86:49172 10.41.100.1:445
10.70.200.86:49172 10.41.100.1:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:19:19 Permit 10.41.2.74:56434 104.103.55.181:443
1.9.140.18:19873 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:19 Permit 10.41.1.82:3349 104.237.191.1:443
1.9.140.18:18306 104.237.191.1:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:19 Permit 10.41.100.1:49637 10.10.1.40:53
10.41.100.1:49637 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:19 Permit 10.41.1.55:54913 10.41.100.1:53
10.41.1.55:54913 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:19 Permit 10.41.100.1:50766 10.10.1.24:53
10.41.100.1:50766 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:19 Permit 10.41.100.1:64917 10.10.1.4:53
10.41.100.1:64917 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:19 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:19 Permit 10.41.2.74:56433 104.103.55.181:443
1.9.140.18:28088 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:19 Permit 10.41.2.74:56416 104.103.55.181:443
1.9.140.18:46192 104.103.55.181:443 5 sec 177766 27357
HTTPS Close - TCP FIN
2018-12-10 10:19:19 Permit 10.41.200.55:51329 216.58.196.42:443
1.9.140.18:55122 216.58.196.42:443 242 sec 2866 2031
HTTPS Close - TCP FIN
2018-12-10 10:19:19 Permit 10.41.2.74:56353 104.103.55.181:443
1.9.140.18:56044 104.103.55.181:443 34 sec 52426 21298
HTTPS Close - TCP FIN
2018-12-10 10:19:19 Permit 10.41.2.74:56414 104.103.55.181:443
1.9.140.18:53568 104.103.55.181:443 6 sec 117114 16031
HTTPS Close - TCP FIN
2018-12-10 10:19:19 Permit 10.41.100.1:65444 10.10.1.4:53
10.41.100.1:65444 10.10.1.4:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:19:19 Permit 10.41.100.1:49721 10.10.1.24:53
10.41.100.1:49721 10.10.1.24:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:19:19 Permit 10.41.2.74:56407 50.112.254.249:443
1.9.140.18:61052 50.112.254.249:443 12 sec 262 136
HTTPS Close - TCP FIN
2018-12-10 10:19:19 Permit 10.41.1.65:64178 210.176.156.48:80
1.9.140.18:19673 210.176.156.48:80 30 sec 10710 2993
HTTP Close - TCP RST
2018-12-10 10:19:19 Permit 10.41.100.1:50495 10.10.1.24:53
10.41.100.1:50495 10.10.1.24:53 60 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:19:19 Permit 10.41.2.74:56406 52.218.36.3:443
1.9.140.18:5411 52.218.36.3:443 12 sec 262 211
HTTPS Close - TCP RST
2018-12-10 10:19:19 Permit 10.41.100.1:65052 10.10.1.40:53
10.41.100.1:65052 10.10.1.40:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:19:19 Permit 10.41.2.74:56338 104.103.55.181:443
1.9.140.18:52278 104.103.55.181:443 48 sec 64736 26659
HTTPS Close - TCP FIN
2018-12-10 10:19:19 Permit 10.41.100.1:49333 10.10.1.40:53
10.41.100.1:49333 10.10.1.40:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:19:19 Permit 10.41.100.2:10117 10.100.10.189:512
10.41.100.2:10117 10.100.10.189:512 60 sec 78 0
ICMP Close - AGE OUT
2018-12-10 10:19:19 Permit 10.41.200.54:55229 172.217.166.142:443
1.9.140.18:5523 172.217.166.142:443 8 sec 3767 1912
HTTPS Close - TCP FIN
2018-12-10 10:19:19 Permit 10.41.2.74:56418 104.103.55.181:443
1.9.140.18:5484 104.103.55.181:443 4 sec 29711 4763
HTTPS Close - TCP FIN
2018-12-10 10:19:19 Permit 10.41.2.74:56419 104.103.55.181:443
1.9.140.18:1092 104.103.55.181:443 4 sec 15598 2793
HTTPS Close - TCP FIN
2018-12-10 10:19:19 Permit 10.41.0.131:39489 8.8.8.8:53
1.9.140.18:10577 8.8.8.8:53 3 sec 81 149
DNS Close - RESP
2018-12-10 10:19:19 Permit 10.41.1.55:52478 23.94.187.84:443
1.9.140.18:58629 23.94.187.84:443 4 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:19:19 Permit 10.41.2.74:56354 104.103.55.181:443
1.9.140.18:33083 104.103.55.181:443 34 sec 56279 9408
HTTPS Close - TCP FIN
2018-12-10 10:19:19 Permit 10.41.0.131:56054 10.41.100.1:135
10.41.0.131:56054 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:19 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 8 sec 641 81
DNS Close - RESP
2018-12-10 10:19:19 Permit 10.40.200.106:137 10.41.100.11:137
10.40.200.106:137 10.41.100.11:137 67 sec 192 0
NETBIOS (NS) Close - AGE OUT
2018-12-10 10:19:19 Permit 10.41.200.55:51336 10.41.100.1:88
10.41.200.55:51336 10.41.100.1:88 3 sec 1645 1640
TCP PORT 88 Close - TCP RST
2018-12-10 10:19:19 Permit 10.41.0.131:51345 10.41.100.1:49154
10.41.0.131:51345 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:19 Permit 10.41.0.131:56053 10.41.100.1:135
10.41.0.131:56053 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:19 Permit 10.41.200.53:50902 10.41.100.11:2967
10.41.200.53:50902 10.41.100.11:2967 21 sec 136 0
TCP PORT 2967 Close - AGE OUT
2018-12-10 10:19:19 Permit 10.41.5.80:51086 10.41.100.1:53
10.41.5.80:51086 10.41.100.1:53 16 sec 92 92
DNS Close - RESP
2018-12-10 10:19:19 Permit 10.41.5.80:64000 10.41.100.1:53
10.41.5.80:64000 10.41.100.1:53 9 sec 92 92
DNS Close - RESP
2018-12-10 10:19:19 Permit 10.41.200.72:61143 10.41.100.1:53
10.41.200.72:61143 10.41.100.1:53 15 sec 91 91
DNS Close - RESP
2018-12-10 10:19:18 Permit 10.41.1.58:64140 172.217.166.131:443
1.9.140.18:47276 172.217.166.131:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:18 Permit 10.41.2.74:56432 104.103.55.181:443
1.9.140.18:33974 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:18 Permit 10.41.100.1:50179 10.10.1.40:53
10.41.100.1:50179 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:18 Permit 10.41.1.58:55729 10.41.100.1:53
10.41.1.58:55729 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:18 Permit 10.41.2.74:56431 104.103.55.181:443
1.9.140.18:2149 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:18 Permit 10.41.1.51:53339 10.41.100.7:60313
10.41.1.51:53339 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:19:18 Permit 10.41.2.74:56430 104.103.55.181:443
1.9.140.18:14312 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:18 Permit 10.41.5.70:123 10.41.100.1:123
10.41.5.70:123 10.41.100.1:123 0 sec 0 0
NETWORK TIME Creation
2018-12-10 10:19:18 Permit 10.41.200.62:65001 172.217.166.142:443
1.9.140.18:2373 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:18 Permit 10.41.200.62:65000 172.217.166.142:443
1.9.140.18:14406 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:18 Permit 10.41.2.74:56429 104.103.55.181:443
1.9.140.18:35669 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:18 Permit 10.41.0.131:51354 10.41.100.1:49154
10.41.0.131:51354 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:18 Permit 10.41.0.131:56063 10.41.100.1:135
10.41.0.131:56063 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:18 Permit 10.41.0.131:56062 10.41.100.1:135
10.41.0.131:56062 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:18 Permit 10.41.200.62:50516 10.41.100.1:53
10.41.200.62:50516 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:18 Permit 10.41.100.1:65298 10.10.1.4:53
10.41.100.1:65298 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:18 Permit 10.41.100.1:65017 10.10.1.4:53
10.41.100.1:65017 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:18 Permit 10.41.2.74:56428 104.103.55.181:443
1.9.140.18:30158 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:17 Deny 10.41.5.81:63182 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 32 HTTPS Traffic
Denied
2018-12-10 10:19:17 Permit 10.41.2.74:56427 104.103.55.181:443
1.9.140.18:39338 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:17 Permit 10.41.100.1:65045 10.10.1.40:53
10.41.100.1:65045 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:17 Permit 10.41.1.65:51879 10.41.100.1:53
10.41.1.65:51879 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:17 Permit 10.41.1.57:62158 10.41.100.7:60313
10.41.1.57:62158 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:19:17 Permit 10.41.2.74:56426 104.103.55.181:443
1.9.140.18:41319 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:17 Permit 10.41.2.74:56425 104.103.55.181:443
1.9.140.18:31323 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:17 Permit 10.41.100.1:49566 10.10.1.24:53
10.41.100.1:49566 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:17 Permit 10.41.100.1:49385 10.10.1.4:53
10.41.100.1:49385 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:17 Permit 10.41.0.131:51350 10.41.100.1:49154
10.41.0.131:51350 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:17 Permit 10.41.0.131:56059 10.41.100.1:135
10.41.0.131:56059 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:17 Permit 10.41.0.131:56058 10.41.100.1:135
10.41.0.131:56058 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:17 Permit 10.41.2.74:56424 104.103.55.181:443
1.9.140.18:6555 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:17 Permit 10.41.100.1:49330 10.10.1.40:53
10.41.100.1:49330 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:17 Permit 10.41.200.51:52689 172.217.166.131:443
1.9.140.18:63674 172.217.166.131:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:17 Permit 10.41.100.1:49905 10.10.1.24:53
10.41.100.1:49905 10.10.1.24:53 114 sec 170 0
DNS Close - AGE OUT
2018-12-10 10:19:17 Permit 10.41.100.1:50905 10.10.1.24:53
10.41.100.1:50905 10.10.1.24:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:19:17 Permit 10.41.100.1:49721 10.10.1.40:53
10.41.100.1:49721 10.10.1.40:53 60 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:19:17 Permit 10.41.200.63:53366 1.9.57.142:80
1.9.140.18:5110 1.9.57.142:80 3 sec 1068 17809
HTTP Close - TCP RST
2018-12-10 10:19:17 Permit 10.41.100.1:49306 10.10.1.4:53
10.41.100.1:49306 10.10.1.4:53 94 sec 163 0
DNS Close - AGE OUT
2018-12-10 10:19:17 Permit 10.41.200.65:57642 216.58.196.42:443
1.9.140.18:19522 216.58.196.42:443 244 sec 3742 38320
HTTPS Close - TCP FIN
2018-12-10 10:19:17 Permit 10.41.100.1:65323 10.10.1.4:53
10.41.100.1:65323 10.10.1.4:53 60 sec 77 0
DNS Close - AGE OUT
2018-12-10 10:19:17 Permit 10.41.2.74:56413 104.103.55.181:443
1.9.140.18:33836 104.103.55.181:443 4 sec 22218 14687
HTTPS Close - TCP FIN
2018-12-10 10:19:17 Permit 10.41.200.54:55228 172.217.166.142:443
1.9.140.18:19198 172.217.166.142:443 7 sec 2471 1134
HTTPS Close - TCP FIN
2018-12-10 10:19:17 Permit 10.41.100.2:60120 69.171.239.11:53
1.9.140.18:29117 69.171.239.11:53 2 sec 91 234
DNS Close - RESP
2018-12-10 10:19:17 Permit 10.41.100.1:65438 10.10.1.40:53
10.41.100.1:65438 10.10.1.40:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:19:17 Permit 10.41.5.80:61084 104.103.70.8:80
1.9.140.18:41533 104.103.70.8:80 1 sec 804 15362
HTTP Close - TCP RST
2018-12-10 10:19:17 Permit 10.41.100.1:65507 10.10.1.4:53
10.41.100.1:65507 10.10.1.4:53 60 sec 87 0
DNS Close - AGE OUT
2018-12-10 10:19:17 Permit 10.41.200.65:57647 74.125.24.155:443
1.9.140.18:31354 74.125.24.155:443 243 sec 3136 5467
HTTPS Close - TCP FIN
2018-12-10 10:19:17 Permit 10.41.100.1:65214 10.10.1.24:53
10.41.100.1:65214 10.10.1.24:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:19:17 Permit 10.41.100.2:9861 10.100.10.189:512
10.41.100.2:9861 10.100.10.189:512 60 sec 78 0
ICMP Close - AGE OUT
2018-12-10 10:19:17 Permit 10.41.1.58:64138 23.51.41.13:80
1.9.140.18:10539 23.51.41.13:80 3 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:19:17 Permit 10.41.200.65:57603 172.217.26.132:443
1.9.140.18:37301 172.217.26.132:443 392 sec 55002 756754
HTTPS Close - TCP FIN
2018-12-10 10:19:17 Permit 10.41.2.74:56400 52.218.36.3:443
1.9.140.18:45457 52.218.36.3:443 10 sec 2628 8278
HTTPS Close - TCP RST
2018-12-10 10:19:17 Permit 10.41.0.131:56044 10.41.100.1:135
10.41.0.131:56044 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:17 Permit 10.41.1.65:64191 10.41.100.1:445
10.41.1.65:64191 10.41.100.1:445 14 sec 4767 2036
TCP PORT 445 Close - TCP RST
2018-12-10 10:19:17 Permit 10.41.0.131:51336 10.41.100.1:49154
10.41.0.131:51336 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:17 Permit 10.41.0.131:56050 10.41.100.1:135
10.41.0.131:56050 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:17 Permit 10.41.0.131:56051 10.41.100.1:135
10.41.0.131:56051 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:17 Permit 10.41.3.71:59749 10.41.100.1:88
10.41.3.71:59749 10.41.100.1:88 3 sec 1632 1642
TCP PORT 88 Close - TCP RST
2018-12-10 10:19:17 Permit 10.41.1.65:54554 10.41.100.1:53
10.41.1.65:54554 10.41.100.1:53 16 sec 93 93
DNS Close - RESP
2018-12-10 10:19:17 Permit 10.41.0.131:56045 10.41.100.1:135
10.41.0.131:56045 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:17 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 476 91
DNS Close - RESP
2018-12-10 10:19:17 Permit 10.41.1.54:52551 10.41.100.11:139
10.41.1.54:52551 10.41.100.11:139 22 sec 136 0
NETBIOS (SSN) Close - AGE OUT
2018-12-10 10:19:17 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 6 sec 76 76
DNS Close - RESP
2018-12-10 10:19:17 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 4 sec 87 162
DNS Close - RESP
2018-12-10 10:19:17 Permit 10.41.0.131:51342 10.41.100.1:49154
10.41.0.131:51342 10.41.100.1:49154 3 sec 3808 4196
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:17 Permit 10.41.1.51:53338 10.41.100.7:60313
10.41.1.51:53338 10.41.100.7:60313 4 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:19:16 Permit 10.41.200.55:51336 10.41.100.1:88
10.41.200.55:51336 10.41.100.1:88 0 sec 0 0
TCP PORT 88 Creation
2018-12-10 10:19:16 Permit 10.41.2.74:56423 104.103.55.181:443
1.9.140.18:35256 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:16 Permit 10.41.2.74:56422 104.103.55.181:443
1.9.140.18:18196 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:16 Permit 10.41.0.131:56580 10.41.100.1:53
10.41.0.131:56580 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:16 Permit 10.41.2.74:56421 104.103.55.181:443
1.9.140.18:31089 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:16 Permit 10.41.100.1:65119 10.10.1.40:53
10.41.100.1:65119 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:16 Permit 10.41.203.2:49979 10.41.100.1:53
10.41.203.2:49979 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:16 Permit 10.41.100.1:50833 10.10.1.4:53
10.41.100.1:50833 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:16 Permit 10.41.0.131:39489 8.8.8.8:53
1.9.140.18:10577 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:16 Permit 10.41.200.55:51335 10.41.100.1:445
10.41.200.55:51335 10.41.100.1:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:19:16 Permit 10.41.5.80:61084 104.103.70.8:80
1.9.140.18:41533 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:15 Permit 10.41.0.131:51345 10.41.100.1:49154
10.41.0.131:51345 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:15 Permit 10.41.0.131:56054 10.41.100.1:135
10.41.0.131:56054 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:15 Permit 10.41.0.131:56053 10.41.100.1:135
10.41.0.131:56053 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:15 Permit 10.41.2.74:56420 172.217.166.129:443
1.9.140.18:28872 172.217.166.129:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:15 Permit 10.41.100.1:50766 10.10.1.40:53
10.41.100.1:50766 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:15 Permit 10.41.2.74:55545 10.41.100.1:53
10.41.2.74:55545 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:15 Permit 10.41.2.74:56419 104.103.55.181:443
1.9.140.18:1092 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:15 Permit 10.41.1.55:52478 23.94.187.84:443
1.9.140.18:58629 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:15 Permit 10.41.100.1:64917 10.10.1.24:53
10.41.100.1:64917 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:15 Permit 10.41.100.1:49666 10.10.1.4:53
10.41.100.1:49666 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:15 Permit 10.41.2.74:56418 104.103.55.181:443
1.9.140.18:5484 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:15 Permit 10.41.1.82:3347 172.217.31.42:443
1.9.140.18:31457 172.217.31.42:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:15 Permit 10.41.2.74:56417 104.103.55.181:443
1.9.140.18:2611 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:15 Permit 10.41.100.2:60120 69.171.239.11:53
1.9.140.18:29117 69.171.239.11:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:15 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:15 Permit 10.41.100.1:50816 10.10.1.4:53
10.41.100.1:50816 10.10.1.4:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:19:15 Permit 10.41.100.1:65444 10.10.1.24:53
10.41.100.1:65444 10.10.1.24:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:19:15 Permit 10.41.1.82:3343 104.237.191.1:443
1.9.140.18:5782 104.237.191.1:443 2 sec 1105 4492
HTTPS Close - TCP RST
2018-12-10 10:19:15 Permit 10.41.1.82:3345 104.237.191.1:443
1.9.140.18:22435 104.237.191.1:443 1 sec 198 216
HTTPS Close - TCP RST
2018-12-10 10:19:15 Permit 10.41.200.65:57613 172.217.166.136:443
1.9.140.18:34675 172.217.166.136:443 381 sec 7436 80218
HTTPS Close - TCP FIN
2018-12-10 10:19:15 Permit 10.41.200.63:53361 172.217.31.110:80
1.9.140.18:18783 172.217.31.110:80 68 sec 918 1282
HTTP Close - TCP FIN
2018-12-10 10:19:15 Permit 10.41.200.65:57641 172.217.166.130:443
1.9.140.18:24509 172.217.166.130:443 242 sec 3513 15466
HTTPS Close - TCP FIN
2018-12-10 10:19:15 Permit 10.41.1.82:3346 104.237.191.1:443
1.9.140.18:3019 104.237.191.1:443 1 sec 198 216
HTTPS Close - TCP RST
2018-12-10 10:19:15 Permit 10.41.100.1:50495 10.10.1.40:53
10.41.100.1:50495 10.10.1.40:53 60 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:19:15 Permit 10.41.1.62:63459 172.217.166.133:443
1.9.140.18:2090 172.217.166.133:443 1779 sec 1226694 3169658
HTTPS Close - TCP FIN
2018-12-10 10:19:15 Permit 10.41.200.63:53363 172.217.31.110:80
1.9.140.18:55268 172.217.31.110:80 3 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:19:15 Permit 10.41.0.131:48936 8.8.8.8:53
1.9.140.18:57446 8.8.8.8:53 4 sec 81 149
DNS Close - RESP
2018-12-10 10:19:15 Permit 10.41.5.80:61082 104.103.70.8:80
1.9.140.18:7222 104.103.70.8:80 2 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:19:15 Permit 10.41.2.74:56410 157.240.10.35:443
1.9.140.18:9332 157.240.10.35:443 4 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:19:15 Permit 10.41.100.1:50745 10.10.1.4:53
10.41.100.1:50745 10.10.1.4:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:19:15 Permit 10.41.1.58:64135 23.51.41.13:80
1.9.140.18:11580 23.51.41.13:80 3 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:19:15 Permit 10.41.0.131:51328 10.41.100.1:49154
10.41.0.131:51328 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:15 Permit 10.41.2.74:58657 10.41.100.1:53
10.41.2.74:58657 10.41.100.1:53 15 sec 82 82
DNS Close - RESP
2018-12-10 10:19:15 Permit 10.41.1.54:52550 10.41.100.11:445
10.41.1.54:52550 10.41.100.11:445 21 sec 136 0
TCP PORT 445 Close - AGE OUT
2018-12-10 10:19:15 Permit 10.41.0.131:48180 10.41.100.1:53
10.41.0.131:48180 10.41.100.1:53 15 sec 81 81
DNS Close - RESP
2018-12-10 10:19:15 Permit 10.41.1.57:62157 10.41.100.7:60313
10.41.1.57:62157 10.41.100.7:60313 3 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:19:15 Permit 10.41.0.131:54069 10.41.100.1:53
10.41.0.131:54069 10.41.100.1:53 9 sec 81 81
DNS Close - RESP
2018-12-10 10:19:15 Permit 10.41.0.131:56037 10.41.100.1:135
10.41.0.131:56037 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:15 Permit 10.41.0.131:56036 10.41.100.1:135
10.41.0.131:56036 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:15 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 14 sec 163 162
DNS Close - RESP
2018-12-10 10:19:15 Permit 10.41.1.58:64129 10.41.100.11:139
10.41.1.58:64129 10.41.100.11:139 22 sec 136 0
NETBIOS (SSN) Close - AGE OUT
2018-12-10 10:19:15 Permit 10.41.0.131:33840 10.41.100.1:49154
10.41.0.131:33840 10.41.100.1:49154 5 sec 3808 4196
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:14 Deny 10.41.5.81:63182 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 32 HTTPS Traffic
Denied
2018-12-10 10:19:14 Permit 10.41.2.74:56416 104.103.55.181:443
1.9.140.18:46192 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:14 Permit 10.41.0.131:51342 10.41.100.1:49154
10.41.0.131:51342 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:14 Permit 10.41.0.131:56051 10.41.100.1:135
10.41.0.131:56051 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:14 Permit 10.41.0.131:56050 10.41.100.1:135
10.41.0.131:56050 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:14 Permit 10.41.1.58:64138 23.51.41.13:80
1.9.140.18:10539 23.51.41.13:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:14 Permit 10.41.200.63:53366 1.9.57.142:80
1.9.140.18:5110 1.9.57.142:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:14 Permit 10.41.3.71:59749 10.41.100.1:88
10.41.3.71:59749 10.41.100.1:88 0 sec 0 0
TCP PORT 88 Creation
2018-12-10 10:19:14 Permit 10.41.3.71:59748 10.41.100.1:445
10.41.3.71:59748 10.41.100.1:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:19:14 Permit 10.41.100.1:65298 10.10.1.24:53
10.41.100.1:65298 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:14 Permit 10.41.100.1:65017 10.10.1.24:53
10.41.100.1:65017 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:14 Permit 10.41.100.1:50727 10.10.1.4:53
10.41.100.1:50727 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:14 Permit 10.41.100.1:49819 10.10.1.4:53
10.41.100.1:49819 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:14 Permit 10.41.100.1:49633 10.10.1.4:53
10.41.100.1:49633 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:14 Permit 10.41.100.1:50277 10.10.1.4:53
10.41.100.1:50277 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:14 Permit 10.41.200.63:53365 172.217.31.110:80
1.9.140.18:45518 172.217.31.110:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:14 Permit 10.41.1.82:3346 104.237.191.1:443
1.9.140.18:3019 104.237.191.1:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:14 Permit 10.41.1.82:3345 104.237.191.1:443
1.9.140.18:22435 104.237.191.1:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:13 Permit 10.41.5.80:61082 104.103.70.8:80
1.9.140.18:7222 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:13 Permit 10.41.1.51:53338 10.41.100.7:60313
10.41.1.51:53338 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:19:13 Permit 10.41.1.82:3344 104.237.191.1:443
1.9.140.18:46071 104.237.191.1:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:13 Permit 10.41.1.82:3343 104.237.191.1:443
1.9.140.18:5782 104.237.191.1:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:13 Permit 10.41.2.74:56415 172.217.166.138:443
1.9.140.18:50896 172.217.166.138:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:13 Permit 10.41.2.74:50611 10.41.100.1:53
10.41.2.74:50611 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:13 Permit 10.41.2.74:56414 104.103.55.181:443
1.9.140.18:53568 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:13 Permit 10.41.2.74:56413 104.103.55.181:443
1.9.140.18:33836 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:13 Permit 10.41.2.74:56412 104.103.55.181:443
1.9.140.18:57090 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:13 Permit 10.41.0.131:51336 10.41.100.1:49154
10.41.0.131:51336 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:13 Permit 10.41.0.131:56045 10.41.100.1:135
10.41.0.131:56045 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:13 Permit 10.41.0.131:56044 10.41.100.1:135
10.41.0.131:56044 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:13 Permit 10.41.100.1:49566 10.10.1.40:53
10.41.100.1:49566 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:13 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:13 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:13 Permit 10.41.100.1:49385 10.10.1.24:53
10.41.100.1:49385 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:13 Permit 10.41.100.1:49353 10.10.1.4:53
10.41.100.1:49353 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:13 Permit 10.41.100.1:49931 10.10.1.4:53
10.41.100.1:49931 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:13 Permit 10.41.100.1:50751 10.10.1.4:53
10.41.100.1:50751 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:13 Permit 10.41.1.112:55261 104.103.42.96:80
1.9.140.18:1858 104.103.42.96:80 111 sec 804 1937
HTTP Close - TCP FIN
2018-12-10 10:19:13 Permit 10.41.2.74:56409 157.240.10.35:443
1.9.140.18:60087 157.240.10.35:443 2 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:19:13 Permit 10.41.100.1:65507 10.10.1.24:53
10.41.100.1:65507 10.10.1.24:53 60 sec 87 0
DNS Close - AGE OUT
2018-12-10 10:19:13 Permit 10.41.1.112:55263 104.103.70.16:80
1.9.140.18:25580 104.103.70.16:80 111 sec 818 762
HTTP Close - TCP FIN
2018-12-10 10:19:13 Permit 10.41.2.74:56411 157.240.10.35:443
1.9.140.18:44593 157.240.10.35:443 2 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:19:13 Permit 10.41.100.1:49933 10.10.1.4:53
10.41.100.1:49933 10.10.1.4:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:19:13 Permit 10.41.1.112:55260 104.103.42.96:80
1.9.140.18:47157 104.103.42.96:80 111 sec 1278 3721
HTTP Close - TCP FIN
2018-12-10 10:19:13 Permit 10.41.100.1:49306 10.10.1.24:53
10.41.100.1:49306 10.10.1.24:53 94 sec 163 0
DNS Close - AGE OUT
2018-12-10 10:19:13 Permit 10.41.100.1:49905 10.10.1.40:53
10.41.100.1:49905 10.10.1.40:53 114 sec 170 0
DNS Close - AGE OUT
2018-12-10 10:19:13 Permit 10.41.200.65:57672 1.9.57.142:80
1.9.140.18:47009 1.9.57.142:80 33 sec 2364 18408
HTTP Close - TCP FIN
2018-12-10 10:19:13 Permit 10.41.2.74:56408 157.240.10.35:443
1.9.140.18:41320 157.240.10.35:443 2 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:19:13 Permit 10.41.100.1:50905 10.10.1.40:53
10.41.100.1:50905 10.10.1.40:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:19:13 Permit 10.41.1.55:52475 23.94.187.84:443
1.9.140.18:62893 23.94.187.84:443 4 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:19:13 Permit 10.41.200.65:57635 172.217.26.142:443
1.9.140.18:53426 172.217.26.142:443 245 sec 11847 161459
HTTPS Close - TCP FIN
2018-12-10 10:19:13 Permit 10.41.100.1:65214 10.10.1.40:53
10.41.100.1:65214 10.10.1.40:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:19:13 Permit 10.41.1.112:55262 104.103.42.96:80
1.9.140.18:57676 104.103.42.96:80 111 sec 1282 4015
HTTP Close - TCP FIN
2018-12-10 10:19:13 Permit 10.41.100.2:9605 10.100.10.189:512
10.41.100.2:9605 10.100.10.189:512 59 sec 78 0
ICMP Close - AGE OUT
2018-12-10 10:19:13 Permit 10.41.100.1:65323 10.10.1.24:53
10.41.100.1:65323 10.10.1.24:53 60 sec 77 0
DNS Close - AGE OUT
2018-12-10 10:19:13 Permit 10.41.0.131:54278 10.41.100.1:135
10.41.0.131:54278 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:13 Permit 10.41.1.65:54170 10.41.100.1:53
10.41.1.65:54170 10.41.100.1:53 16 sec 79 79
DNS Close - RESP
2018-12-10 10:19:13 Permit 10.41.1.59:57634 10.41.100.1:53
10.41.1.59:57634 10.41.100.1:53 16 sec 88 88
DNS Close - RESP
2018-12-10 10:19:13 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 14 sec 76 76
DNS Close - RESP
2018-12-10 10:19:13 Permit 10.41.1.62:63688 10.41.100.1:49155
10.41.1.62:63688 10.41.100.1:49155 35 sec 3432 1634
TCP PORT 49155 Close - TCP FIN
2018-12-10 10:19:13 Permit 10.41.0.131:54274 10.41.100.1:135
10.41.0.131:54274 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:13 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 14 sec 76 76
DNS Close - RESP
2018-12-10 10:19:13 Permit 10.41.0.131:54275 10.41.100.1:135
10.41.0.131:54275 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:13 Permit 10.41.0.131:54277 10.41.100.1:135
10.41.0.131:54277 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:13 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 14 sec 76 76
DNS Close - RESP
2018-12-10 10:19:13 Permit 10.41.1.58:64128 10.41.100.11:445
10.41.1.58:64128 10.41.100.11:445 21 sec 136 0
TCP PORT 445 Close - AGE OUT
2018-12-10 10:19:13 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 14 sec 76 76
DNS Close - RESP
2018-12-10 10:19:13 Permit 10.41.0.131:33837 10.41.100.1:49154
10.41.0.131:33837 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:12 Permit 10.41.1.57:62157 10.41.100.7:60313
10.41.1.57:62157 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:19:12 Permit 10.62.1.52:123 10.41.100.1:123
10.62.1.52:123 10.41.100.1:123 0 sec 0 0
NETWORK TIME Creation
2018-12-10 10:19:12 Permit 10.41.1.58:64135 23.51.41.13:80
1.9.140.18:11580 23.51.41.13:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:12 Permit 10.41.100.1:50833 10.10.1.24:53
10.41.100.1:50833 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:12 Permit 10.41.100.1:49447 10.10.1.4:53
10.41.100.1:49447 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:12 Permit 10.41.0.131:51328 10.41.100.1:49154
10.41.0.131:51328 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:12 Permit 10.41.0.131:56037 10.41.100.1:135
10.41.0.131:56037 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:12 Permit 10.41.0.131:56036 10.41.100.1:135
10.41.0.131:56036 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:12 Permit 10.41.200.63:53363 172.217.31.110:80
1.9.140.18:55268 172.217.31.110:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:11 Permit 10.41.100.1:64917 10.10.1.40:53
10.41.100.1:64917 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:11 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:11 Permit 10.41.2.74:56411 157.240.10.35:443
1.9.140.18:44593 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:11 Permit 10.41.2.74:56410 157.240.10.35:443
1.9.140.18:9332 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:11 Permit 10.41.2.74:56409 157.240.10.35:443
1.9.140.18:60087 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:11 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:11 Permit 10.41.100.1:49666 10.10.1.24:53
10.41.100.1:49666 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:11 Permit 10.41.100.1:49161 10.10.1.4:53
10.41.100.1:49161 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:11 Permit 10.41.2.74:56408 157.240.10.35:443
1.9.140.18:41320 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:11 Permit 10.41.100.1:65298 10.10.1.40:53
10.41.100.1:65298 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:11 Permit 10.41.0.131:59871 10.41.100.1:53
10.41.0.131:59871 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:11 Permit 10.41.200.54:55229 172.217.166.142:443
1.9.140.18:5523 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:11 Permit 10.41.0.131:48936 8.8.8.8:53
1.9.140.18:57446 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:11 Permit 10.41.100.1:49448 10.10.1.4:53
10.41.100.1:49448 10.10.1.4:53 59 sec 77 0
DNS Close - AGE OUT
2018-12-10 10:19:11 Permit 10.41.5.80:61081 104.103.70.8:80
1.9.140.18:9950 104.103.70.8:80 1 sec 804 21450
HTTP Close - TCP RST
2018-12-10 10:19:11 Permit 10.41.100.2:9349 10.100.10.189:512
10.41.100.2:9349 10.100.10.189:512 59 sec 78 0
ICMP Close - AGE OUT
2018-12-10 10:19:11 Permit 10.41.100.1:50745 10.10.1.24:53
10.41.100.1:50745 10.10.1.24:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:19:11 Permit 10.41.200.65:57634 172.217.166.142:443
1.9.140.18:27768 172.217.166.142:443 251 sec 6226 7919
HTTPS Close - TCP FIN
2018-12-10 10:19:11 Permit 10.41.100.1:50816 10.10.1.24:53
10.41.100.1:50816 10.10.1.24:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:19:11 Permit 10.41.100.1:50792 10.10.1.4:53
10.41.100.1:50792 10.10.1.4:53 59 sec 73 0
DNS Close - AGE OUT
2018-12-10 10:19:11 Permit 10.41.2.74:56402 157.240.10.35:443
1.9.140.18:13175 157.240.10.35:443 4 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:19:11 Permit 10.41.100.1:50559 10.10.1.4:53
10.41.100.1:50559 10.10.1.4:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:19:11 Permit 10.41.100.1:49251 10.10.1.4:53
10.41.100.1:49251 10.10.1.4:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:19:11 Permit 10.41.2.74:56401 157.240.10.35:443
1.9.140.18:47483 157.240.10.35:443 4 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:19:11 Permit 10.41.100.1:65444 10.10.1.40:53
10.41.100.1:65444 10.10.1.40:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:19:11 Permit 10.41.1.65:52431 10.41.100.1:53
10.41.1.65:52431 10.41.100.1:53 16 sec 79 79
DNS Close - RESP
2018-12-10 10:19:11 Permit 10.41.1.57:62156 10.41.100.7:60313
10.41.1.57:62156 10.41.100.7:60313 4 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:19:11 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 321 176
DNS Close - RESP
2018-12-10 10:19:11 Permit 10.41.0.131:47126 10.41.100.1:53
10.41.0.131:47126 10.41.100.1:53 16 sec 82 82
DNS Close - RESP
2018-12-10 10:19:11 Permit 10.41.0.131:33833 10.41.100.1:49154
10.41.0.131:33833 10.41.100.1:49154 3 sec 3808 4196
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:11 Permit 10.62.1.52:55883 10.41.100.1:49155
10.62.1.52:55883 10.41.100.1:49155 19 sec 948 690
TCP PORT 49155 Close - TCP FIN
2018-12-10 10:19:11 Permit 10.41.1.51:53331 10.41.100.7:60313
10.41.1.51:53331 10.41.100.7:60313 3 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:19:11 Permit 10.41.0.131:54271 10.41.100.1:135
10.41.0.131:54271 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:11 Permit 10.41.0.131:54270 10.41.100.1:135
10.41.0.131:54270 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:11 Permit 10.41.0.131:54267 10.41.100.1:135
10.41.0.131:54267 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:11 Permit 10.41.0.131:54268 10.41.100.1:135
10.41.0.131:54268 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:11 Permit 10.62.1.51:52883 10.41.100.1:389
10.62.1.51:52883 10.41.100.1:389 62 sec 251 212
UDP PORT 389 Close - AGE OUT
2018-12-10 10:19:11 Permit 10.41.0.131:33830 10.41.100.1:49154
10.41.0.131:33830 10.41.100.1:49154 4 sec 3808 4196
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:10 Permit 10.41.0.131:33840 10.41.100.1:49154
10.41.0.131:33840 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:10 Permit 10.41.0.131:54278 10.41.100.1:135
10.41.0.131:54278 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:10 Permit 10.41.0.131:54277 10.41.100.1:135
10.41.0.131:54277 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:10 Permit 10.41.5.80:64000 10.41.100.1:53
10.41.5.80:64000 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:10 Permit 10.41.5.80:61081 104.103.70.8:80
1.9.140.18:9950 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:10 Permit 10.41.200.54:55228 172.217.166.142:443
1.9.140.18:19198 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:10 Permit 10.41.5.72:63321 172.217.166.138:443
1.9.140.18:25245 172.217.166.138:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:10 Permit 10.41.100.1:65017 10.10.1.40:53
10.41.100.1:65017 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:10 Permit 10.41.5.72:53496 10.41.100.1:53
10.41.5.72:53496 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:10 Permit 10.41.100.1:50727 10.10.1.24:53
10.41.100.1:50727 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:10 Permit 10.41.100.1:49819 10.10.1.24:53
10.41.100.1:49819 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:10 Permit 10.41.100.1:49633 10.10.1.24:53
10.41.100.1:49633 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:10 Permit 10.41.100.1:50277 10.10.1.24:53
10.41.100.1:50277 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:09 Permit 10.41.100.1:49385 10.10.1.40:53
10.41.100.1:49385 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:09 Permit 10.41.203.3:58107 10.41.100.1:53
10.41.203.3:58107 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:09 Permit 10.41.0.131:33837 10.41.100.1:49154
10.41.0.131:33837 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:09 Permit 10.41.0.131:54275 10.41.100.1:135
10.41.0.131:54275 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:09 Permit 10.41.0.131:54274 10.41.100.1:135
10.41.0.131:54274 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:09 Permit 10.41.1.55:52475 23.94.187.84:443
1.9.140.18:62893 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:09 Permit 10.41.100.1:49353 10.10.1.24:53
10.41.100.1:49353 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:09 Permit 10.41.100.1:49931 10.10.1.24:53
10.41.100.1:49931 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:09 Permit 10.41.100.1:50751 10.10.1.24:53
10.41.100.1:50751 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:09 Permit 10.41.100.1:50380 10.10.1.4:53
10.41.100.1:50380 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:09 Permit 10.41.100.1:49704 10.10.1.4:53
10.41.100.1:49704 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:09 Permit 10.41.100.1:53 10.41.200.10:49154
10.41.100.1:53 10.41.200.10:49154 0 sec 0 0
UDP PORT 49154 Creation
2018-12-10 10:19:09 Permit 10.41.100.1:53 10.41.200.7:49154
10.41.100.1:53 10.41.200.7:49154 0 sec 0 0
UDP PORT 49154 Creation
2018-12-10 10:19:09 Permit 10.41.100.1:53 10.41.200.3:49154
10.41.100.1:53 10.41.200.3:49154 0 sec 0 0
UDP PORT 49154 Creation
2018-12-10 10:19:09 Permit 10.41.100.1:53 10.41.200.8:49154
10.41.100.1:53 10.41.200.8:49154 0 sec 0 0
UDP PORT 49154 Creation
2018-12-10 10:19:09 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:09 Permit 10.41.2.74:56404 157.240.10.35:443
1.9.140.18:2817 157.240.10.35:443 2 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:19:09 Permit 10.41.1.62:63479 216.58.196.42:443
1.9.140.18:1078 216.58.196.42:443 1602 sec 607244 335685
HTTPS Close - TCP FIN
2018-12-10 10:19:09 Permit 10.41.100.1:49306 10.10.1.40:53
10.41.100.1:49306 10.10.1.40:53 94 sec 163 0
DNS Close - AGE OUT
2018-12-10 10:19:09 Permit 10.41.2.74:56403 157.240.10.35:443
1.9.140.18:22759 157.240.10.35:443 2 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:19:09 Permit 10.41.100.1:65507 10.10.1.40:53
10.41.100.1:65507 10.10.1.40:53 60 sec 87 0
DNS Close - AGE OUT
2018-12-10 10:19:09 Permit 10.41.2.74:56390 117.121.28.4:443
1.9.140.18:18958 117.121.28.4:443 16 sec 262 142
HTTPS Close - TCP FIN
2018-12-10 10:19:09 Permit 10.41.100.1:49933 10.10.1.24:53
10.41.100.1:49933 10.10.1.24:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:19:09 Permit 10.41.100.1:50745 10.10.1.40:53
10.41.100.1:50745 10.10.1.40:53 60 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:19:09 Permit 10.41.5.80:61078 104.103.70.8:80
1.9.140.18:17249 104.103.70.8:80 6 sec 1004 624
HTTP Close - TCP RST
2018-12-10 10:19:09 Permit 10.41.2.74:56397 157.240.10.35:443
1.9.140.18:47273 157.240.10.35:443 3 sec 901 74
HTTPS Close - AGE OUT
2018-12-10 10:19:09 Permit 10.41.100.1:65323 10.10.1.40:53
10.41.100.1:65323 10.10.1.40:53 60 sec 77 0
DNS Close - AGE OUT
2018-12-10 10:19:09 Permit 10.41.0.131:33640 8.8.8.8:53
1.9.140.18:36365 8.8.8.8:53 4 sec 81 149
DNS Close - RESP
2018-12-10 10:19:09 Permit 10.41.2.74:56357 50.112.254.249:443
1.9.140.18:26368 50.112.254.249:443 24 sec 3447 7056
HTTPS Close - TCP RST
2018-12-10 10:19:09 Permit 10.41.2.74:56386 139.162.56.194:443
1.9.140.18:32469 139.162.56.194:443 17 sec 2521 6676
HTTPS Close - TCP RST
2018-12-10 10:19:09 Permit 10.41.0.131:33827 10.41.100.1:49154
10.41.0.131:33827 10.41.100.1:49154 4 sec 3808 4196
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:09 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 2 sec 321 80
DNS Close - RESP
2018-12-10 10:19:09 Permit 10.41.2.74:61719 10.41.100.1:53
10.41.2.74:61719 10.41.100.1:53 16 sec 82 82
DNS Close - RESP
2018-12-10 10:19:09 Permit 10.41.5.81:55010 10.41.100.1:53
10.41.5.81:55010 10.41.100.1:53 16 sec 91 91
DNS Close - RESP
2018-12-10 10:19:09 Permit 10.41.0.131:54265 10.41.100.1:135
10.41.0.131:54265 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:09 Permit 10.41.2.74:63071 10.41.100.1:53
10.41.2.74:63071 10.41.100.1:53 15 sec 84 84
DNS Close - RESP
2018-12-10 10:19:09 Permit 10.41.0.131:54264 10.41.100.1:135
10.41.0.131:54264 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:08 Permit 10.41.1.51:53331 10.41.100.7:60313
10.41.1.51:53331 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:19:08 Permit 10.41.200.62:64999 111.221.29.254:443
1.9.140.18:50498 111.221.29.254:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:08 Permit 10.41.100.1:50833 10.10.1.40:53
10.41.100.1:50833 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:08 Permit 10.41.200.62:60135 10.41.100.1:53
10.41.200.62:60135 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:08 Permit 10.41.0.131:33833 10.41.100.1:49154
10.41.0.131:33833 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:08 Permit 10.41.0.131:54271 10.41.100.1:135
10.41.0.131:54271 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:08 Permit 10.41.0.131:54270 10.41.100.1:135
10.41.0.131:54270 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:08 Permit 10.41.5.80:61080 172.217.26.131:443
1.9.140.18:13874 172.217.26.131:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:08 Permit 10.41.100.1:49447 10.10.1.24:53
10.41.100.1:49447 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:08 Permit 10.41.100.1:49159 10.10.1.4:53
10.41.100.1:49159 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:08 Permit 10.41.100.1:49666 10.10.1.40:53
10.41.100.1:49666 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:08 Permit 10.41.5.80:60926 10.41.100.1:53
10.41.5.80:60926 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:07 Permit 10.41.2.74:56407 50.112.254.249:443
1.9.140.18:61052 50.112.254.249:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:07 Permit 10.41.1.57:62156 10.41.100.7:60313
10.41.1.57:62156 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:19:07 Permit 10.41.2.74:56406 52.218.36.3:443
1.9.140.18:5411 52.218.36.3:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:07 Permit 10.41.2.74:56405 50.112.254.249:443
1.9.140.18:36354 50.112.254.249:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:07 Permit 10.41.2.74:56404 157.240.10.35:443
1.9.140.18:2817 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:07 Permit 10.41.2.74:56403 157.240.10.35:443
1.9.140.18:22759 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:07 Permit 10.41.2.74:56402 157.240.10.35:443
1.9.140.18:13175 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:07 Permit 10.41.2.74:56401 157.240.10.35:443
1.9.140.18:47483 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:07 Permit 10.41.2.74:56400 52.218.36.3:443
1.9.140.18:45457 52.218.36.3:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:07 Permit 10.41.100.1:49161 10.10.1.24:53
10.41.100.1:49161 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:07 Permit 10.41.100.1:64989 10.10.1.4:53
10.41.100.1:64989 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:07 Permit 10.41.0.131:33830 10.41.100.1:49154
10.41.0.131:33830 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:07 Permit 10.41.0.131:54268 10.41.100.1:135
10.41.0.131:54268 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:07 Permit 10.41.0.131:54267 10.41.100.1:135
10.41.0.131:54267 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:07 Permit 10.41.100.1:50727 10.10.1.40:53
10.41.100.1:50727 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:07 Permit 10.41.100.1:49819 10.10.1.40:53
10.41.100.1:49819 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:07 Permit 10.41.100.1:49633 10.10.1.40:53
10.41.100.1:49633 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:07 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:07 Permit 10.41.2.74:56389 34.247.224.239:443
1.9.140.18:49931 34.247.224.239:443 14 sec 262 136
HTTPS Close - TCP FIN
2018-12-10 10:19:07 Permit 10.41.2.74:56392 106.75.125.26:443
1.9.140.18:44483 106.75.125.26:443 14 sec 262 142
HTTPS Close - TCP FIN
2018-12-10 10:19:07 Permit 10.41.100.1:50816 10.10.1.40:53
10.41.100.1:50816 10.10.1.40:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:19:07 Permit 10.41.2.74:56391 34.254.116.80:443
1.9.140.18:13514 34.254.116.80:443 14 sec 262 136
HTTPS Close - TCP FIN
2018-12-10 10:19:07 Permit 10.41.200.54:55227 172.217.166.131:443
1.9.140.18:24171 172.217.166.131:443 11 sec 2315 1363
HTTPS Close - TCP FIN
2018-12-10 10:19:07 Permit 10.41.100.2:53997 104.103.70.183:53
1.9.140.18:60849 104.103.70.183:53 2 sec 86 106
DNS Close - RESP
2018-12-10 10:19:07 Permit 10.41.2.74:56398 157.240.10.35:443
1.9.140.18:11096 157.240.10.35:443 1 sec 595 74
HTTPS Close - AGE OUT
2018-12-10 10:19:07 Permit 10.41.5.80:61077 104.103.70.10:80
1.9.140.18:20932 104.103.70.10:80 4 sec 804 38192
HTTP Close - TCP RST
2018-12-10 10:19:07 Permit 10.41.100.1:49448 10.10.1.24:53
10.41.100.1:49448 10.10.1.24:53 59 sec 77 0
DNS Close - AGE OUT
2018-12-10 10:19:07 Permit 10.41.100.1:50792 10.10.1.24:53
10.41.100.1:50792 10.10.1.24:53 59 sec 73 0
DNS Close - AGE OUT
2018-12-10 10:19:07 Permit 10.41.2.74:56396 157.240.10.35:443
1.9.140.18:15434 157.240.10.35:443 1 sec 901 74
HTTPS Close - AGE OUT
2018-12-10 10:19:07 Permit 10.41.100.1:49933 10.10.1.40:53
10.41.100.1:49933 10.10.1.40:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:19:07 Permit 10.41.1.55:52473 23.94.187.84:443
1.9.140.18:32853 23.94.187.84:443 4 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:19:07 Permit 10.41.100.1:50559 10.10.1.24:53
10.41.100.1:50559 10.10.1.24:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:19:07 Permit 10.41.2.74:56399 157.240.10.35:443
1.9.140.18:62712 157.240.10.35:443 1 sec 595 74
HTTPS Close - AGE OUT
2018-12-10 10:19:07 Permit 10.41.100.1:49251 10.10.1.24:53
10.41.100.1:49251 10.10.1.24:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:19:07 Permit 10.41.100.1:49464 10.10.1.4:53
10.41.100.1:49464 10.10.1.4:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:19:07 Permit 10.41.200.65:57607 172.217.166.142:443
1.9.140.18:20252 172.217.166.142:443 381 sec 5779 11888
HTTPS Close - TCP FIN
2018-12-10 10:19:07 Permit 10.41.2.74:62034 10.41.100.1:53
10.41.2.74:62034 10.41.100.1:53 16 sec 79 79
DNS Close - RESP
2018-12-10 10:19:07 Permit 10.41.0.131:54260 10.41.100.1:135
10.41.0.131:54260 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:07 Permit 10.41.2.74:57369 10.41.100.1:53
10.41.2.74:57369 10.41.100.1:53 15 sec 81 81
DNS Close - RESP
2018-12-10 10:19:07 Permit 10.41.0.131:33823 10.41.100.1:49154
10.41.0.131:33823 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:07 Permit 10.41.0.131:54258 10.41.100.1:135
10.41.0.131:54258 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:07 Permit 10.41.0.131:54261 10.41.100.1:135
10.41.0.131:54261 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:07 Permit 10.41.2.74:60095 10.41.100.1:53
10.41.2.74:60095 10.41.100.1:53 15 sec 80 80
DNS Close - RESP
2018-12-10 10:19:07 Permit 10.41.0.131:33820 10.41.100.1:49154
10.41.0.131:33820 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:07 Permit 10.41.0.131:54257 10.41.100.1:135
10.41.0.131:54257 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:07 Permit 10.41.1.65:64192 10.41.100.1:88
10.41.1.65:64192 10.41.100.1:88 4 sec 1598 1608
TCP PORT 88 Close - TCP RST
2018-12-10 10:19:07 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 401 125
DNS Close - RESP
2018-12-10 10:19:07 Permit 10.41.2.74:62556 10.41.100.1:53
10.41.2.74:62556 10.41.100.1:53 15 sec 78 78
DNS Close - RESP
2018-12-10 10:19:07 Permit 10.41.2.74:53848 10.41.100.1:53
10.41.2.74:53848 10.41.100.1:53 15 sec 82 82
DNS Close - RESP
2018-12-10 10:19:07 Permit 10.41.2.74:62426 10.41.100.1:53
10.41.2.74:62426 10.41.100.1:53 15 sec 80 80
DNS Close - RESP
2018-12-10 10:19:07 Permit 10.41.2.74:50294 10.41.100.1:53
10.41.2.74:50294 10.41.100.1:53 15 sec 78 78
DNS Close - RESP
2018-12-10 10:19:07 Permit 10.41.1.51:53330 10.41.100.7:60313
10.41.1.51:53330 10.41.100.7:60313 4 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:19:07 Permit 10.41.2.74:60817 10.41.100.1:53
10.41.2.74:60817 10.41.100.1:53 15 sec 82 82
DNS Close - RESP
2018-12-10 10:19:07 Permit 10.41.2.74:62987 10.41.100.1:53
10.41.2.74:62987 10.41.100.1:53 15 sec 84 84
DNS Close - RESP
2018-12-10 10:19:06 Permit 10.41.200.62:64998 65.55.163.78:443
1.9.140.18:35765 65.55.163.78:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:06 Permit 10.41.100.1:50277 10.10.1.40:53
10.41.100.1:50277 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:06 Permit 10.41.1.58:58177 10.41.100.1:53
10.41.1.58:58177 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:06 Permit 10.41.2.74:56399 157.240.10.35:443
1.9.140.18:62712 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:06 Permit 10.41.2.74:56398 157.240.10.35:443
1.9.140.18:11096 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:06 Permit 10.41.2.74:56397 157.240.10.35:443
1.9.140.18:47273 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:06 Permit 10.41.2.74:56396 157.240.10.35:443
1.9.140.18:15434 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:06 Permit 10.41.100.1:49353 10.10.1.40:53
10.41.100.1:49353 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:06 Permit 10.41.200.62:52099 10.41.100.1:53
10.41.200.62:52099 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:06 Deny 10.41.5.80:61072 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 28 HTTPS Traffic
Denied
2018-12-10 10:19:06 Permit 10.41.0.131:54069 10.41.100.1:53
10.41.0.131:54069 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:05 Permit 10.41.0.131:33640 8.8.8.8:53
1.9.140.18:36365 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:05 Permit 10.41.0.131:33827 10.41.100.1:49154
10.41.0.131:33827 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:05 Permit 10.41.0.131:54265 10.41.100.1:135
10.41.0.131:54265 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:05 Permit 10.41.0.131:54264 10.41.100.1:135
10.41.0.131:54264 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:05 Permit 10.41.1.58:64134 104.103.70.16:80
1.9.140.18:58099 104.103.70.16:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:05 Permit 10.41.1.58:64133 23.51.36.199:80
1.9.140.18:21065 23.51.36.199:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:05 Permit 10.41.100.1:49931 10.10.1.40:53
10.41.100.1:49931 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:05 Permit 10.41.100.1:50751 10.10.1.40:53
10.41.100.1:50751 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:05 Permit 10.41.1.58:64878 10.41.100.1:53
10.41.1.58:64878 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:05 Permit 10.41.1.58:62039 10.41.100.1:53
10.41.1.58:62039 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:05 Permit 10.41.1.58:64131 23.15.25.156:80
1.9.140.18:41081 23.15.25.156:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:05 Permit 10.41.1.58:64132 104.103.42.96:80
1.9.140.18:1067 104.103.42.96:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:05 Permit 10.41.1.58:64130 104.103.42.96:80
1.9.140.18:4892 104.103.42.96:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:05 Permit 10.41.100.1:50380 10.10.1.24:53
10.41.100.1:50380 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:05 Permit 10.41.100.1:49704 10.10.1.24:53
10.41.100.1:49704 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:05 Permit 10.41.100.1:49709 10.10.1.4:53
10.41.100.1:49709 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:05 Permit 10.41.100.1:65458 10.10.1.4:53
10.41.100.1:65458 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:05 Permit 10.41.100.1:49929 10.10.1.4:53
10.41.100.1:49929 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:05 Permit 10.41.100.2:53997 104.103.70.183:53
1.9.140.18:60849 104.103.70.183:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:05 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:05 Permit 10.41.1.65:64179 103.243.221.109:80
1.9.140.18:25659 103.243.221.109:80 16 sec 5958 1376
HTTP Close - TCP FIN
2018-12-10 10:19:05 Permit 10.41.100.1:50559 10.10.1.40:53
10.41.100.1:50559 10.10.1.40:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:19:05 Permit 10.41.1.65:64180 103.243.221.109:80
1.9.140.18:3693 103.243.221.109:80 16 sec 6022 5952
HTTP Close - TCP FIN
2018-12-10 10:19:05 Permit 10.41.1.65:64182 103.243.221.51:80
1.9.140.18:4076 103.243.221.51:80 15 sec 27020 4333
HTTP Close - TCP FIN
2018-12-10 10:19:05 Permit 10.41.100.1:65528 10.10.1.4:53
10.41.100.1:65528 10.10.1.4:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:19:05 Permit 10.41.5.80:61074 104.103.70.10:80
1.9.140.18:28214 104.103.70.10:80 4 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:19:05 Permit 10.41.5.80:61040 64.62.197.70:443
1.9.140.18:61544 64.62.197.70:443 66 sec 3158 8877
HTTPS Close - TCP FIN
2018-12-10 10:19:05 Permit 10.41.1.65:54110 10.41.100.1:53
10.41.1.65:54110 10.41.100.1:53 16 sec 76 76
DNS Close - RESP
2018-12-10 10:19:05 Permit 10.41.200.63:123 10.41.100.1:123
10.41.200.63:123 10.41.100.1:123 61 sec 114 114
NETWORK TIME Close - AGE OUT
2018-12-10 10:19:05 Permit 10.41.1.65:58770 10.41.100.1:53
10.41.1.65:58770 10.41.100.1:53 16 sec 82 82
DNS Close - RESP
2018-12-10 10:19:05 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 4 sec 240 80
DNS Close - RESP
2018-12-10 10:19:05 Permit 10.41.0.131:54253 10.41.100.1:135
10.41.0.131:54253 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:05 Permit 10.41.0.131:33813 10.41.100.1:49154
10.41.0.131:33813 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:05 Permit 10.41.0.131:54254 10.41.100.1:135
10.41.0.131:54254 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:05 Permit 10.41.1.57:62155 10.41.100.7:60313
10.41.1.57:62155 10.41.100.7:60313 3 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:19:05 Permit 10.62.1.52:55882 10.41.100.1:135
10.62.1.52:55882 10.41.100.1:135 13 sec 770 594
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:05 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 4 sec 87 162
DNS Close - RESP
2018-12-10 10:19:05 Permit 10.41.0.131:33816 10.41.100.1:49154
10.41.0.131:33816 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:05 Permit 10.41.2.74:53784 10.41.100.1:53
10.41.2.74:53784 10.41.100.1:53 16 sec 90 90
DNS Close - RESP
2018-12-10 10:19:04 Permit 10.41.200.72:64132 74.125.24.189:443
1.9.140.18:44004 74.125.24.189:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:04 Permit 10.41.100.1:49447 10.10.1.40:53
10.41.100.1:49447 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:04 Permit 10.41.200.72:61143 10.41.100.1:53
10.41.200.72:61143 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:04 Permit 10.41.0.131:33823 10.41.100.1:49154
10.41.0.131:33823 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:04 Permit 10.41.0.131:54261 10.41.100.1:135
10.41.0.131:54261 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:04 Permit 10.41.0.131:54260 10.41.100.1:135
10.41.0.131:54260 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:04 Permit 10.41.100.1:49159 10.10.1.24:53
10.41.100.1:49159 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:04 Permit 10.41.100.1:49699 10.10.1.4:53
10.41.100.1:49699 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:04 Permit 10.41.100.1:49531 10.10.1.4:53
10.41.100.1:49531 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:04 Permit 10.41.100.2:916 10.100.10.189:111
10.41.100.2:916 10.100.10.189:111 0 sec 0 0
SUNRPC PORTMAPPER(UDP) Creation
2018-12-10 10:19:03 Permit 10.41.1.65:64192 10.41.100.1:88
10.41.1.65:64192 10.41.100.1:88 0 sec 0 0
TCP PORT 88 Creation
2018-12-10 10:19:03 Permit 10.41.1.65:64191 10.41.100.1:445
10.41.1.65:64191 10.41.100.1:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:19:03 Permit 10.41.1.51:53330 10.41.100.7:60313
10.41.1.51:53330 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:19:03 Permit 10.41.100.1:49161 10.10.1.40:53
10.41.100.1:49161 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:03 Permit 10.41.5.80:51086 10.41.100.1:53
10.41.5.80:51086 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:03 Permit 10.41.5.80:61078 104.103.70.8:80
1.9.140.18:17249 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:03 Permit 10.41.5.80:61077 104.103.70.10:80
1.9.140.18:20932 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:03 Permit 10.41.1.65:64190 103.243.221.51:80
1.9.140.18:34901 103.243.221.51:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:03 Permit 10.41.1.55:52473 23.94.187.84:443
1.9.140.18:32853 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:03 Permit 10.41.0.131:33820 10.41.100.1:49154
10.41.0.131:33820 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:03 Permit 10.41.0.131:54258 10.41.100.1:135
10.41.0.131:54258 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:03 Permit 10.41.0.131:54257 10.41.100.1:135
10.41.0.131:54257 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:03 Permit 10.41.100.1:64989 10.10.1.24:53
10.41.100.1:64989 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:03 Permit 10.41.100.1:50867 10.10.1.4:53
10.41.100.1:50867 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:03 Permit 10.41.100.1:50300 10.10.1.4:53
10.41.100.1:50300 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:03 Permit 10.41.100.1:49464 10.10.1.24:53
10.41.100.1:49464 10.10.1.24:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:19:03 Permit 10.41.1.65:64024 185.84.60.58:443
1.9.140.18:42475 185.84.60.58:443 182 sec 2664 6313
HTTPS Close - TCP FIN
2018-12-10 10:19:03 Permit 10.41.100.1:50713 10.10.1.4:53
10.41.100.1:50713 10.10.1.4:53 59 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:19:03 Permit 10.41.100.1:50052 10.10.1.4:53
10.41.100.1:50052 10.10.1.4:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:19:03 Permit 10.41.1.65:64181 72.34.250.78:443
1.9.140.18:32214 72.34.250.78:443 14 sec 332 284
HTTPS Close - TCP FIN
2018-12-10 10:19:03 Permit 10.41.100.1:50580 10.10.1.4:53
10.41.100.1:50580 10.10.1.4:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:19:03 Permit 10.41.2.74:56355 52.218.36.3:443
1.9.140.18:9105 52.218.36.3:443 18 sec 262 211
HTTPS Close - TCP RST
2018-12-10 10:19:03 Permit 10.41.100.1:50792 10.10.1.40:53
10.41.100.1:50792 10.10.1.40:53 59 sec 73 0
DNS Close - AGE OUT
2018-12-10 10:19:03 Permit 10.41.3.74:57133 216.58.196.42:443
1.9.140.18:2671 216.58.196.42:443 244 sec 4264 2503
HTTPS Close - TCP FIN
2018-12-10 10:19:03 Permit 10.41.100.1:50095 10.10.1.4:53
10.41.100.1:50095 10.10.1.4:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:19:03 Permit 10.41.100.1:49251 10.10.1.40:53
10.41.100.1:49251 10.10.1.40:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:19:03 Permit 10.41.0.131:52248 8.8.8.8:53
1.9.140.18:30605 8.8.8.8:53 3 sec 82 142
DNS Close - RESP
2018-12-10 10:19:03 Permit 10.41.100.1:49448 10.10.1.40:53
10.41.100.1:49448 10.10.1.40:53 59 sec 77 0
DNS Close - AGE OUT
2018-12-10 10:19:03 Permit 10.41.1.50:53560 10.41.100.2:2967
10.41.1.50:53560 10.41.100.2:2967 4 sec 136 128
TCP PORT 2967 Close - TCP RST
2018-12-10 10:19:03 Permit 10.41.1.50:56999 10.41.100.1:53
10.41.1.50:56999 10.41.100.1:53 4 sec 88 120
DNS Close - RESP
2018-12-10 10:19:03 Permit 10.41.0.131:54251 10.41.100.1:135
10.41.0.131:54251 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:03 Permit 10.41.0.131:54247 10.41.100.1:135
10.41.0.131:54247 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:03 Permit 10.41.0.131:54250 10.41.100.1:135
10.41.0.131:54250 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:03 Permit 10.41.0.131:54248 10.41.100.1:135
10.41.0.131:54248 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:03 Permit 10.41.2.74:63002 10.41.100.1:53
10.41.2.74:63002 10.41.100.1:53 16 sec 85 85
DNS Close - RESP
2018-12-10 10:19:03 Permit 10.41.0.131:33810 10.41.100.1:49154
10.41.0.131:33810 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:03 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 6 sec 76 76
DNS Close - RESP
2018-12-10 10:19:03 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 4 sec 87 162
DNS Close - RESP
2018-12-10 10:19:03 Permit 10.41.1.62:63691 10.41.100.1:445
10.41.1.62:63691 10.41.100.1:445 25 sec 18485 30787
TCP PORT 445 Close - TCP RST
2018-12-10 10:19:03 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 6 sec 76 76
DNS Close - RESP
2018-12-10 10:19:03 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 4 sec 87 162
DNS Close - RESP
2018-12-10 10:19:03 Permit 10.41.2.74:63224 10.41.100.1:53
10.41.2.74:63224 10.41.100.1:53 15 sec 93 93
DNS Close - RESP
2018-12-10 10:19:03 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 6 sec 76 76
DNS Close - RESP
2018-12-10 10:19:03 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 4 sec 86 151
DNS Close - RESP
2018-12-10 10:19:03 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 6 sec 76 76
DNS Close - RESP
2018-12-10 10:19:03 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 4 sec 87 162
DNS Close - RESP
2018-12-10 10:19:02 Deny 10.41.5.81:63181 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 28 HTTPS Traffic
Denied
2018-12-10 10:19:02 Permit 10.41.1.65:64189 72.34.250.78:443
1.9.140.18:50144 72.34.250.78:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:02 Permit 10.41.1.65:64188 103.243.221.109:80
1.9.140.18:62742 103.243.221.109:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:02 Permit 10.41.1.65:64187 103.243.221.109:80
1.9.140.18:39601 103.243.221.109:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:02 Permit 10.41.1.57:62155 10.41.100.7:60313
10.41.1.57:62155 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:19:02 Permit 10.41.0.131:33816 10.41.100.1:49154
10.41.0.131:33816 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:02 Permit 10.41.0.131:54254 10.41.100.1:135
10.41.0.131:54254 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:02 Permit 10.41.0.131:54253 10.41.100.1:135
10.41.0.131:54253 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:02 Permit 10.41.100.1:49510 10.10.1.4:53
10.41.100.1:49510 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:01 Permit 10.41.100.1:67 10.41.200.53:68
10.41.100.1:67 10.41.200.53:68 0 sec 0 0
DHCP Creation
2018-12-10 10:19:01 Permit 10.41.5.80:61076 64.62.197.70:443
1.9.140.18:16556 64.62.197.70:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:01 Permit 10.41.5.80:61074 104.103.70.10:80
1.9.140.18:28214 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:19:01 Permit 10.41.1.65:64186 216.58.199.202:443
1.9.140.18:54263 216.58.199.202:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:01 Permit 10.41.1.65:64185 216.58.199.202:443
1.9.140.18:49627 216.58.199.202:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:01 Permit 10.41.100.1:50380 10.10.1.40:53
10.41.100.1:50380 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:01 Permit 10.41.1.65:54554 10.41.100.1:53
10.41.1.65:54554 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:01 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:01 Permit 10.41.100.1:49704 10.10.1.40:53
10.41.100.1:49704 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:01 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:01 Permit 10.41.100.1:49709 10.10.1.24:53
10.41.100.1:49709 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:01 Permit 10.41.100.1:65458 10.10.1.24:53
10.41.100.1:65458 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:01 Permit 10.41.100.1:49929 10.10.1.24:53
10.41.100.1:49929 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:01 Permit 10.41.100.1:49536 10.10.1.4:53
10.41.100.1:49536 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:01 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:01 Permit 10.41.100.1:65503 10.10.1.4:53
10.41.100.1:65503 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:01 Permit 10.41.100.2:60448 23.45.232.159:53
1.9.140.18:35756 23.45.232.159:53 2 sec 86 106
DNS Close - RESP
2018-12-10 10:19:01 Permit 10.41.200.50:50075 172.217.166.131:443
1.9.140.18:1647 172.217.166.131:443 289 sec 2011 5021
HTTPS Close - TCP RST
2018-12-10 10:19:01 Permit 10.41.3.74:57132 216.58.196.42:443
1.9.140.18:23480 216.58.196.42:443 242 sec 3438 2031
HTTPS Close - TCP FIN
2018-12-10 10:19:01 Permit 10.41.3.74:57130 172.217.166.142:443
1.9.140.18:39330 172.217.166.142:443 249 sec 3862 6144
HTTPS Close - TCP FIN
2018-12-10 10:19:01 Permit 10.41.2.74:56358 50.112.254.249:443
1.9.140.18:48660 50.112.254.249:443 16 sec 262 142
HTTPS Close - TCP FIN
2018-12-10 10:19:01 Permit 10.41.100.1:65525 10.10.1.4:53
10.41.100.1:65525 10.10.1.4:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:19:01 Permit 10.41.100.2:50002 69.171.255.12:53
1.9.140.18:18474 69.171.255.12:53 2 sec 76 219
DNS Close - RESP
2018-12-10 10:19:01 Permit 10.41.200.50:50073 172.217.166.142:443
1.9.140.18:30139 172.217.166.142:443 289 sec 2011 5020
HTTPS Close - TCP RST
2018-12-10 10:19:01 Permit 10.41.100.2:4390 10.100.10.189:111
10.41.100.2:4390 10.100.10.189:111 18 sec 198 0
SUNRPC PORTMAPPER(TCP) Close - AGE OUT
2018-12-10 10:19:01 Permit 10.41.5.80:61073 104.103.70.10:80
1.9.140.18:47003 104.103.70.10:80 4 sec 804 36670
HTTP Close - TCP RST
2018-12-10 10:19:01 Permit 10.41.100.1:65528 10.10.1.24:53
10.41.100.1:65528 10.10.1.24:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:19:01 Permit 10.41.1.82:3342 65.55.50.190:443
1.9.140.18:64267 65.55.50.190:443 4 sec 2616 4830
HTTPS Close - TCP RST
2018-12-10 10:19:01 Permit 10.41.0.131:33813 10.41.100.1:49154
10.41.0.131:33813 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:19:01 Permit 10.41.1.50:53560 10.41.100.2:2967
10.41.1.50:53560 10.41.100.2:2967 3 sec 70 64
TCP PORT 2967 Close - TCP RST
2018-12-10 10:19:01 Permit 10.41.5.80:63195 10.41.100.1:53
10.41.5.80:63195 10.41.100.1:53 12 sec 92 92
DNS Close - RESP
2018-12-10 10:19:01 Permit 10.41.0.131:48372 10.41.100.1:53
10.41.0.131:48372 10.41.100.1:53 11 sec 82 82
DNS Close - RESP
2018-12-10 10:19:01 Permit 10.41.1.51:53323 10.41.100.7:60313
10.41.1.51:53323 10.41.100.7:60313 3 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:19:01 Permit 10.41.2.74:63603 10.41.100.1:53
10.41.2.74:63603 10.41.100.1:53 15 sec 81 81
DNS Close - RESP
2018-12-10 10:19:01 Permit 10.41.2.74:59839 10.41.100.1:53
10.41.2.74:59839 10.41.100.1:53 15 sec 91 91
DNS Close - RESP
2018-12-10 10:19:01 Permit 10.41.2.74:54282 10.41.100.1:53
10.41.2.74:54282 10.41.100.1:53 16 sec 79 79
DNS Close - RESP
2018-12-10 10:19:01 Permit 10.41.0.131:54244 10.41.100.1:135
10.41.0.131:54244 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:01 Permit 10.41.0.131:54243 10.41.100.1:135
10.41.0.131:54243 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:01 Permit 10.41.0.131:33806 10.41.100.1:49154
10.41.0.131:33806 10.41.100.1:49154 3 sec 3808 4266
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:01 Permit 10.41.0.131:54240 10.41.100.1:135
10.41.0.131:54240 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:01 Permit 10.41.0.131:33803 10.41.100.1:49154
10.41.0.131:33803 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:19:01 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 14 sec 163 162
DNS Close - RESP
2018-12-10 10:19:01 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 320 125
DNS Close - RESP
2018-12-10 10:19:01 Permit 10.41.0.131:33273 10.41.100.1:53
10.41.0.131:33273 10.41.100.1:53 16 sec 82 82
DNS Close - RESP
2018-12-10 10:19:01 Permit 10.41.1.57:62154 10.41.100.7:60313
10.41.1.57:62154 10.41.100.7:60313 4 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:19:01 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 14 sec 163 162
DNS Close - RESP
2018-12-10 10:19:01 Permit 10.41.5.80:56892 10.41.100.1:53
10.41.5.80:56892 10.41.100.1:53 15 sec 92 92
DNS Close - RESP
2018-12-10 10:19:01 Permit 10.41.0.131:54241 10.41.100.1:135
10.41.0.131:54241 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:19:01 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 14 sec 162 151
DNS Close - RESP
2018-12-10 10:19:01 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 14 sec 163 162
DNS Close - RESP
2018-12-10 10:19:01 Permit 10.41.2.74:58937 10.41.100.1:53
10.41.2.74:58937 10.41.100.1:53 16 sec 79 79
DNS Close - RESP
2018-12-10 10:19:01 Permit 10.41.2.74:55935 10.41.100.1:53
10.41.2.74:55935 10.41.100.1:53 16 sec 88 88
DNS Close - RESP
2018-12-10 10:19:00 Permit 10.41.0.131:54251 10.41.100.1:135
10.41.0.131:54251 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:00 Permit 10.41.0.131:54250 10.41.100.1:135
10.41.0.131:54250 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:19:00 Permit 10.41.100.1:49159 10.10.1.40:53
10.41.100.1:49159 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:00 Permit 10.41.0.131:48180 10.41.100.1:53
10.41.0.131:48180 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:00 Permit 10.41.0.131:52248 8.8.8.8:53
1.9.140.18:30605 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:00 Permit 10.41.100.1:49699 10.10.1.24:53
10.41.100.1:49699 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:00 Permit 10.41.100.1:49531 10.10.1.24:53
10.41.100.1:49531 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:00 Permit 10.41.100.1:49500 10.10.1.4:53
10.41.100.1:49500 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:00 Permit 10.41.100.1:64990 10.10.1.4:53
10.41.100.1:64990 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:00 Permit 10.41.100.1:49928 10.10.1.4:53
10.41.100.1:49928 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:00 Permit 10.41.100.1:49965 10.10.1.4:53
10.41.100.1:49965 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:00 Permit 10.41.100.1:65270 10.10.1.4:53
10.41.100.1:65270 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:00 Permit 10.41.100.1:50635 10.10.1.4:53
10.41.100.1:50635 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:00 Permit 10.41.100.1:50725 10.10.1.4:53
10.41.100.1:50725 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:00 Permit 10.41.100.1:49954 10.10.1.4:53
10.41.100.1:49954 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:00 Permit 10.41.2.74:56395 216.58.199.202:443
1.9.140.18:50531 216.58.199.202:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:19:00 Permit 10.41.100.1:64989 10.10.1.40:53
10.41.100.1:64989 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:00 Permit 10.41.2.74:58657 10.41.100.1:53
10.41.2.74:58657 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:19:00 Deny 10.41.5.80:61072 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 32 HTTPS Traffic
Denied
2018-12-10 10:18:59 Permit 10.41.1.50:56999 10.41.100.1:53
10.41.1.50:56999 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:59 Permit 10.41.0.131:33810 10.41.100.1:49154
10.41.0.131:33810 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:59 Permit 10.41.0.131:54248 10.41.100.1:135
10.41.0.131:54248 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:59 Permit 10.41.0.131:54247 10.41.100.1:135
10.41.0.131:54247 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:59 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:59 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:59 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:59 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:59 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:59 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:59 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:59 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:59 Permit 10.41.100.1:50867 10.10.1.24:53
10.41.100.1:50867 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:59 Permit 10.41.100.1:50300 10.10.1.24:53
10.41.100.1:50300 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:59 Permit 10.41.100.1:64871 10.10.1.4:53
10.41.100.1:64871 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:59 Permit 10.41.100.1:49726 10.10.1.4:53
10.41.100.1:49726 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:59 Permit 10.41.100.1:65501 10.10.1.4:53
10.41.100.1:65501 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:59 Permit 10.41.100.2:60448 23.45.232.159:53
1.9.140.18:35756 23.45.232.159:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:59 Permit 10.41.100.2:50002 69.171.255.12:53
1.9.140.18:18474 69.171.255.12:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:59 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:59 Permit 10.41.1.50:53560 10.41.100.2:2967
10.41.1.50:53560 10.41.100.2:2967 0 sec 0 0
TCP PORT 2967 Creation
2018-12-10 10:18:59 Permit 10.41.100.1:49464 10.10.1.40:53
10.41.100.1:49464 10.10.1.40:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:59 Permit 10.41.100.1:50095 10.10.1.24:53
10.41.100.1:50095 10.10.1.24:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:59 Permit 10.41.1.55:52470 23.94.187.84:443
1.9.140.18:34885 23.94.187.84:443 2 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:18:59 Permit 10.41.200.50:50077 172.217.26.131:443
1.9.140.18:34344 172.217.26.131:443 287 sec 2011 5021
HTTPS Close - TCP RST
2018-12-10 10:18:59 Permit 10.41.200.54:55224 172.217.26.142:443
1.9.140.18:49761 172.217.26.142:443 12 sec 3446 2507
HTTPS Close - TCP FIN
2018-12-10 10:18:59 Permit 10.41.100.1:65111 10.10.1.4:53
10.41.100.1:65111 10.10.1.4:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:59 Permit 10.41.100.1:50713 10.10.1.24:53
10.41.100.1:50713 10.10.1.24:53 59 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:59 Permit 10.41.1.65:64127 173.241.248.220:80
1.9.140.18:3436 173.241.248.220:80 515 sec 26795 4173
HTTP Close - TCP FIN
2018-12-10 10:18:59 Permit 10.41.100.1:50052 10.10.1.24:53
10.41.100.1:50052 10.10.1.24:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:59 Permit 10.41.100.1:64993 10.10.1.4:53
10.41.100.1:64993 10.10.1.4:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:59 Permit 10.41.0.131:56447 8.8.8.8:53
1.9.140.18:17776 8.8.8.8:53 4 sec 82 150
DNS Close - RESP
2018-12-10 10:18:59 Permit 10.41.100.1:67 10.41.200.53:68
10.41.100.1:67 10.41.200.53:68 59 sec 346 0
DHCP Close - AGE OUT
2018-12-10 10:18:59 Permit 10.41.5.80:61070 104.103.70.10:80
1.9.140.18:60962 104.103.70.10:80 4 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:18:59 Permit 10.41.1.65:64177 72.34.250.78:443
1.9.140.18:17234 72.34.250.78:443 10 sec 2456 1599
HTTPS Close - TCP RST
2018-12-10 10:18:59 Permit 10.41.1.65:63808 151.101.78.49:80
1.9.140.18:47329 151.101.78.49:80 327 sec 20802 2570
HTTP Close - TCP FIN
2018-12-10 10:18:59 Permit 10.41.200.50:50076 172.217.31.97:443
1.9.140.18:20029 172.217.31.97:443 287 sec 2011 5568
HTTPS Close - TCP RST
2018-12-10 10:18:59 Permit 10.41.1.65:64125 151.101.78.2:80
1.9.140.18:52302 151.101.78.2:80 515 sec 813449 45306
HTTP Close - TCP FIN
2018-12-10 10:18:59 Permit 10.41.100.1:50580 10.10.1.24:53
10.41.100.1:50580 10.10.1.24:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:59 Permit 10.41.0.131:33799 10.41.100.1:49154
10.41.0.131:33799 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:59 Permit 10.41.2.74:53057 10.41.100.1:53
10.41.2.74:53057 10.41.100.1:53 16 sec 80 80
DNS Close - RESP
2018-12-10 10:18:59 Permit 10.41.200.60:51469 10.41.100.1:53
10.41.200.60:51469 10.41.100.1:53 16 sec 89 89
DNS Close - RESP
2018-12-10 10:18:59 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 8 sec 484 81
DNS Close - RESP
2018-12-10 10:18:59 Permit 10.41.0.131:54237 10.41.100.1:135
10.41.0.131:54237 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:59 Permit 10.41.2.74:64732 10.41.100.1:53
10.41.2.74:64732 10.41.100.1:53 16 sec 94 94
DNS Close - RESP
2018-12-10 10:18:59 Permit 10.41.0.131:54236 10.41.100.1:135
10.41.0.131:54236 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:59 Permit 10.41.200.60:65199 10.41.100.1:445
10.41.200.60:65199 10.41.100.1:445 15 sec 4687 2036
TCP PORT 445 Close - TCP RST
2018-12-10 10:18:59 Permit 10.41.200.58:61150 10.41.100.1:53
10.41.200.58:61150 10.41.100.1:53 4 sec 88 120
DNS Close - RESP
2018-12-10 10:18:59 Permit 10.41.1.59:64583 10.41.100.1:53
10.41.1.59:64583 10.41.100.1:53 16 sec 79 79
DNS Close - RESP
2018-12-10 10:18:59 Permit 10.41.2.74:62794 10.41.100.1:53
10.41.2.74:62794 10.41.100.1:53 14 sec 99 99
DNS Close - RESP
2018-12-10 10:18:59 Permit 10.41.2.74:55057 10.41.100.1:53
10.41.2.74:55057 10.41.100.1:53 16 sec 91 91
DNS Close - RESP
2018-12-10 10:18:59 Permit 10.41.200.58:58415 10.41.100.2:2967
10.41.200.58:58415 10.41.100.2:2967 4 sec 136 128
TCP PORT 2967 Close - TCP RST
2018-12-10 10:18:58 Permit 10.41.1.51:53323 10.41.100.7:60313
10.41.1.51:53323 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:58 Permit 10.41.1.50:53560 10.41.100.2:2967
10.41.1.50:53560 10.41.100.2:2967 0 sec 0 0
TCP PORT 2967 Creation
2018-12-10 10:18:58 Permit 10.41.200.53:50902 10.41.100.11:2967
10.41.200.53:50902 10.41.100.11:2967 0 sec 0 0
TCP PORT 2967 Creation
2018-12-10 10:18:58 Permit 10.41.0.131:33806 10.41.100.1:49154
10.41.0.131:33806 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:58 Permit 10.41.0.131:54244 10.41.100.1:135
10.41.0.131:54244 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:58 Permit 10.41.0.131:54243 10.41.100.1:135
10.41.0.131:54243 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:58 Permit 10.41.100.1:49510 10.10.1.24:53
10.41.100.1:49510 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:57 Permit 10.41.1.65:64184 172.217.166.142:443
1.9.140.18:13770 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:57 Permit 10.41.100.1:49709 10.10.1.40:53
10.41.100.1:49709 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:57 Permit 10.41.1.65:54170 10.41.100.1:53
10.41.1.65:54170 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:57 Permit 10.41.1.82:3342 65.55.50.190:443
1.9.140.18:64267 65.55.50.190:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:57 Permit 10.41.1.57:62154 10.41.100.7:60313
10.41.1.57:62154 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:57 Permit 10.41.5.80:61073 104.103.70.10:80
1.9.140.18:47003 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:57 Permit 10.41.1.55:52470 23.94.187.84:443
1.9.140.18:34885 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:57 Permit 10.41.100.1:65458 10.10.1.40:53
10.41.100.1:65458 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:57 Permit 10.41.1.59:57634 10.41.100.1:53
10.41.1.59:57634 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:57 Permit 10.41.0.131:33803 10.41.100.1:49154
10.41.0.131:33803 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:57 Permit 10.41.0.131:54241 10.41.100.1:135
10.41.0.131:54241 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:57 Permit 10.41.0.131:54240 10.41.100.1:135
10.41.0.131:54240 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:57 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:57 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:57 Permit 10.41.100.1:49929 10.10.1.40:53
10.41.100.1:49929 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:57 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:57 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:57 Permit 10.41.100.1:49536 10.10.1.24:53
10.41.100.1:49536 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:57 Permit 10.41.100.1:65503 10.10.1.24:53
10.41.100.1:65503 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:57 Permit 10.41.100.1:50007 10.10.1.4:53
10.41.100.1:50007 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:57 Permit 10.41.100.1:50880 10.10.1.4:53
10.41.100.1:50880 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:57 Permit 10.41.100.1:49737 10.10.1.4:53
10.41.100.1:49737 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:57 Permit 10.41.100.1:49699 10.10.1.40:53
10.41.100.1:49699 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:57 Permit 10.41.100.1:49531 10.10.1.40:53
10.41.100.1:49531 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:57 Deny 10.41.5.80:61072 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 32 HTTPS Traffic
Denied
2018-12-10 10:18:57 Permit 10.41.100.1:50713 10.10.1.40:53
10.41.100.1:50713 10.10.1.40:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:57 Permit 10.41.1.65:64056 151.101.78.2:80
1.9.140.18:8500 151.101.78.2:80 593 sec 190505 17303
HTTP Close - TCP FIN
2018-12-10 10:18:57 Permit 10.41.200.54:55226 172.217.166.131:443
1.9.140.18:51482 172.217.166.131:443 5 sec 2316 1363
HTTPS Close - TCP FIN
2018-12-10 10:18:57 Permit 10.41.1.65:63805 173.241.248.220:80
1.9.140.18:40969 173.241.248.220:80 325 sec 19071 2998
HTTP Close - TCP FIN
2018-12-10 10:18:57 Permit 10.41.100.1:50095 10.10.1.40:53
10.41.100.1:50095 10.10.1.40:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:57 Permit 10.41.1.65:63794 173.241.248.143:80
1.9.140.18:35226 173.241.248.143:80 326 sec 5248 1744
HTTP Close - TCP FIN
2018-12-10 10:18:57 Permit 10.41.1.65:64043 151.101.78.49:80
1.9.140.18:1666 151.101.78.49:80 594 sec 43586 6912
HTTP Close - TCP FIN
2018-12-10 10:18:57 Permit 10.41.1.65:63811 173.241.248.143:80
1.9.140.18:62484 173.241.248.143:80 325 sec 9139 2559
HTTP Close - TCP FIN
2018-12-10 10:18:57 Permit 10.41.200.54:55225 172.217.166.142:443
1.9.140.18:39552 172.217.166.142:443 8 sec 4011 1818
HTTPS Close - TCP FIN
2018-12-10 10:18:57 Permit 10.41.100.1:50067 10.10.1.4:53
10.41.100.1:50067 10.10.1.4:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:57 Permit 10.41.100.1:49704 10.10.1.4:53
10.41.100.1:49704 10.10.1.4:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:57 Permit 10.41.100.1:50785 10.10.1.4:53
10.41.100.1:50785 10.10.1.4:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:57 Permit 10.41.100.1:49264 10.10.1.4:53
10.41.100.1:49264 10.10.1.4:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:57 Permit 10.41.100.1:50052 10.10.1.40:53
10.41.100.1:50052 10.10.1.40:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:57 Permit 10.41.100.1:65528 10.10.1.40:53
10.41.100.1:65528 10.10.1.40:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:57 Permit 10.41.100.1:65525 10.10.1.24:53
10.41.100.1:65525 10.10.1.24:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:57 Permit 10.41.1.65:64053 151.101.78.49:80
1.9.140.18:51874 151.101.78.49:80 593 sec 88270 9754
HTTP Close - TCP FIN
2018-12-10 10:18:57 Permit 10.41.1.51:53322 10.41.100.7:60313
10.41.1.51:53322 10.41.100.7:60313 4 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:57 Permit 10.41.0.131:54230 10.41.100.1:135
10.41.0.131:54230 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:57 Permit 10.41.0.131:54233 10.41.100.1:135
10.41.0.131:54233 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:57 Permit 10.41.5.76:50551 10.41.100.1:49155
10.41.5.76:50551 10.41.100.1:49155 36 sec 3660 1618
TCP PORT 49155 Close - TCP FIN
2018-12-10 10:18:57 Permit 10.41.0.131:54234 10.41.100.1:135
10.41.0.131:54234 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:57 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 401 176
DNS Close - RESP
2018-12-10 10:18:57 Permit 10.41.0.131:54231 10.41.100.1:135
10.41.0.131:54231 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:57 Permit 10.41.0.131:33793 10.41.100.1:49154
10.41.0.131:33793 10.41.100.1:49154 4 sec 3808 4266
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:57 Permit 10.41.0.131:33796 10.41.100.1:49154
10.41.0.131:33796 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:57 Permit 10.41.200.58:58415 10.41.100.2:2967
10.41.200.58:58415 10.41.100.2:2967 3 sec 70 64
TCP PORT 2967 Close - TCP RST
2018-12-10 10:18:56 Deny 10.41.5.81:63181 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 32 HTTPS Traffic
Denied
2018-12-10 10:18:56 Permit 10.41.200.54:55227 172.217.166.131:443
1.9.140.18:24171 172.217.166.131:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:56 Permit 10.41.100.1:49500 10.10.1.24:53
10.41.100.1:49500 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:56 Permit 10.41.100.1:64990 10.10.1.24:53
10.41.100.1:64990 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:56 Permit 10.41.100.1:49928 10.10.1.24:53
10.41.100.1:49928 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:56 Permit 10.41.100.1:49965 10.10.1.24:53
10.41.100.1:49965 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:56 Permit 10.41.100.1:65270 10.10.1.24:53
10.41.100.1:65270 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:56 Permit 10.41.100.1:50635 10.10.1.24:53
10.41.100.1:50635 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:56 Permit 10.41.100.1:50725 10.10.1.24:53
10.41.100.1:50725 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:56 Permit 10.41.100.1:49954 10.10.1.24:53
10.41.100.1:49954 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:56 Permit 10.41.100.1:50693 10.10.1.4:53
10.41.100.1:50693 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:56 Permit 10.41.0.131:33799 10.41.100.1:49154
10.41.0.131:33799 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:56 Permit 10.41.0.131:54237 10.41.100.1:135
10.41.0.131:54237 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:56 Permit 10.41.0.131:54236 10.41.100.1:135
10.41.0.131:54236 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:55 Permit 10.41.1.65:64183 125.252.238.16:443
1.9.140.18:52471 125.252.238.16:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:55 Permit 10.41.100.1:50867 10.10.1.40:53
10.41.100.1:50867 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:55 Permit 10.41.0.131:47126 10.41.100.1:53
10.41.0.131:47126 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:55 Permit 10.41.200.58:61150 10.41.100.1:53
10.41.200.58:61150 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:55 Permit 10.41.100.1:50300 10.10.1.40:53
10.41.100.1:50300 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:55 Permit 10.41.1.65:52431 10.41.100.1:53
10.41.1.65:52431 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:55 Permit 10.41.0.131:56447 8.8.8.8:53
1.9.140.18:17776 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:55 Permit 10.41.5.80:61070 104.103.70.10:80
1.9.140.18:60962 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:55 Permit 10.41.100.1:67 10.41.1.82:68
10.41.100.1:67 10.41.1.82:68 0 sec 0 0
DHCP Creation
2018-12-10 10:18:55 Permit 10.41.1.54:52551 10.41.100.11:139
10.41.1.54:52551 10.41.100.11:139 0 sec 0 0
NETBIOS (SSN) Creation
2018-12-10 10:18:55 Permit 10.41.100.1:64871 10.10.1.24:53
10.41.100.1:64871 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:55 Permit 10.41.100.1:49726 10.10.1.24:53
10.41.100.1:49726 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:55 Permit 10.41.100.1:65501 10.10.1.24:53
10.41.100.1:65501 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:55 Permit 10.41.100.1:49449 10.10.1.4:53
10.41.100.1:49449 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:55 Permit 10.41.100.1:65150 10.10.1.4:53
10.41.100.1:65150 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:55 Permit 10.41.200.58:58415 10.41.100.2:2967
10.41.200.58:58415 10.41.100.2:2967 0 sec 0 0
TCP PORT 2967 Creation
2018-12-10 10:18:55 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:55 Permit 10.41.100.1:49866 10.10.1.4:53
10.41.100.1:49866 10.10.1.4:53 60 sec 75 0
DNS Close - AGE OUT
2018-12-10 10:18:55 Permit 10.41.100.1:50580 10.10.1.40:53
10.41.100.1:50580 10.10.1.40:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:55 Permit 10.41.200.53:50708 172.217.26.142:443
1.9.140.18:54393 172.217.26.142:443 244 sec 4006 6710
HTTPS Close - TCP FIN
2018-12-10 10:18:55 Permit 10.41.2.74:56346 52.51.230.32:443
1.9.140.18:51779 52.51.230.32:443 12 sec 262 142
HTTPS Close - TCP FIN
2018-12-10 10:18:55 Permit 10.41.100.1:64993 10.10.1.24:53
10.41.100.1:64993 10.10.1.24:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:55 Permit 10.41.100.1:65111 10.10.1.24:53
10.41.100.1:65111 10.10.1.24:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:55 Permit 10.41.2.74:56347 52.218.36.3:443
1.9.140.18:25221 52.218.36.3:443 10 sec 2622 6784
HTTPS Close - TCP RST
2018-12-10 10:18:55 Permit 10.41.1.55:52467 23.94.187.84:443
1.9.140.18:15589 23.94.187.84:443 4 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:18:55 Permit 10.41.0.131:54224 10.41.100.1:135
10.41.0.131:54224 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:55 Permit 10.41.5.72:63696 10.41.100.1:53
10.41.5.72:63696 10.41.100.1:53 16 sec 79 79
DNS Close - RESP
2018-12-10 10:18:55 Permit 10.41.0.131:54226 10.41.100.1:135
10.41.0.131:54226 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:55 Permit 10.41.200.74:61655 10.41.100.1:53
10.41.200.74:61655 10.41.100.1:53 14 sec 79 79
DNS Close - RESP
2018-12-10 10:18:55 Permit 10.41.1.57:62153 10.41.100.7:60313
10.41.1.57:62153 10.41.100.7:60313 3 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:55 Permit 10.41.0.131:54227 10.41.100.1:135
10.41.0.131:54227 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:55 Permit 10.41.0.131:33789 10.41.100.1:49154
10.41.0.131:33789 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:55 Permit 10.41.0.131:33786 10.41.100.1:49154
10.41.0.131:33786 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:55 Permit 10.41.0.131:54223 10.41.100.1:135
10.41.0.131:54223 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:54 Permit 10.41.2.74:56394 23.15.23.33:443
1.9.140.18:34696 23.15.23.33:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:54 Permit 10.41.0.131:33796 10.41.100.1:49154
10.41.0.131:33796 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:54 Permit 10.41.0.131:54234 10.41.100.1:135
10.41.0.131:54234 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:54 Permit 10.41.0.131:54233 10.41.100.1:135
10.41.0.131:54233 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:54 Permit 10.41.200.58:58415 10.41.100.2:2967
10.41.200.58:58415 10.41.100.2:2967 0 sec 0 0
TCP PORT 2967 Creation
2018-12-10 10:18:54 Permit 10.41.100.1:49510 10.10.1.40:53
10.41.100.1:49510 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:54 Permit 10.41.2.74:63071 10.41.100.1:53
10.41.2.74:63071 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:54 Permit 10.41.100.1:50388 10.10.1.4:53
10.41.100.1:50388 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:54 Permit 10.41.100.1:49990 10.10.1.4:53
10.41.100.1:49990 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:54 Permit 10.41.100.1:49498 10.10.1.4:53
10.41.100.1:49498 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:54 Permit 10.41.1.54:52550 10.41.100.11:445
10.41.1.54:52550 10.41.100.11:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:18:53 Deny 10.41.5.81:63181 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 32 HTTPS Traffic
Denied
2018-12-10 10:18:53 Permit 10.41.100.1:49536 10.10.1.40:53
10.41.100.1:49536 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:53 Permit 10.41.5.81:55010 10.41.100.1:53
10.41.5.81:55010 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:53 Permit 10.41.1.51:53322 10.41.100.7:60313
10.41.1.51:53322 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:53 Permit 10.41.2.74:56393 23.15.23.33:443
1.9.140.18:58269 23.15.23.33:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:53 Permit 10.41.0.131:33793 10.41.100.1:49154
10.41.0.131:33793 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:53 Permit 10.41.0.131:54231 10.41.100.1:135
10.41.0.131:54231 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:53 Permit 10.41.0.131:54230 10.41.100.1:135
10.41.0.131:54230 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:53 Permit 10.41.100.1:65503 10.10.1.40:53
10.41.100.1:65503 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:53 Permit 10.41.2.74:61719 10.41.100.1:53
10.41.2.74:61719 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:53 Permit 10.41.1.58:64129 10.41.100.11:139
10.41.1.58:64129 10.41.100.11:139 0 sec 0 0
NETBIOS (SSN) Creation
2018-12-10 10:18:53 Permit 10.41.100.1:50007 10.10.1.24:53
10.41.100.1:50007 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:53 Permit 10.41.100.1:50880 10.10.1.24:53
10.41.100.1:50880 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:53 Permit 10.41.100.1:49737 10.10.1.24:53
10.41.100.1:49737 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:53 Permit 10.41.100.1:50425 10.10.1.4:53
10.41.100.1:50425 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:53 Permit 10.41.100.1:50489 10.10.1.4:53
10.41.100.1:50489 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:53 Permit 10.41.100.1:65406 10.10.1.4:53
10.41.100.1:65406 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:53 Permit 10.41.100.1:65022 10.10.1.4:53
10.41.100.1:65022 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:53 Permit 10.41.100.1:49969 10.10.1.4:53
10.41.100.1:49969 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:53 Permit 10.41.2.74:56391 34.254.116.80:443
1.9.140.18:13514 34.254.116.80:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:53 Permit 10.41.2.74:56392 106.75.125.26:443
1.9.140.18:44483 106.75.125.26:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:53 Permit 10.41.2.74:56389 34.247.224.239:443
1.9.140.18:49931 34.247.224.239:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:53 Permit 10.41.2.74:56390 117.121.28.4:443
1.9.140.18:18958 117.121.28.4:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:53 Permit 10.41.100.1:65342 10.10.1.4:53
10.41.100.1:65342 10.10.1.4:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:53 Permit 10.41.200.55:51327 172.217.166.142:443
1.9.140.18:35276 172.217.166.142:443 220 sec 1947 4686
HTTPS Close - TCP RST
2018-12-10 10:18:53 Permit 10.41.5.80:61069 104.103.70.10:80
1.9.140.18:27508 104.103.70.10:80 2 sec 804 38192
HTTP Close - TCP RST
2018-12-10 10:18:53 Permit 10.41.100.1:50450 10.10.1.4:53
10.41.100.1:50450 10.10.1.4:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:53 Permit 10.41.100.1:49636 10.10.1.4:53
10.41.100.1:49636 10.10.1.4:53 60 sec 86 0
DNS Close - AGE OUT
2018-12-10 10:18:53 Permit 10.41.1.65:63818 13.57.162.22:80
1.9.140.18:21247 13.57.162.22:80 320 sec 2185 1554
HTTP Close - TCP FIN
2018-12-10 10:18:53 Permit 10.41.2.74:56380 157.240.10.35:443
1.9.140.18:42747 157.240.10.35:443 3 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:18:53 Permit 10.41.100.1:49704 10.10.1.24:53
10.41.100.1:49704 10.10.1.24:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:53 Permit 10.41.1.65:64172 103.243.220.231:80
1.9.140.18:9489 103.243.220.231:80 37 sec 6302 6042
HTTP Close - TCP RST
2018-12-10 10:18:53 Permit 10.41.2.74:56379 157.240.10.35:443
1.9.140.18:43407 157.240.10.35:443 3 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:18:53 Permit 10.41.2.74:56378 157.240.10.35:443
1.9.140.18:46314 157.240.10.35:443 3 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:18:53 Permit 10.41.100.1:50067 10.10.1.24:53
10.41.100.1:50067 10.10.1.24:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:53 Permit 10.41.1.65:64173 72.34.250.78:443
1.9.140.18:56639 72.34.250.78:443 37 sec 332 284
HTTPS Close - TCP RST
2018-12-10 10:18:53 Permit 10.41.1.65:63878 125.252.238.16:443
1.9.140.18:19909 125.252.238.16:443 658 sec 5014 7310
HTTPS Close - TCP RST
2018-12-10 10:18:53 Permit 10.41.100.1:49264 10.10.1.24:53
10.41.100.1:49264 10.10.1.24:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:53 Permit 10.41.1.59:58820 172.217.166.142:443
1.9.140.18:49348 172.217.166.142:443 245 sec 4926 6552
HTTPS Close - TCP FIN
2018-12-10 10:18:53 Permit 10.41.100.1:65525 10.10.1.40:53
10.41.100.1:65525 10.10.1.40:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:53 Permit 10.41.1.65:64101 13.229.175.234:443
1.9.140.18:54029 13.229.175.234:443 161 sec 8654 4040
HTTPS Close - TCP RST
2018-12-10 10:18:53 Permit 10.41.100.1:50785 10.10.1.24:53
10.41.100.1:50785 10.10.1.24:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:53 Permit 10.41.1.65:64171 72.34.250.78:443
1.9.140.18:10393 72.34.250.78:443 37 sec 2641 1603
HTTPS Close - TCP RST
2018-12-10 10:18:53 Permit 10.41.1.65:64055 151.101.78.49:80
1.9.140.18:17637 151.101.78.49:80 589 sec 67277 7272
HTTP Close - TCP FIN
2018-12-10 10:18:53 Permit 10.41.0.131:33331 8.8.8.8:53
1.9.140.18:63036 8.8.8.8:53 3 sec 82 150
DNS Close - RESP
2018-12-10 10:18:53 Permit 10.41.1.65:63810 173.241.248.143:80
1.9.140.18:55673 173.241.248.143:80 321 sec 4197 1595
HTTP Close - TCP FIN
2018-12-10 10:18:53 Permit 10.41.200.2:49154 10.41.100.1:53
10.41.200.2:49154 10.41.100.1:53 14 sec 76 76
DNS Close - RESP
2018-12-10 10:18:53 Permit 10.41.0.131:54219 10.41.100.1:135
10.41.0.131:54219 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:53 Permit 10.41.1.62:63687 10.41.100.1:135
10.41.1.62:63687 10.41.100.1:135 15 sec 770 594
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:53 Permit 10.41.200.9:49154 10.41.100.1:53
10.41.200.9:49154 10.41.100.1:53 14 sec 76 76
DNS Close - RESP
2018-12-10 10:18:53 Permit 10.41.0.131:54220 10.41.100.1:135
10.41.0.131:54220 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:53 Permit 10.41.200.59:49580 10.41.100.1:53
10.41.200.59:49580 10.41.100.1:53 15 sec 83 83
DNS Close - RESP
2018-12-10 10:18:53 Permit 10.41.0.131:33782 10.41.100.1:49154
10.41.0.131:33782 10.41.100.1:49154 4 sec 3808 4196
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:53 Permit 10.41.1.55:52457 10.41.100.11:445
10.41.1.55:52457 10.41.100.11:445 21 sec 136 0
TCP PORT 445 Close - AGE OUT
2018-12-10 10:18:53 Permit 10.41.1.55:52456 10.41.100.11:445
10.41.1.55:52456 10.41.100.11:445 21 sec 136 0
TCP PORT 445 Close - AGE OUT
2018-12-10 10:18:53 Permit 10.41.1.55:52458 10.41.100.11:139
10.41.1.55:52458 10.41.100.11:139 21 sec 136 0
NETBIOS (SSN) Close - AGE OUT
2018-12-10 10:18:53 Permit 10.41.1.55:52455 10.41.100.11:445
10.41.1.55:52455 10.41.100.11:445 21 sec 136 0
TCP PORT 445 Close - AGE OUT
2018-12-10 10:18:53 Permit 10.41.1.55:52454 10.41.100.11:445
10.41.1.55:52454 10.41.100.11:445 22 sec 136 0
TCP PORT 445 Close - AGE OUT
2018-12-10 10:18:52 Permit 10.41.2.74:56388 34.254.116.80:443
1.9.140.18:33134 34.254.116.80:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:52 Permit 10.41.2.74:56387 106.75.125.26:443
1.9.140.18:43988 106.75.125.26:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:52 Permit 10.41.2.74:56385 52.77.37.7:443
1.9.140.18:34748 52.77.37.7:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:52 Permit 10.41.2.74:56386 139.162.56.194:443
1.9.140.18:32469 139.162.56.194:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:52 Permit 10.41.2.74:56384 34.247.224.239:443
1.9.140.18:40697 34.247.224.239:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:52 Permit 10.41.100.1:49500 10.10.1.40:53
10.41.100.1:49500 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:52 Permit 10.41.2.74:62987 10.41.100.1:53
10.41.2.74:62987 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:52 Permit 10.41.2.74:56383 35.190.235.86:443
1.9.140.18:62352 35.190.235.86:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:52 Permit 10.41.100.1:64990 10.10.1.40:53
10.41.100.1:64990 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:52 Permit 10.41.2.74:57369 10.41.100.1:53
10.41.2.74:57369 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:52 Permit 10.41.2.74:56382 117.121.28.4:443
1.9.140.18:28045 117.121.28.4:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:52 Permit 10.41.100.1:49928 10.10.1.40:53
10.41.100.1:49928 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:52 Permit 10.41.100.1:49965 10.10.1.40:53
10.41.100.1:49965 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:52 Permit 10.41.100.1:65270 10.10.1.40:53
10.41.100.1:65270 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:52 Permit 10.41.2.74:62556 10.41.100.1:53
10.41.2.74:62556 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:52 Permit 10.41.2.74:60817 10.41.100.1:53
10.41.2.74:60817 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:52 Permit 10.41.2.74:62426 10.41.100.1:53
10.41.2.74:62426 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:52 Permit 10.41.100.1:50635 10.10.1.40:53
10.41.100.1:50635 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:52 Permit 10.41.100.1:50725 10.10.1.40:53
10.41.100.1:50725 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:52 Permit 10.41.2.74:50294 10.41.100.1:53
10.41.2.74:50294 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:52 Permit 10.41.2.74:53848 10.41.100.1:53
10.41.2.74:53848 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:52 Permit 10.41.100.1:49954 10.10.1.40:53
10.41.100.1:49954 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:52 Permit 10.41.2.74:60095 10.41.100.1:53
10.41.2.74:60095 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:52 Permit 10.41.1.57:62153 10.41.100.7:60313
10.41.1.57:62153 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:52 Permit 10.41.0.131:33789 10.41.100.1:49154
10.41.0.131:33789 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:52 Permit 10.41.0.131:54227 10.41.100.1:135
10.41.0.131:54227 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:52 Permit 10.41.0.131:54226 10.41.100.1:135
10.41.0.131:54226 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:52 Permit 10.41.1.58:64128 10.41.100.11:445
10.41.1.58:64128 10.41.100.11:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:18:52 Permit 10.41.100.1:50693 10.10.1.24:53
10.41.100.1:50693 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:52 Permit 10.41.100.1:50402 10.10.1.4:53
10.41.100.1:50402 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:52 Permit 10.62.1.52:55883 10.41.100.1:49155
10.62.1.52:55883 10.41.100.1:49155 0 sec 0 0
TCP PORT 49155 Creation
2018-12-10 10:18:52 Permit 10.41.200.54:55226 172.217.166.131:443
1.9.140.18:51482 172.217.166.131:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:52 Permit 10.41.2.74:56381 23.15.23.33:443
1.9.140.18:56260 23.15.23.33:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:52 Permit 10.62.1.52:55882 10.41.100.1:135
10.62.1.52:55882 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:51 Permit 10.41.100.1:64871 10.10.1.40:53
10.41.100.1:64871 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:51 Permit 10.41.2.74:62034 10.41.100.1:53
10.41.2.74:62034 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:51 Permit 10.41.1.55:52467 23.94.187.84:443
1.9.140.18:15589 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:51 Permit 10.41.5.80:61069 104.103.70.10:80
1.9.140.18:27508 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:51 Permit 10.41.100.1:49726 10.10.1.40:53
10.41.100.1:49726 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:51 Permit 10.41.100.1:65501 10.10.1.40:53
10.41.100.1:65501 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:51 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:51 Permit 10.41.100.1:49449 10.10.1.24:53
10.41.100.1:49449 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:51 Permit 10.41.100.1:65150 10.10.1.24:53
10.41.100.1:65150 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:51 Permit 10.41.100.1:50422 10.10.1.4:53
10.41.100.1:50422 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:51 Permit 10.41.100.1:49705 10.10.1.4:53
10.41.100.1:49705 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:51 Permit 10.41.100.1:50011 10.10.1.4:53
10.41.100.1:50011 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:51 Permit 10.41.100.1:50871 10.10.1.4:53
10.41.100.1:50871 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:51 Permit 10.41.100.1:65296 10.10.1.4:53
10.41.100.1:65296 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:51 Permit 10.41.0.131:33786 10.41.100.1:49154
10.41.0.131:33786 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:51 Permit 10.41.0.131:54224 10.41.100.1:135
10.41.0.131:54224 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:51 Permit 10.41.0.131:54223 10.41.100.1:135
10.41.0.131:54223 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:51 Permit 10.41.1.65:64170 103.243.220.231:80
1.9.140.18:33969 103.243.220.231:80 35 sec 6238 1385
HTTP Close - TCP RST
2018-12-10 10:18:51 Permit 10.41.100.1:53 10.41.200.2:49154
10.41.100.1:53 10.41.200.2:49154 2 sec 76 0
UDP PORT 49154 Close - ICMP Unreach
2018-12-10 10:18:51 Permit 10.41.1.65:63807 173.241.248.143:80
1.9.140.18:26492 173.241.248.143:80 319 sec 4121 1416
HTTP Close - TCP FIN
2018-12-10 10:18:51 Permit 10.41.1.66:50558 172.217.31.110:443
1.9.140.18:44661 172.217.31.110:443 545 sec 7901 12233
HTTPS Close - TCP FIN
2018-12-10 10:18:51 Permit 10.41.2.74:56377 157.240.10.35:443
1.9.140.18:19832 157.240.10.35:443 1 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:18:51 Permit 10.41.5.80:61067 104.103.70.10:80
1.9.140.18:63611 104.103.70.10:80 5 sec 934 550
HTTP Close - TCP RST
2018-12-10 10:18:51 Permit 10.41.100.1:49866 10.10.1.24:53
10.41.100.1:49866 10.10.1.24:53 60 sec 75 0
DNS Close - AGE OUT
2018-12-10 10:18:51 Permit 10.41.1.65:63642 3.0.154.126:443
1.9.140.18:30100 3.0.154.126:443 421 sec 6358 39666
HTTPS Close - TCP RST
2018-12-10 10:18:51 Permit 10.41.1.65:63623 3.0.154.126:80
1.9.140.18:41803 3.0.154.126:80 431 sec 30992 148418
HTTP Close - TCP FIN
2018-12-10 10:18:51 Permit 10.41.1.65:63806 173.241.248.143:80
1.9.140.18:18184 173.241.248.143:80 319 sec 2395 1035
HTTP Close - TCP FIN
2018-12-10 10:18:51 Permit 10.41.100.1:50159 10.10.1.4:53
10.41.100.1:50159 10.10.1.4:53 60 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:18:51 Permit 10.41.100.2:51957 69.171.239.11:53
1.9.140.18:20987 69.171.239.11:53 2 sec 87 230
DNS Close - RESP
2018-12-10 10:18:51 Permit 10.41.2.74:56368 157.240.10.35:443
1.9.140.18:60096 157.240.10.35:443 3 sec 595 74
HTTPS Close - AGE OUT
2018-12-10 10:18:51 Permit 10.41.2.74:56362 157.240.10.35:443
1.9.140.18:40249 157.240.10.35:443 4 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:18:51 Permit 10.41.1.65:64174 103.243.221.51:80
1.9.140.18:60622 103.243.221.51:80 33 sec 21425 3330
HTTP Close - TCP RST
2018-12-10 10:18:51 Permit 10.41.1.65:63815 151.101.78.49:80
1.9.140.18:27571 151.101.78.49:80 318 sec 13095 1185
HTTP Close - TCP FIN
2018-12-10 10:18:51 Permit 10.41.2.74:56366 157.240.10.35:443
1.9.140.18:14326 157.240.10.35:443 3 sec 901 74
HTTPS Close - AGE OUT
2018-12-10 10:18:51 Permit 10.41.2.74:56369 157.240.10.35:443
1.9.140.18:8936 157.240.10.35:443 3 sec 595 74
HTTPS Close - AGE OUT
2018-12-10 10:18:51 Permit 10.41.2.74:56361 157.240.10.35:443
1.9.140.18:52732 157.240.10.35:443 4 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:18:51 Permit 10.41.100.1:64993 10.10.1.40:53
10.41.100.1:64993 10.10.1.40:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:51 Permit 10.41.100.1:65111 10.10.1.40:53
10.41.100.1:65111 10.10.1.40:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:51 Permit 10.41.200.51:52686 172.217.166.142:443
1.9.140.18:42182 172.217.166.142:443 6 sec 2698 5953
HTTPS Close - TCP FIN
2018-12-10 10:18:51 Permit 10.41.1.65:63817 195.201.56.60:80
1.9.140.18:13864 195.201.56.60:80 318 sec 2075 956
HTTP Close - TCP FIN
2018-12-10 10:18:51 Permit 10.41.1.51:53315 10.41.100.7:60313
10.41.1.51:53315 10.41.100.7:60313 3 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:51 Permit 10.41.0.131:54213 10.41.100.1:135
10.41.0.131:54213 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:51 Permit 10.41.0.131:54212 10.41.100.1:135
10.41.0.131:54212 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:51 Permit 10.41.0.131:33775 10.41.100.1:49154
10.41.0.131:33775 10.41.100.1:49154 4 sec 3808 4196
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:51 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 4 sec 87 162
DNS Close - RESP
2018-12-10 10:18:51 Permit 10.41.0.131:33779 10.41.100.1:49154
10.41.0.131:33779 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:51 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 245 176
DNS Close - RESP
2018-12-10 10:18:51 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 4 sec 87 162
DNS Close - RESP
2018-12-10 10:18:51 Permit 10.41.0.131:54217 10.41.100.1:135
10.41.0.131:54217 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:51 Permit 10.41.1.57:62152 10.41.100.7:60313
10.41.1.57:62152 10.41.100.7:60313 4 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:51 Permit 10.41.0.131:54216 10.41.100.1:135
10.41.0.131:54216 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:51 Permit 10.41.0.131:35663 10.41.100.1:53
10.41.0.131:35663 10.41.100.1:53 16 sec 82 82
DNS Close - RESP
2018-12-10 10:18:51 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 4 sec 86 151
DNS Close - RESP
2018-12-10 10:18:51 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 4 sec 87 162
DNS Close - RESP
2018-12-10 10:18:51 Permit 10.41.0.131:36289 10.41.100.1:53
10.41.0.131:36289 10.41.100.1:53 11 sec 82 82
DNS Close - RESP
2018-12-10 10:18:50 Permit 10.41.0.131:48372 10.41.100.1:53
10.41.0.131:48372 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:50 Permit 10.41.0.131:33331 8.8.8.8:53
1.9.140.18:63036 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:50 Permit 10.41.1.65:64182 103.243.221.51:80
1.9.140.18:4076 103.243.221.51:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:50 Permit 10.41.100.1:50388 10.10.1.24:53
10.41.100.1:50388 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:50 Permit 10.41.100.1:49990 10.10.1.24:53
10.41.100.1:49990 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:50 Permit 10.41.100.1:49498 10.10.1.24:53
10.41.100.1:49498 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:50 Permit 10.41.2.74:56380 157.240.10.35:443
1.9.140.18:42747 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:50 Permit 10.41.2.74:56379 157.240.10.35:443
1.9.140.18:43407 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:50 Permit 10.41.2.74:56378 157.240.10.35:443
1.9.140.18:46314 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:50 Permit 10.41.2.74:56377 157.240.10.35:443
1.9.140.18:19832 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:49 Permit 10.41.1.65:64181 72.34.250.78:443
1.9.140.18:32214 72.34.250.78:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:49 Permit 10.41.2.74:56376 23.15.23.33:443
1.9.140.18:58906 23.15.23.33:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:49 Permit 10.41.0.131:33782 10.41.100.1:49154
10.41.0.131:33782 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:49 Permit 10.41.0.131:54220 10.41.100.1:135
10.41.0.131:54220 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:49 Permit 10.41.0.131:54219 10.41.100.1:135
10.41.0.131:54219 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:49 Permit 10.41.1.65:64180 103.243.221.109:80
1.9.140.18:3693 103.243.221.109:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:49 Permit 10.41.1.65:64179 103.243.221.109:80
1.9.140.18:25659 103.243.221.109:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:49 Permit 10.41.200.54:55225 172.217.166.142:443
1.9.140.18:39552 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:49 Permit 10.41.100.1:50007 10.10.1.40:53
10.41.100.1:50007 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:49 Permit 10.41.1.65:64178 210.176.156.48:80
1.9.140.18:19673 210.176.156.48:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:49 Permit 10.41.1.65:58770 10.41.100.1:53
10.41.1.65:58770 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:49 Permit 10.41.100.1:50880 10.10.1.40:53
10.41.100.1:50880 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:49 Permit 10.41.1.65:54110 10.41.100.1:53
10.41.1.65:54110 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:49 Permit 10.41.1.65:64177 72.34.250.78:443
1.9.140.18:17234 72.34.250.78:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:49 Permit 10.41.100.1:49737 10.10.1.40:53
10.41.100.1:49737 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:49 Permit 10.41.2.74:53784 10.41.100.1:53
10.41.2.74:53784 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:49 Permit 10.41.5.80:63195 10.41.100.1:53
10.41.5.80:63195 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:49 Permit 10.41.100.1:50425 10.10.1.24:53
10.41.100.1:50425 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:49 Permit 10.41.100.1:50489 10.10.1.24:53
10.41.100.1:50489 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:49 Permit 10.41.100.1:65406 10.10.1.24:53
10.41.100.1:65406 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:49 Permit 10.41.100.1:65022 10.10.1.24:53
10.41.100.1:65022 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:49 Permit 10.41.100.1:49969 10.10.1.24:53
10.41.100.1:49969 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:49 Permit 10.41.100.1:53 10.41.200.2:49154
10.41.100.1:53 10.41.200.2:49154 0 sec 0 0
UDP PORT 49154 Creation
2018-12-10 10:18:49 Permit 10.41.100.1:53 10.41.200.9:49154
10.41.100.1:53 10.41.200.9:49154 0 sec 0 0
UDP PORT 49154 Creation
2018-12-10 10:18:49 Permit 10.41.100.2:51957 69.171.239.11:53
1.9.140.18:20987 69.171.239.11:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:49 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:49 Permit 10.41.100.1:49704 10.10.1.40:53
10.41.100.1:49704 10.10.1.40:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:49 Permit 10.41.100.1:49264 10.10.1.40:53
10.41.100.1:49264 10.10.1.40:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:49 Permit 10.41.2.74:56364 157.240.10.35:443
1.9.140.18:55929 157.240.10.35:443 2 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:18:49 Permit 10.41.2.74:56363 157.240.10.35:443
1.9.140.18:27660 157.240.10.35:443 2 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:18:49 Permit 10.41.2.74:56352 104.103.55.181:443
1.9.140.18:6573 104.103.55.181:443 4 sec 5347 1325
HTTPS Close - TCP FIN
2018-12-10 10:18:49 Permit 10.41.100.1:65342 10.10.1.24:53
10.41.100.1:65342 10.10.1.24:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:49 Permit 10.41.200.80:61005 117.18.237.151:443
1.9.140.18:17490 117.18.237.151:443 199 sec 7745 8560
HTTPS Close - TCP RST
2018-12-10 10:18:49 Permit 10.41.2.74:56367 157.240.10.35:443
1.9.140.18:4562 157.240.10.35:443 1 sec 901 74
HTTPS Close - AGE OUT
2018-12-10 10:18:49 Permit 10.41.100.1:50544 10.10.1.4:53
10.41.100.1:50544 10.10.1.4:53 60 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:18:49 Permit 10.41.100.1:65174 10.10.1.4:53
10.41.100.1:65174 10.10.1.4:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:49 Permit 10.41.100.1:50450 10.10.1.24:53
10.41.100.1:50450 10.10.1.24:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:49 Permit 10.41.2.74:56349 157.240.10.35:443
1.9.140.18:24018 157.240.10.35:443 4 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:18:49 Permit 10.41.100.1:49636 10.10.1.24:53
10.41.100.1:49636 10.10.1.24:53 60 sec 86 0
DNS Close - AGE OUT
2018-12-10 10:18:49 Permit 10.41.0.131:55619 8.8.8.8:53
1.9.140.18:10319 8.8.8.8:53 4 sec 82 150
DNS Close - RESP
2018-12-10 10:18:49 Permit 10.41.2.74:56337 104.103.55.181:443
1.9.140.18:9670 104.103.55.181:443 18 sec 36808 16196
HTTPS Close - TCP FIN
2018-12-10 10:18:49 Permit 10.41.100.1:50123 10.10.1.4:53
10.41.100.1:50123 10.10.1.4:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:49 Permit 10.41.2.74:56350 157.240.10.35:443
1.9.140.18:38850 157.240.10.35:443 4 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:18:49 Permit 10.41.100.1:50785 10.10.1.40:53
10.41.100.1:50785 10.10.1.40:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:49 Permit 10.41.100.1:50067 10.10.1.40:53
10.41.100.1:50067 10.10.1.40:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:49 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 2 sec 245 80
DNS Close - RESP
2018-12-10 10:18:49 Permit 10.41.1.59:62810 10.41.100.1:53
10.41.1.59:62810 10.41.100.1:53 16 sec 89 89
DNS Close - RESP
2018-12-10 10:18:49 Permit 10.41.0.131:33769 10.41.100.1:49154
10.41.0.131:33769 10.41.100.1:49154 5 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:49 Permit 10.41.0.131:33772 10.41.100.1:49154
10.41.0.131:33772 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:49 Permit 10.41.0.131:54209 10.41.100.1:135
10.41.0.131:54209 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:49 Permit 10.41.1.65:64351 10.41.100.1:53
10.41.1.65:64351 10.41.100.1:53 16 sec 93 93
DNS Close - RESP
2018-12-10 10:18:49 Permit 10.41.0.131:54210 10.41.100.1:135
10.41.0.131:54210 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:48 Permit 10.41.2.74:56375 13.33.186.34:443
1.9.140.18:56463 13.33.186.34:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:48 Permit 10.41.2.74:56374 13.33.186.34:443
1.9.140.18:52989 13.33.186.34:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:48 Permit 10.41.2.74:56373 13.33.186.34:443
1.9.140.18:33748 13.33.186.34:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:48 Permit 10.41.2.74:56372 13.33.186.34:443
1.9.140.18:5368 13.33.186.34:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:48 Permit 10.41.2.74:56371 13.33.186.34:443
1.9.140.18:11393 13.33.186.34:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:48 Permit 10.41.2.74:56370 13.33.186.34:443
1.9.140.18:16415 13.33.186.34:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:48 Permit 10.41.1.51:53315 10.41.100.7:60313
10.41.1.51:53315 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:48 Permit 10.41.100.1:50693 10.10.1.40:53
10.41.100.1:50693 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:48 Permit 10.41.2.74:63224 10.41.100.1:53
10.41.2.74:63224 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:48 Permit 10.41.0.131:33779 10.41.100.1:49154
10.41.0.131:33779 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:48 Permit 10.41.0.131:54217 10.41.100.1:135
10.41.0.131:54217 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:48 Permit 10.41.0.131:54216 10.41.100.1:135
10.41.0.131:54216 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:48 Permit 10.41.2.74:56369 157.240.10.35:443
1.9.140.18:8936 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:48 Permit 10.41.2.74:56368 157.240.10.35:443
1.9.140.18:60096 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:48 Permit 10.41.2.74:56367 157.240.10.35:443
1.9.140.18:4562 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:48 Permit 10.41.2.74:56366 157.240.10.35:443
1.9.140.18:14326 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:48 Permit 10.41.100.1:50402 10.10.1.24:53
10.41.100.1:50402 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.2.74:56365 23.15.23.33:443
1.9.140.18:32043 23.15.23.33:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:47 Permit 10.41.2.74:56364 157.240.10.35:443
1.9.140.18:55929 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:47 Permit 10.41.200.54:55224 172.217.26.142:443
1.9.140.18:49761 172.217.26.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:47 Permit 10.41.2.74:56363 157.240.10.35:443
1.9.140.18:27660 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:47 Permit 10.41.2.74:56362 157.240.10.35:443
1.9.140.18:40249 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:47 Permit 10.41.100.1:49449 10.10.1.40:53
10.41.100.1:49449 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.2.74:63002 10.41.100.1:53
10.41.2.74:63002 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.2.74:56361 157.240.10.35:443
1.9.140.18:52732 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:47 Permit 10.41.1.57:62152 10.41.100.7:60313
10.41.1.57:62152 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:47 Permit 10.41.0.131:33775 10.41.100.1:49154
10.41.0.131:33775 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:47 Permit 10.41.0.131:54213 10.41.100.1:135
10.41.0.131:54213 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:47 Permit 10.41.0.131:54212 10.41.100.1:135
10.41.0.131:54212 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:47 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.100.1:65150 10.10.1.40:53
10.41.100.1:65150 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.100.1:50422 10.10.1.24:53
10.41.100.1:50422 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.100.1:49705 10.10.1.24:53
10.41.100.1:49705 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.100.1:50011 10.10.1.24:53
10.41.100.1:50011 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.100.1:50871 10.10.1.24:53
10.41.100.1:50871 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.100.1:65296 10.10.1.24:53
10.41.100.1:65296 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.100.1:49398 10.10.1.4:53
10.41.100.1:49398 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.100.1:50388 10.10.1.40:53
10.41.100.1:50388 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:47 Permit 10.41.1.55:52464 23.94.187.84:443
1.9.140.18:52835 23.94.187.84:443 2 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:18:47 Permit 10.41.100.1:50450 10.10.1.40:53
10.41.100.1:50450 10.10.1.40:53 60 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:47 Permit 10.41.100.1:49866 10.10.1.40:53
10.41.100.1:49866 10.10.1.40:53 60 sec 75 0
DNS Close - AGE OUT
2018-12-10 10:18:47 Permit 10.41.2.74:56340 104.103.55.181:443
1.9.140.18:1675 104.103.55.181:443 16 sec 17127 2991
HTTPS Close - TCP FIN
2018-12-10 10:18:47 Permit 10.41.100.1:50159 10.10.1.24:53
10.41.100.1:50159 10.10.1.24:53 60 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:18:47 Permit 10.41.200.59:50153 172.217.166.138:443
1.9.140.18:22456 172.217.166.138:443 442 sec 5548 6494
HTTPS Close - TCP FIN
2018-12-10 10:18:47 Permit 10.41.200.60:65195 172.217.31.78:80
1.9.140.18:25988 172.217.31.78:80 75 sec 912 1276
HTTP Close - TCP FIN
2018-12-10 10:18:47 Permit 10.41.100.1:49617 10.10.1.4:53
10.41.100.1:49617 10.10.1.4:53 60 sec 87 0
DNS Close - AGE OUT
2018-12-10 10:18:47 Permit 10.41.2.74:56351 157.240.10.35:443
1.9.140.18:30696 157.240.10.35:443 2 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:18:47 Permit 10.41.2.74:56348 157.240.10.35:443
1.9.140.18:32545 157.240.10.35:443 2 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:18:47 Permit 10.41.100.1:65263 10.10.1.4:53
10.41.100.1:65263 10.10.1.4:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:47 Permit 10.41.2.74:56343 157.240.10.35:443
1.9.140.18:37331 157.240.10.35:443 4 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:18:47 Permit 10.41.2.74:56344 157.240.10.35:443
1.9.140.18:55148 157.240.10.35:443 4 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:18:47 Permit 10.41.5.80:61066 104.103.70.8:80
1.9.140.18:51256 104.103.70.8:80 1 sec 802 38192
HTTP Close - TCP RST
2018-12-10 10:18:47 Permit 10.41.200.60:65201 172.217.31.78:80
1.9.140.18:55426 172.217.31.78:80 2 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:18:47 Permit 10.41.2.74:56341 157.240.10.35:443
1.9.140.18:12525 157.240.10.35:443 4 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:18:47 Permit 10.41.200.60:65197 17.248.154.139:443
1.9.140.18:47827 17.248.154.139:443 65 sec 3121 7531
HTTPS Close - TCP FIN
2018-12-10 10:18:47 Permit 10.41.1.59:58854 10.41.100.1:53
10.41.1.59:58854 10.41.100.1:53 15 sec 83 83
DNS Close - RESP
2018-12-10 10:18:47 Permit 10.41.1.51:53314 10.41.100.7:60313
10.41.1.51:53314 10.41.100.7:60313 4 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:47 Permit 10.41.0.131:54206 10.41.100.1:135
10.41.0.131:54206 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:47 Permit 10.41.0.131:33765 10.41.100.1:49154
10.41.0.131:33765 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:47 Permit 10.41.0.131:54207 10.41.100.1:135
10.41.0.131:54207 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:47 Permit 10.41.200.60:65200 10.41.100.1:88
10.41.200.60:65200 10.41.100.1:88 3 sec 1600 1610
TCP PORT 88 Close - TCP RST
2018-12-10 10:18:47 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 321 92
DNS Close - RESP
2018-12-10 10:18:47 Permit 10.41.0.131:54203 10.41.100.1:135
10.41.0.131:54203 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:47 Permit 10.41.0.131:54202 10.41.100.1:135
10.41.0.131:54202 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:46 Permit 10.41.200.60:65204 210.187.22.204:443
1.9.140.18:43085 210.187.22.204:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:46 Permit 10.41.200.60:65203 172.217.31.78:443
1.9.140.18:38231 172.217.31.78:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:46 Permit 10.41.2.74:56360 172.217.166.131:443
1.9.140.18:39879 172.217.166.131:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:46 Permit 10.41.100.1:49990 10.10.1.40:53
10.41.100.1:49990 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:46 Permit 10.41.2.74:63603 10.41.100.1:53
10.41.2.74:63603 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:46 Permit 10.41.100.1:49498 10.10.1.40:53
10.41.100.1:49498 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:46 Permit 10.41.5.80:56892 10.41.100.1:53
10.41.5.80:56892 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:46 Permit 10.41.5.80:61067 104.103.70.10:80
1.9.140.18:63611 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:46 Permit 10.41.5.80:61066 104.103.70.8:80
1.9.140.18:51256 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:46 Permit 10.41.0.131:33772 10.41.100.1:49154
10.41.0.131:33772 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:46 Permit 10.41.0.131:54210 10.41.100.1:135
10.41.0.131:54210 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:46 Permit 10.41.0.131:54209 10.41.100.1:135
10.41.0.131:54209 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:46 Permit 10.41.100.1:50425 10.10.1.40:53
10.41.100.1:50425 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:46 Permit 10.41.2.74:59839 10.41.100.1:53
10.41.2.74:59839 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:46 Permit 10.41.2.74:56359 216.58.196.34:443
1.9.140.18:4598 216.58.196.34:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:45 Permit 10.41.2.74:56358 50.112.254.249:443
1.9.140.18:48660 50.112.254.249:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:45 Permit 10.41.100.1:50489 10.10.1.40:53
10.41.100.1:50489 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:45 Permit 10.41.2.74:55935 10.41.100.1:53
10.41.2.74:55935 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:45 Permit 10.41.100.1:65406 10.10.1.40:53
10.41.100.1:65406 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:45 Permit 10.41.0.131:33273 10.41.100.1:53
10.41.0.131:33273 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:45 Permit 10.41.2.74:56357 50.112.254.249:443
1.9.140.18:26368 50.112.254.249:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:45 Permit 10.41.200.60:65201 172.217.31.78:80
1.9.140.18:55426 172.217.31.78:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:45 Permit 10.41.100.1:65022 10.10.1.40:53
10.41.100.1:65022 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:45 Permit 10.41.2.74:58937 10.41.100.1:53
10.41.2.74:58937 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:45 Permit 10.41.1.55:52464 23.94.187.84:443
1.9.140.18:52835 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:45 Permit 10.41.2.74:56356 125.252.233.148:443
1.9.140.18:16398 125.252.233.148:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:45 Permit 10.41.100.1:49969 10.10.1.40:53
10.41.100.1:49969 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:45 Permit 10.41.2.74:54282 10.41.100.1:53
10.41.2.74:54282 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:45 Permit 10.41.0.131:55619 8.8.8.8:53
1.9.140.18:10319 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:45 Permit 10.41.2.74:56355 52.218.36.3:443
1.9.140.18:9105 52.218.36.3:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:45 Permit 10.41.100.1:50168 10.10.1.4:53
10.41.100.1:50168 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:45 Permit 10.41.100.1:49661 10.10.1.4:53
10.41.100.1:49661 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:45 Permit 10.41.2.74:56354 104.103.55.181:443
1.9.140.18:33083 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:45 Permit 10.41.2.74:56353 104.103.55.181:443
1.9.140.18:56044 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:45 Permit 10.41.2.74:56352 104.103.55.181:443
1.9.140.18:6573 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:45 Permit 10.41.2.74:56351 157.240.10.35:443
1.9.140.18:30696 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:45 Permit 10.41.2.74:56350 157.240.10.35:443
1.9.140.18:38850 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:45 Permit 10.41.2.74:56349 157.240.10.35:443
1.9.140.18:24018 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:45 Permit 10.41.2.74:56348 157.240.10.35:443
1.9.140.18:32545 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:45 Permit 10.41.2.74:56347 52.218.36.3:443
1.9.140.18:25221 52.218.36.3:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:45 Permit 10.41.100.1:50402 10.10.1.40:53
10.41.100.1:50402 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:45 Permit 10.41.2.74:62794 10.41.100.1:53
10.41.2.74:62794 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:45 Permit 10.41.200.51:52686 172.217.166.142:443
1.9.140.18:42182 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:45 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:45 Permit 10.41.5.80:61064 104.103.70.8:80
1.9.140.18:62298 104.103.70.8:80 1 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:18:45 Permit 10.41.100.1:65342 10.10.1.40:53
10.41.100.1:65342 10.10.1.40:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:45 Permit 10.41.100.1:64877 10.10.1.4:53
10.41.100.1:64877 10.10.1.4:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:45 Permit 10.41.100.1:50251 10.10.1.4:53
10.41.100.1:50251 10.10.1.4:53 60 sec 85 0
DNS Close - AGE OUT
2018-12-10 10:18:45 Permit 10.41.2.74:56345 157.240.10.35:443
1.9.140.18:28666 157.240.10.35:443 2 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:18:45 Permit 10.41.100.1:50544 10.10.1.24:53
10.41.100.1:50544 10.10.1.24:53 60 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:18:45 Permit 10.41.100.1:50123 10.10.1.24:53
10.41.100.1:50123 10.10.1.24:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:45 Permit 10.41.100.1:49409 10.10.1.4:53
10.41.100.1:49409 10.10.1.4:53 59 sec 95 0
DNS Close - AGE OUT
2018-12-10 10:18:45 Permit 10.41.100.1:65174 10.10.1.24:53
10.41.100.1:65174 10.10.1.24:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:45 Permit 10.41.100.1:49636 10.10.1.40:53
10.41.100.1:49636 10.10.1.40:53 60 sec 86 0
DNS Close - AGE OUT
2018-12-10 10:18:45 Permit 10.41.0.131:54196 10.41.100.1:135
10.41.0.131:54196 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:45 Permit 10.41.0.131:33758 10.41.100.1:49154
10.41.0.131:33758 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:45 Permit 10.41.0.131:33762 10.41.100.1:49154
10.41.0.131:33762 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:45 Permit 10.41.0.131:54008 10.41.100.1:53
10.41.0.131:54008 10.41.100.1:53 15 sec 78 78
DNS Close - RESP
2018-12-10 10:18:45 Permit 10.41.0.131:54195 10.41.100.1:135
10.41.0.131:54195 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:45 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 4 sec 245 81
DNS Close - RESP
2018-12-10 10:18:45 Permit 10.41.1.57:62151 10.41.100.7:60313
10.41.1.57:62151 10.41.100.7:60313 3 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:45 Permit 10.41.0.131:54199 10.41.100.1:135
10.41.0.131:54199 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:45 Permit 10.41.0.131:54200 10.41.100.1:135
10.41.0.131:54200 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:45 Permit 10.41.200.58:61998 10.41.100.1:53
10.41.200.58:61998 10.41.100.1:53 16 sec 87 87
DNS Close - RESP
2018-12-10 10:18:44 Deny 10.41.5.80:61060 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 28 HTTPS Traffic
Denied
2018-12-10 10:18:44 Permit 10.41.0.131:33769 10.41.100.1:49154
10.41.0.131:33769 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:44 Permit 10.41.0.131:54207 10.41.100.1:135
10.41.0.131:54207 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:44 Permit 10.41.0.131:54206 10.41.100.1:135
10.41.0.131:54206 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:44 Deny 10.41.200.62:64997 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 28 HTTPS Traffic
Denied
2018-12-10 10:18:44 Permit 10.41.100.2:62537 10.3.1.12:53
10.41.100.2:62537 10.3.1.12:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:44 Permit 10.41.100.2:62537 10.10.1.4:53
10.41.100.2:62537 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:44 Permit 10.41.100.2:65506 10.3.1.12:53
10.41.100.2:65506 10.3.1.12:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:44 Permit 10.41.100.2:65506 10.10.1.4:53
10.41.100.2:65506 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:44 Permit 10.41.200.60:65200 10.41.100.1:88
10.41.200.60:65200 10.41.100.1:88 0 sec 0 0
TCP PORT 88 Creation
2018-12-10 10:18:44 Permit 10.41.200.60:65199 10.41.100.1:445
10.41.200.60:65199 10.41.100.1:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:18:44 Permit 10.41.100.1:65251 10.10.1.4:53
10.41.100.1:65251 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:44 Permit 10.41.100.1:49497 10.10.1.4:53
10.41.100.1:49497 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:44 Permit 10.41.5.80:61064 104.103.70.8:80
1.9.140.18:62298 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:43 Permit 10.41.2.74:56346 52.51.230.32:443
1.9.140.18:51779 52.51.230.32:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:43 Permit 10.41.2.74:56345 157.240.10.35:443
1.9.140.18:28666 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:43 Permit 10.41.2.74:56344 157.240.10.35:443
1.9.140.18:55148 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:43 Permit 10.41.2.74:56343 157.240.10.35:443
1.9.140.18:37331 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:43 Permit 10.41.2.74:56342 52.51.230.32:443
1.9.140.18:50193 52.51.230.32:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:43 Permit 10.41.2.74:56341 157.240.10.35:443
1.9.140.18:12525 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:43 Permit 10.41.100.1:50422 10.10.1.40:53
10.41.100.1:50422 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:43 Permit 10.41.2.74:55057 10.41.100.1:53
10.41.2.74:55057 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:43 Permit 10.41.100.1:49705 10.10.1.40:53
10.41.100.1:49705 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:43 Permit 10.41.2.74:64732 10.41.100.1:53
10.41.2.74:64732 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:43 Permit 10.41.100.1:50011 10.10.1.40:53
10.41.100.1:50011 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:43 Permit 10.41.2.74:53057 10.41.100.1:53
10.41.2.74:53057 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:43 Permit 10.41.1.51:53314 10.41.100.7:60313
10.41.1.51:53314 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:43 Permit 10.41.200.60:65198 17.248.154.75:443
1.9.140.18:53091 17.248.154.75:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:43 Permit 10.41.100.1:50871 10.10.1.40:53
10.41.100.1:50871 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:43 Permit 10.41.200.60:51469 10.41.100.1:53
10.41.200.60:51469 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:43 Permit 10.41.0.131:33765 10.41.100.1:49154
10.41.0.131:33765 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:43 Permit 10.41.0.131:54203 10.41.100.1:135
10.41.0.131:54203 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:43 Permit 10.41.0.131:54202 10.41.100.1:135
10.41.0.131:54202 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:43 Permit 10.41.100.1:65296 10.10.1.40:53
10.41.100.1:65296 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:43 Permit 10.41.1.59:64583 10.41.100.1:53
10.41.1.59:64583 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:43 Permit 10.41.100.1:49398 10.10.1.24:53
10.41.100.1:49398 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:43 Permit 10.41.100.1:49740 10.10.1.4:53
10.41.100.1:49740 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:43 Permit 10.41.100.1:49979 10.10.1.4:53
10.41.100.1:49979 10.10.1.4:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:43 Permit 10.41.200.74:58582 1.9.8.41:80
1.9.140.18:15708 1.9.8.41:80 20 sec 70 0
HTTP Close - AGE OUT
2018-12-10 10:18:43 Permit 10.41.100.1:65263 10.10.1.24:53
10.41.100.1:65263 10.10.1.24:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:43 Permit 10.41.100.1:49977 10.10.1.4:53
10.41.100.1:49977 10.10.1.4:53 60 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:43 Permit 10.41.200.62:64994 172.217.166.138:443
1.9.140.18:12221 172.217.166.138:443 56 sec 321 210
HTTPS Close - TCP RST
2018-12-10 10:18:43 Permit 10.41.1.55:52462 23.94.187.84:443
1.9.140.18:63031 23.94.187.84:443 4 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:18:43 Permit 10.41.100.1:50027 10.10.1.4:53
10.41.100.1:50027 10.10.1.4:53 59 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:43 Permit 10.41.100.1:50159 10.10.1.40:53
10.41.100.1:50159 10.10.1.40:53 60 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:18:43 Permit 10.41.100.1:49617 10.10.1.24:53
10.41.100.1:49617 10.10.1.24:53 60 sec 87 0
DNS Close - AGE OUT
2018-12-10 10:18:43 Permit 10.41.100.1:65185 10.10.1.4:53
10.41.100.1:65185 10.10.1.4:53 59 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:43 Permit 10.41.0.131:45012 8.8.8.8:53
1.9.140.18:5447 8.8.8.8:53 3 sec 82 150
DNS Close - RESP
2018-12-10 10:18:43 Permit 10.41.100.1:50772 10.10.1.4:53
10.41.100.1:50772 10.10.1.4:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:43 Permit 10.41.200.2:49154 10.41.100.1:53
10.41.200.2:49154 10.41.100.1:53 6 sec 76 76
DNS Close - RESP
2018-12-10 10:18:43 Permit 10.41.200.2:49154 10.41.100.1:53
10.41.200.2:49154 10.41.100.1:53 4 sec 86 151
DNS Close - RESP
2018-12-10 10:18:43 Permit 10.41.0.131:54193 10.41.100.1:135
10.41.0.131:54193 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:43 Permit 10.60.210.17:61556 10.41.100.1:389
10.60.210.17:61556 10.41.100.1:389 62 sec 252 222
UDP PORT 389 Close - AGE OUT
2018-12-10 10:18:43 Permit 10.41.0.131:33755 10.41.100.1:49154
10.41.0.131:33755 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:43 Permit 10.41.200.9:49154 10.41.100.1:53
10.41.200.9:49154 10.41.100.1:53 6 sec 76 76
DNS Close - RESP
2018-12-10 10:18:43 Permit 10.41.200.9:49154 10.41.100.1:53
10.41.200.9:49154 10.41.100.1:53 4 sec 87 162
DNS Close - RESP
2018-12-10 10:18:43 Permit 10.41.0.131:54192 10.41.100.1:135
10.41.0.131:54192 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:43 Permit 10.41.1.62:63689 10.41.100.1:389
10.41.1.62:63689 10.41.100.1:389 5 sec 3827 7603
LDAP Close - TCP RST
2018-12-10 10:18:43 Permit 10.41.5.80:54295 10.41.100.1:53
10.41.5.80:54295 10.41.100.1:53 12 sec 91 91
DNS Close - RESP
2018-12-10 10:18:43 Permit 10.41.1.62:63693 10.41.100.1:389
10.41.1.62:63693 10.41.100.1:389 5 sec 4547 8977
LDAP Close - TCP RST
2018-12-10 10:18:43 Permit 10.41.1.62:63690 10.41.100.1:389
10.41.1.62:63690 10.41.100.1:389 5 sec 2675 932
LDAP Close - TCP RST
2018-12-10 10:18:43 Permit 10.41.1.62:63694 10.41.100.1:389
10.41.1.62:63694 10.41.100.1:389 4 sec 2494 1340
LDAP Close - TCP RST
2018-12-10 10:18:43 Permit 10.41.5.80:60153 10.41.100.1:53
10.41.5.80:60153 10.41.100.1:53 15 sec 91 91
DNS Close - RESP
2018-12-10 10:18:43 Permit 10.41.100.2:4390 10.100.10.189:111
10.41.100.2:4390 10.100.10.189:111 0 sec 0 0
SUNRPC PORTMAPPER(TCP) Creation
2018-12-10 10:18:42 Permit 10.41.1.57:62151 10.41.100.7:60313
10.41.1.57:62151 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:42 Permit 10.41.0.131:33762 10.41.100.1:49154
10.41.0.131:33762 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:42 Permit 10.41.0.131:54200 10.41.100.1:135
10.41.0.131:54200 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:42 Permit 10.41.0.131:54199 10.41.100.1:135
10.41.0.131:54199 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:41 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:41 Permit 10.41.100.1:50168 10.10.1.24:53
10.41.100.1:50168 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:41 Permit 10.41.100.1:49661 10.10.1.24:53
10.41.100.1:49661 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:41 Permit 10.41.100.1:49916 10.10.1.4:53
10.41.100.1:49916 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:41 Permit 10.41.100.1:49802 10.10.1.4:53
10.41.100.1:49802 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:41 Permit 10.41.0.131:33758 10.41.100.1:49154
10.41.0.131:33758 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:41 Permit 10.41.0.131:54196 10.41.100.1:135
10.41.0.131:54196 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:41 Permit 10.41.0.131:54195 10.41.100.1:135
10.41.0.131:54195 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:41 Permit 10.41.100.1:65174 10.10.1.40:53
10.41.100.1:65174 10.10.1.40:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:41 Permit 10.41.100.1:50123 10.10.1.40:53
10.41.100.1:50123 10.10.1.40:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:41 Permit 10.41.100.1:50544 10.10.1.40:53
10.41.100.1:50544 10.10.1.40:53 59 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:18:41 Permit 10.41.1.62:63686 172.217.26.142:443
1.9.140.18:3850 172.217.26.142:443 247 sec 4903 8328
HTTPS Close - TCP FIN
2018-12-10 10:18:41 Permit 10.41.100.1:49409 10.10.1.24:53
10.41.100.1:49409 10.10.1.24:53 59 sec 95 0
DNS Close - AGE OUT
2018-12-10 10:18:41 Permit 10.41.100.1:50251 10.10.1.24:53
10.41.100.1:50251 10.10.1.24:53 60 sec 85 0
DNS Close - AGE OUT
2018-12-10 10:18:41 Permit 10.41.100.1:65484 10.10.1.4:53
10.41.100.1:65484 10.10.1.4:53 60 sec 77 0
DNS Close - AGE OUT
2018-12-10 10:18:41 Permit 10.41.100.2:60254 104.103.70.183:53
1.9.140.18:58683 104.103.70.183:53 2 sec 86 106
DNS Close - RESP
2018-12-10 10:18:41 Permit 10.41.100.1:65450 10.10.1.4:53
10.41.100.1:65450 10.10.1.4:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:41 Permit 10.41.100.1:64921 10.10.1.4:53
10.41.100.1:64921 10.10.1.4:53 59 sec 90 0
DNS Close - AGE OUT
2018-12-10 10:18:41 Permit 10.41.2.74:56270 52.51.230.32:443
1.9.140.18:3917 52.51.230.32:443 80 sec 4069 7676
HTTPS Close - TCP FIN
2018-12-10 10:18:41 Permit 10.41.100.1:50102 10.10.1.4:53
10.41.100.1:50102 10.10.1.4:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:41 Permit 10.41.100.1:50565 10.10.1.4:53
10.41.100.1:50565 10.10.1.4:53 59 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:18:41 Permit 10.41.100.1:50815 10.10.1.4:53
10.41.100.1:50815 10.10.1.4:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:41 Permit 10.41.100.1:64877 10.10.1.24:53
10.41.100.1:64877 10.10.1.24:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:41 Permit 10.41.100.1:50529 10.10.1.4:53
10.41.100.1:50529 10.10.1.4:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:41 Permit 10.41.100.1:65275 10.10.1.4:53
10.41.100.1:65275 10.10.1.4:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:41 Permit 10.41.100.2:4381 10.100.10.189:139
10.41.100.2:4381 10.100.10.189:139 19 sec 198 0
NETBIOS (SSN) Close - AGE OUT
2018-12-10 10:18:41 Permit 10.41.100.1:64997 10.10.1.4:53
10.41.100.1:64997 10.10.1.4:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:41 Permit 10.41.100.1:49455 10.10.1.4:53
10.41.100.1:49455 10.10.1.4:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:41 Permit 10.41.5.80:61063 104.103.70.8:80
1.9.140.18:61061 104.103.70.8:80 1 sec 802 36670
HTTP Close - TCP RST
2018-12-10 10:18:41 Permit 10.41.100.1:49940 10.10.1.4:53
10.41.100.1:49940 10.10.1.4:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:41 Permit 10.62.1.52:55878 10.41.100.1:389
10.62.1.52:55878 10.41.100.1:389 5 sec 4099 28514
LDAP Close - TCP RST
2018-12-10 10:18:41 Permit 10.41.200.2:49154 10.41.100.1:53
10.41.200.2:49154 10.41.100.1:53 14 sec 162 151
DNS Close - RESP
2018-12-10 10:18:41 Permit 10.41.0.131:54189 10.41.100.1:135
10.41.0.131:54189 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:41 Permit 10.62.1.52:55877 10.41.100.1:389
10.62.1.52:55877 10.41.100.1:389 6 sec 3570 3746
LDAP Close - TCP RST
2018-12-10 10:18:41 Permit 10.41.0.131:54185 10.41.100.1:135
10.41.0.131:54185 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:41 Permit 10.41.0.131:33752 10.41.100.1:49154
10.41.0.131:33752 10.41.100.1:49154 3 sec 3808 4196
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:41 Permit 10.41.1.54:51460 10.41.100.1:53
10.41.1.54:51460 10.41.100.1:53 14 sec 80 80
DNS Close - RESP
2018-12-10 10:18:41 Permit 10.41.0.131:54190 10.41.100.1:135
10.41.0.131:54190 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:41 Permit 10.41.200.59:53587 10.41.100.1:53
10.41.200.59:53587 10.41.100.1:53 3 sec 78 143
DNS Close - RESP
2018-12-10 10:18:41 Permit 10.41.200.9:49154 10.41.100.1:53
10.41.200.9:49154 10.41.100.1:53 14 sec 163 162
DNS Close - RESP
2018-12-10 10:18:41 Permit 10.41.1.51:53307 10.41.100.7:60313
10.41.1.51:53307 10.41.100.7:60313 3 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:41 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 322 93
DNS Close - RESP
2018-12-10 10:18:41 Permit 10.41.1.62:63692 10.41.100.1:88
10.41.1.62:63692 10.41.100.1:88 3 sec 1586 1596
TCP PORT 88 Close - TCP RST
2018-12-10 10:18:41 Permit 10.41.0.131:33748 10.41.100.1:49154
10.41.0.131:33748 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:41 Permit 10.41.200.74:61655 10.41.100.1:53
10.41.200.74:61655 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:41 Permit 10.41.1.57:62150 10.41.100.7:60313
10.41.1.57:62150 10.41.100.7:60313 4 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:41 Permit 10.41.0.131:54186 10.41.100.1:135
10.41.0.131:54186 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:40 Permit 10.41.200.65:57672 1.9.57.142:80
1.9.140.18:47009 1.9.57.142:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:40 Permit 10.41.5.81:123 10.41.100.1:123
10.41.5.81:123 10.41.100.1:123 0 sec 0 0
NETWORK TIME Creation
2018-12-10 10:18:40 Permit 10.41.200.65:57671 172.217.31.78:80
1.9.140.18:54248 172.217.31.78:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:40 Permit 10.41.0.131:36289 10.41.100.1:53
10.41.0.131:36289 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:40 Permit 10.41.0.131:45012 8.8.8.8:53
1.9.140.18:5447 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:40 Permit 10.41.100.1:65251 10.10.1.24:53
10.41.100.1:65251 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:40 Permit 10.41.100.1:49497 10.10.1.24:53
10.41.100.1:49497 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:40 Permit 10.41.100.1:65451 10.10.1.4:53
10.41.100.1:65451 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:40 Permit 10.41.5.80:61063 104.103.70.8:80
1.9.140.18:61061 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:40 Permit 10.41.5.72:63320 172.217.166.142:443
1.9.140.18:34441 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:39 Permit 10.41.100.1:49398 10.10.1.40:53
10.41.100.1:49398 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:39 Permit 10.41.5.72:63696 10.41.100.1:53
10.41.5.72:63696 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:39 Permit 10.41.0.131:33755 10.41.100.1:49154
10.41.0.131:33755 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:39 Permit 10.41.0.131:54193 10.41.100.1:135
10.41.0.131:54193 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:39 Permit 10.41.0.131:54192 10.41.100.1:135
10.41.0.131:54192 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:39 Permit 10.41.200.65:57670 172.217.166.131:443
1.9.140.18:47021 172.217.166.131:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:39 Permit 10.41.1.55:52462 23.94.187.84:443
1.9.140.18:63031 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:39 Permit 10.41.200.9:49154 10.41.100.1:53
10.41.200.9:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:39 Permit 10.41.200.2:49154 10.41.100.1:53
10.41.200.2:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:39 Permit 10.41.200.9:49154 10.41.100.1:53
10.41.200.9:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:39 Permit 10.41.200.2:49154 10.41.100.1:53
10.41.200.2:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:39 Permit 10.41.100.1:49740 10.10.1.24:53
10.41.100.1:49740 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:39 Permit 10.41.100.1:50001 10.10.1.4:53
10.41.100.1:50001 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:39 Permit 10.41.100.2:60254 104.103.70.183:53
1.9.140.18:58683 104.103.70.183:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:39 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:39 Permit 10.41.1.62:63694 10.41.100.1:389
10.41.1.62:63694 10.41.100.1:389 0 sec 0 0
LDAP Creation
2018-12-10 10:18:39 Permit 10.41.100.1:49699 10.10.1.4:53
10.41.100.1:49699 10.10.1.4:53 59 sec 71 0
DNS Close - AGE OUT
2018-12-10 10:18:39 Permit 10.41.100.1:65185 10.10.1.24:53
10.41.100.1:65185 10.10.1.24:53 59 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:39 Permit 10.41.100.1:50027 10.10.1.24:53
10.41.100.1:50027 10.10.1.24:53 59 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:39 Permit 10.41.5.77:63579 74.82.60.42:443
1.9.140.18:30427 74.82.60.42:443 66 sec 385 278
HTTPS Close - TCP FIN
2018-12-10 10:18:39 Permit 10.41.100.1:49617 10.10.1.40:53
10.41.100.1:49617 10.10.1.40:53 60 sec 87 0
DNS Close - AGE OUT
2018-12-10 10:18:39 Permit 10.41.100.1:49409 10.10.1.40:53
10.41.100.1:49409 10.10.1.40:53 60 sec 95 0
DNS Close - AGE OUT
2018-12-10 10:18:39 Permit 10.41.5.80:61061 104.103.70.8:80
1.9.140.18:49835 104.103.70.8:80 1 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:18:39 Permit 10.41.5.77:63578 74.82.60.42:443
1.9.140.18:57579 74.82.60.42:443 66 sec 3157 8886
HTTPS Close - TCP FIN
2018-12-10 10:18:39 Permit 10.41.100.1:65263 10.10.1.40:53
10.41.100.1:65263 10.10.1.40:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:39 Permit 10.41.100.1:50772 10.10.1.24:53
10.41.100.1:50772 10.10.1.24:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:39 Permit 10.41.100.1:49977 10.10.1.24:53
10.41.100.1:49977 10.10.1.24:53 60 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:39 Permit 10.41.100.1:49979 10.10.1.24:53
10.41.100.1:49979 10.10.1.24:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:39 Permit 10.41.0.131:54182 10.41.100.1:135
10.41.0.131:54182 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:39 Permit 10.41.0.131:54183 10.41.100.1:135
10.41.0.131:54183 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:39 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 2 sec 322 77
DNS Close - RESP
2018-12-10 10:18:39 Permit 10.41.0.131:33741 10.41.100.1:49154
10.41.0.131:33741 10.41.100.1:49154 5 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:39 Permit 10.41.0.131:36773 10.41.100.1:53
10.41.0.131:36773 10.41.100.1:53 14 sec 71 71
DNS Close - RESP
2018-12-10 10:18:39 Permit 10.62.1.51:53292 10.41.100.1:389
10.62.1.51:53292 10.41.100.1:389 5 sec 4180 3027
LDAP Close - TCP RST
2018-12-10 10:18:39 Permit 10.41.0.131:33745 10.41.100.1:49154
10.41.0.131:33745 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:38 Deny 10.41.5.80:61060 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 32 HTTPS Traffic
Denied
2018-12-10 10:18:38 Permit 10.41.1.62:63693 10.41.100.1:389
10.41.1.62:63693 10.41.100.1:389 0 sec 0 0
LDAP Creation
2018-12-10 10:18:38 Permit 10.41.1.62:63692 10.41.100.1:88
10.41.1.62:63692 10.41.100.1:88 0 sec 0 0
TCP PORT 88 Creation
2018-12-10 10:18:38 Permit 10.41.1.62:63691 10.41.100.1:445
10.41.1.62:63691 10.41.100.1:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:18:38 Permit 10.41.1.51:53307 10.41.100.7:60313
10.41.1.51:53307 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:38 Deny 10.41.200.62:64997 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 32 HTTPS Traffic
Denied
2018-12-10 10:18:38 Permit 10.41.0.131:33752 10.41.100.1:49154
10.41.0.131:33752 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:38 Permit 10.41.0.131:54190 10.41.100.1:135
10.41.0.131:54190 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:38 Permit 10.41.0.131:54189 10.41.100.1:135
10.41.0.131:54189 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:38 Permit 10.41.1.62:63690 10.41.100.1:389
10.41.1.62:63690 10.41.100.1:389 0 sec 0 0
LDAP Creation
2018-12-10 10:18:38 Permit 10.41.1.62:55811 10.41.100.1:389
10.41.1.62:55811 10.41.100.1:389 0 sec 0 0
UDP PORT 389 Creation
2018-12-10 10:18:38 Permit 10.41.1.62:63689 10.41.100.1:389
10.41.1.62:63689 10.41.100.1:389 0 sec 0 0
LDAP Creation
2018-12-10 10:18:38 Permit 10.41.1.62:63688 10.41.100.1:49155
10.41.1.62:63688 10.41.100.1:49155 0 sec 0 0
TCP PORT 49155 Creation
2018-12-10 10:18:38 Permit 10.41.1.62:63687 10.41.100.1:135
10.41.1.62:63687 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:38 Permit 10.41.200.59:50173 172.217.166.142:443
1.9.140.18:27279 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:38 Permit 10.41.1.62:55810 10.41.100.1:389
10.41.1.62:55810 10.41.100.1:389 0 sec 0 0
UDP PORT 389 Creation
2018-12-10 10:18:38 Permit 10.41.200.59:53587 10.41.100.1:53
10.41.200.59:53587 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:38 Permit 10.41.100.1:50168 10.10.1.40:53
10.41.100.1:50168 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:38 Permit 10.41.200.59:49580 10.41.100.1:53
10.41.200.59:49580 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:38 Permit 10.41.5.80:61061 104.103.70.8:80
1.9.140.18:49835 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:37 Permit 10.41.1.57:62150 10.41.100.7:60313
10.41.1.57:62150 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:37 Permit 10.41.0.131:33748 10.41.100.1:49154
10.41.0.131:33748 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:37 Permit 10.41.0.131:54186 10.41.100.1:135
10.41.0.131:54186 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:37 Permit 10.41.0.131:54185 10.41.100.1:135
10.41.0.131:54185 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:37 Permit 10.41.200.9:49154 10.41.100.1:53
10.41.200.9:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:37 Permit 10.41.100.1:49661 10.10.1.40:53
10.41.100.1:49661 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:37 Permit 10.41.100.1:49916 10.10.1.24:53
10.41.100.1:49916 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:37 Permit 10.41.100.1:49802 10.10.1.24:53
10.41.100.1:49802 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:37 Permit 10.41.100.1:49356 10.10.1.4:53
10.41.100.1:49356 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:37 Permit 10.41.100.1:50731 10.10.1.4:53
10.41.100.1:50731 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:37 Permit 10.41.200.2:49154 10.41.100.1:53
10.41.200.2:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:37 Permit 10.41.100.1:65251 10.10.1.40:53
10.41.100.1:65251 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:37 Permit 10.41.100.1:49497 10.10.1.40:53
10.41.100.1:49497 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:37 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:37 Permit 10.41.100.1:50027 10.10.1.40:53
10.41.100.1:50027 10.10.1.40:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.100.1:65450 10.10.1.24:53
10.41.100.1:65450 10.10.1.24:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.100.1:49940 10.10.1.24:53
10.41.100.1:49940 10.10.1.24:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.100.1:50102 10.10.1.24:53
10.41.100.1:50102 10.10.1.24:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.100.1:49836 10.10.1.4:53
10.41.100.1:49836 10.10.1.4:53 59 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.100.1:50529 10.10.1.24:53
10.41.100.1:50529 10.10.1.24:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.0.131:58893 8.8.8.8:53
1.9.140.18:24833 8.8.8.8:53 2 sec 78 126
DNS Close - RESP
2018-12-10 10:18:37 Permit 10.41.100.1:64921 10.10.1.24:53
10.41.100.1:64921 10.10.1.24:53 59 sec 90 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.100.1:49455 10.10.1.24:53
10.41.100.1:49455 10.10.1.24:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.100.1:50772 10.10.1.40:53
10.41.100.1:50772 10.10.1.40:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.100.1:64997 10.10.1.24:53
10.41.100.1:64997 10.10.1.24:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.5.72:63262 151.101.78.217:443
1.9.140.18:49681 151.101.78.217:443 749 sec 3871 10491
HTTPS Close - TCP FIN
2018-12-10 10:18:37 Permit 10.41.100.2:4380 10.100.10.189:445
10.41.100.2:4380 10.100.10.189:445 20 sec 198 0
TCP PORT 445 Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.100.1:64877 10.10.1.40:53
10.41.100.1:64877 10.10.1.40:53 59 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.200.80:60998 47.246.12.234:443
1.9.140.18:28240 47.246.12.234:443 199 sec 4262 3564
HTTPS Close - TCP RST
2018-12-10 10:18:37 Permit 10.41.100.1:50251 10.10.1.40:53
10.41.100.1:50251 10.10.1.40:53 60 sec 85 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.200.80:61062 106.10.231.44:443
1.9.140.18:13398 106.10.231.44:443 64 sec 4065 8725
HTTPS Close - TCP RST
2018-12-10 10:18:37 Permit 10.41.1.112:55275 218.208.111.14:80
1.9.140.18:57945 218.208.111.14:80 3 sec 1012 21450
HTTP Close - TCP RST
2018-12-10 10:18:37 Permit 10.41.1.65:64165 210.176.156.48:80
1.9.140.18:54463 210.176.156.48:80 34 sec 10710 2857
HTTP Close - TCP RST
2018-12-10 10:18:37 Permit 10.41.100.1:50815 10.10.1.24:53
10.41.100.1:50815 10.10.1.24:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.100.1:65484 10.10.1.24:53
10.41.100.1:65484 10.10.1.24:53 60 sec 77 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.200.80:61061 106.10.231.44:443
1.9.140.18:5214 106.10.231.44:443 64 sec 4128 12728
HTTPS Close - TCP RST
2018-12-10 10:18:37 Permit 10.41.100.1:50565 10.10.1.24:53
10.41.100.1:50565 10.10.1.24:53 59 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.100.1:50706 10.10.1.4:53
10.41.100.1:50706 10.10.1.4:53 59 sec 82 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.100.1:65185 10.10.1.40:53
10.41.100.1:65185 10.10.1.40:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.1.55:52459 23.94.187.84:443
1.9.140.18:64095 23.94.187.84:443 4 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:18:37 Permit 10.41.100.1:50112 10.10.1.4:53
10.41.100.1:50112 10.10.1.4:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.100.2:59235 23.45.232.164:53
1.9.140.18:29024 23.45.232.164:53 2 sec 86 106
DNS Close - RESP
2018-12-10 10:18:37 Permit 10.41.100.1:49317 10.10.1.4:53
10.41.100.1:49317 10.10.1.4:53 59 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.100.1:50409 10.10.1.4:53
10.41.100.1:50409 10.10.1.4:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.100.2:56367 205.251.195.240:53
1.9.140.18:30072 205.251.195.240:53 2 sec 77 238
DNS Close - RESP
2018-12-10 10:18:37 Permit 10.41.100.1:65113 10.10.1.4:53
10.41.100.1:65113 10.10.1.4:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.100.1:65275 10.10.1.24:53
10.41.100.1:65275 10.10.1.24:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:37 Permit 10.41.0.131:54176 10.41.100.1:135
10.41.0.131:54176 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:37 Permit 10.41.1.51:53306 10.41.100.7:60313
10.41.1.51:53306 10.41.100.7:60313 4 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:37 Permit 10.41.0.131:54179 10.41.100.1:135
10.41.0.131:54179 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:37 Permit 10.41.5.76:50550 10.41.100.1:135
10.41.5.76:50550 10.41.100.1:135 16 sec 770 594
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:37 Permit 10.41.0.131:54178 10.41.100.1:135
10.41.0.131:54178 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:37 Permit 10.41.1.65:53890 10.41.100.1:53
10.41.1.65:53890 10.41.100.1:53 15 sec 95 95
DNS Close - RESP
2018-12-10 10:18:37 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 398 92
DNS Close - RESP
2018-12-10 10:18:37 Permit 10.41.0.131:33738 10.41.100.1:49154
10.41.0.131:33738 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:37 Permit 10.41.0.131:54175 10.41.100.1:135
10.41.0.131:54175 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:36 Permit 10.62.1.52:55878 10.41.100.1:389
10.62.1.52:55878 10.41.100.1:389 0 sec 0 0
LDAP Creation
2018-12-10 10:18:36 Permit 10.41.100.1:65451 10.10.1.24:53
10.41.100.1:65451 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:36 Permit 10.41.100.1:50791 10.10.1.4:53
10.41.100.1:50791 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:36 Permit 10.41.0.131:33745 10.41.100.1:49154
10.41.0.131:33745 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:36 Permit 10.41.0.131:54183 10.41.100.1:135
10.41.0.131:54183 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:36 Permit 10.41.0.131:54182 10.41.100.1:135
10.41.0.131:54182 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:35 Deny 10.41.5.80:61060 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 32 HTTPS Traffic
Denied
2018-12-10 10:18:35 Permit 10.62.1.52:55877 10.41.100.1:389
10.62.1.52:55877 10.41.100.1:389 0 sec 0 0
LDAP Creation
2018-12-10 10:18:35 Deny 10.41.200.62:64997 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 32 HTTPS Traffic
Denied
2018-12-10 10:18:35 Permit 10.41.5.77:63580 74.82.60.42:443
1.9.140.18:49841 74.82.60.42:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:35 Permit 10.41.100.1:49740 10.10.1.40:53
10.41.100.1:49740 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:35 Permit 10.41.0.131:35663 10.41.100.1:53
10.41.0.131:35663 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:35 Permit 10.41.100.1:50001 10.10.1.24:53
10.41.100.1:50001 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:35 Permit 10.41.100.1:65019 10.10.1.4:53
10.41.100.1:65019 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:35 Permit 10.41.0.131:58893 8.8.8.8:53
1.9.140.18:24833 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:35 Permit 10.41.100.2:59235 23.45.232.164:53
1.9.140.18:29024 23.45.232.164:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:35 Permit 10.41.100.2:56367 205.251.195.240:53
1.9.140.18:30072 205.251.195.240:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:35 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:35 Permit 10.41.100.1:49235 10.10.1.4:53
10.41.100.1:49235 10.10.1.4:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:35 Permit 10.41.2.74:56336 104.103.55.181:443
1.9.140.18:36332 104.103.55.181:443 5 sec 28830 4391
HTTPS Close - TCP FIN
2018-12-10 10:18:35 Permit 10.41.5.72:63256 151.101.78.217:443
1.9.140.18:6085 151.101.78.217:443 747 sec 4753 11588
HTTPS Close - TCP FIN
2018-12-10 10:18:35 Permit 10.41.100.1:49699 10.10.1.24:53
10.41.100.1:49699 10.10.1.24:53 59 sec 71 0
DNS Close - AGE OUT
2018-12-10 10:18:35 Permit 10.41.2.74:56331 104.103.55.181:443
1.9.140.18:7564 104.103.55.181:443 13 sec 32487 7169
HTTPS Close - TCP FIN
2018-12-10 10:18:35 Permit 10.41.2.74:56335 104.103.55.181:443
1.9.140.18:35089 104.103.55.181:443 5 sec 44442 6101
HTTPS Close - TCP FIN
2018-12-10 10:18:35 Permit 10.41.5.80:61059 104.103.70.8:80
1.9.140.18:5601 104.103.70.8:80 2 sec 802 39714
HTTP Close - TCP RST
2018-12-10 10:18:35 Permit 10.41.2.74:56334 104.103.55.181:443
1.9.140.18:39503 104.103.55.181:443 5 sec 24852 3747
HTTPS Close - TCP FIN
2018-12-10 10:18:35 Permit 10.41.100.1:49977 10.10.1.40:53
10.41.100.1:49977 10.10.1.40:53 60 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:35 Permit 10.41.1.53:50739 172.217.166.133:443
1.9.140.18:59721 172.217.166.133:443 244 sec 4657 3714
HTTPS Close - TCP FIN
2018-12-10 10:18:35 Permit 10.41.2.74:56333 104.103.55.181:443
1.9.140.18:1081 104.103.55.181:443 5 sec 52189 7179
HTTPS Close - TCP FIN
2018-12-10 10:18:35 Permit 10.41.100.1:49979 10.10.1.40:53
10.41.100.1:49979 10.10.1.40:53 59 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:35 Permit 10.41.2.74:56332 104.103.55.181:443
1.9.140.18:21285 104.103.55.181:443 5 sec 20976 8012
HTTPS Close - TCP FIN
2018-12-10 10:18:35 Permit 10.41.100.1:50308 10.10.1.4:53
10.41.100.1:50308 10.10.1.4:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:35 Permit 10.41.1.112:55271 172.217.31.78:80
1.9.140.18:26876 172.217.31.78:80 6 sec 926 1158
HTTP Close - TCP RST
2018-12-10 10:18:35 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 4 sec 165 84
DNS Close - RESP
2018-12-10 10:18:35 Permit 10.41.0.131:54173 10.41.100.1:135
10.41.0.131:54173 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:35 Permit 10.41.0.131:54168 10.41.100.1:135
10.41.0.131:54168 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:35 Permit 10.41.0.131:54172 10.41.100.1:135
10.41.0.131:54172 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:35 Permit 10.41.2.74:63618 10.41.100.1:53
10.41.2.74:63618 10.41.100.1:53 14 sec 83 83
DNS Close - RESP
2018-12-10 10:18:35 Permit 10.41.0.131:54169 10.41.100.1:135
10.41.0.131:54169 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:35 Permit 10.41.0.131:46171 10.41.100.1:53
10.41.0.131:46171 10.41.100.1:53 16 sec 79 79
DNS Close - RESP
2018-12-10 10:18:35 Permit 10.41.0.131:33735 10.41.100.1:49154
10.41.0.131:33735 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:35 Permit 10.41.1.57:62149 10.41.100.7:60313
10.41.1.57:62149 10.41.100.7:60313 3 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:35 Permit 10.41.0.131:33731 10.41.100.1:49154
10.41.0.131:33731 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:34 Permit 10.41.0.131:33741 10.41.100.1:49154
10.41.0.131:33741 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:34 Permit 10.41.0.131:54179 10.41.100.1:135
10.41.0.131:54179 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:34 Permit 10.41.0.131:54178 10.41.100.1:135
10.41.0.131:54178 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:34 Permit 10.62.1.51:53292 10.41.100.1:389
10.62.1.51:53292 10.41.100.1:389 0 sec 0 0
LDAP Creation
2018-12-10 10:18:34 Permit 10.41.1.112:55275 218.208.111.14:80
1.9.140.18:57945 218.208.111.14:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:34 Permit 10.41.1.112:55274 172.217.31.78:80
1.9.140.18:10037 172.217.31.78:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:34 Permit 10.41.100.1:50210 10.10.1.4:53
10.41.100.1:50210 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:33 Permit 10.41.5.80:61059 104.103.70.8:80
1.9.140.18:5601 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:33 Permit 10.41.0.131:33738 10.41.100.1:49154
10.41.0.131:33738 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:33 Permit 10.41.0.131:54176 10.41.100.1:135
10.41.0.131:54176 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:33 Permit 10.41.0.131:54175 10.41.100.1:135
10.41.0.131:54175 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:33 Permit 10.41.1.51:53306 10.41.100.7:60313
10.41.1.51:53306 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:33 Permit 10.41.1.65:64176 172.217.26.131:443
1.9.140.18:61224 172.217.26.131:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:33 Permit 10.41.1.55:52459 23.94.187.84:443
1.9.140.18:64095 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:33 Permit 10.41.1.59:58855 172.217.26.129:443
1.9.140.18:45091 172.217.26.129:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:33 Permit 10.41.100.1:49916 10.10.1.40:53
10.41.100.1:49916 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:33 Permit 10.41.1.59:62810 10.41.100.1:53
10.41.1.59:62810 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:33 Permit 10.41.100.1:49802 10.10.1.40:53
10.41.100.1:49802 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:33 Permit 10.41.1.65:64351 10.41.100.1:53
10.41.1.65:64351 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:33 Permit 10.41.100.1:49356 10.10.1.24:53
10.41.100.1:49356 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:33 Permit 10.41.100.1:50731 10.10.1.24:53
10.41.100.1:50731 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:33 Permit 10.41.100.1:50815 10.10.1.40:53
10.41.100.1:50815 10.10.1.40:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.2.74:56339 104.103.55.181:443
1.9.140.18:36622 104.103.55.181:443 2 sec 13135 2409
HTTPS Close - TCP FIN
2018-12-10 10:18:33 Permit 10.41.100.1:50409 10.10.1.24:53
10.41.100.1:50409 10.10.1.24:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.100.1:50102 10.10.1.40:53
10.41.100.1:50102 10.10.1.40:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.1.107:51686 172.217.166.133:443
1.9.140.18:5261 172.217.166.133:443 1877 sec 291351 4030655
HTTPS Close - TCP FIN
2018-12-10 10:18:33 Permit 10.41.100.1:65484 10.10.1.40:53
10.41.100.1:65484 10.10.1.40:53 60 sec 77 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.100.1:64921 10.10.1.40:53
10.41.100.1:64921 10.10.1.40:53 59 sec 90 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.1.59:58854 172.217.26.144:80
1.9.140.18:5574 172.217.26.144:80 2 sec 940 19538
HTTP Close - TCP RST
2018-12-10 10:18:33 Permit 10.41.100.1:50706 10.10.1.24:53
10.41.100.1:50706 10.10.1.24:53 59 sec 82 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.100.1:50112 10.10.1.24:53
10.41.100.1:50112 10.10.1.24:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.100.1:65378 10.10.1.4:53
10.41.100.1:65378 10.10.1.4:53 59 sec 99 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.5.80:61057 104.103.70.8:80
1.9.140.18:62932 104.103.70.8:80 5 sec 1002 625
HTTP Close - TCP RST
2018-12-10 10:18:33 Permit 10.41.100.1:50529 10.10.1.40:53
10.41.100.1:50529 10.10.1.40:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.100.1:49442 10.10.1.4:53
10.41.100.1:49442 10.10.1.4:53 59 sec 94 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.200.80:60994 172.217.166.138:443
1.9.140.18:23521 172.217.166.138:443 244 sec 3477 2217
HTTPS Close - TCP FIN
2018-12-10 10:18:33 Permit 10.41.100.1:65113 10.10.1.24:53
10.41.100.1:65113 10.10.1.24:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.100.1:49317 10.10.1.24:53
10.41.100.1:49317 10.10.1.24:53 59 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.1.112:55272 218.208.111.14:80
1.9.140.18:40691 218.208.111.14:80 4 sec 1012 21450
HTTP Close - TCP RST
2018-12-10 10:18:33 Permit 10.41.100.1:65275 10.10.1.40:53
10.41.100.1:65275 10.10.1.40:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.100.1:64997 10.10.1.40:53
10.41.100.1:64997 10.10.1.40:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.100.1:49609 10.10.1.4:53
10.41.100.1:49609 10.10.1.4:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.100.1:49455 10.10.1.40:53
10.41.100.1:49455 10.10.1.40:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.100.1:50565 10.10.1.40:53
10.41.100.1:50565 10.10.1.40:53 59 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.100.1:49940 10.10.1.40:53
10.41.100.1:49940 10.10.1.40:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.100.1:49836 10.10.1.24:53
10.41.100.1:49836 10.10.1.24:53 59 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.100.1:65450 10.10.1.40:53
10.41.100.1:65450 10.10.1.40:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.100.1:49992 10.10.1.4:53
10.41.100.1:49992 10.10.1.4:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:33 Permit 10.41.203.2:55211 10.41.100.1:53
10.41.203.2:55211 10.41.100.1:53 16 sec 76 76
DNS Close - RESP
2018-12-10 10:18:33 Permit 10.41.0.131:33728 10.41.100.1:49154
10.41.0.131:33728 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:33 Permit 10.41.200.72:57192 10.41.100.1:53
10.41.200.72:57192 10.41.100.1:53 14 sec 91 91
DNS Close - RESP
2018-12-10 10:18:33 Permit 10.41.0.131:54166 10.41.100.1:135
10.41.0.131:54166 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:33 Permit 10.41.203.4:63407 10.41.100.1:53
10.41.203.4:63407 10.41.100.1:53 15 sec 76 76
DNS Close - RESP
2018-12-10 10:18:33 Permit 10.62.1.52:55872 10.41.100.1:389
10.62.1.52:55872 10.41.100.1:389 5 sec 2680 924
LDAP Close - TCP RST
2018-12-10 10:18:33 Permit 10.62.1.52:55873 10.41.100.1:389
10.62.1.52:55873 10.41.100.1:389 4 sec 4055 7472
LDAP Close - TCP RST
2018-12-10 10:18:33 Permit 10.41.0.131:33724 10.41.100.1:49154
10.41.0.131:33724 10.41.100.1:49154 5 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:33 Permit 10.41.0.131:54165 10.41.100.1:135
10.41.0.131:54165 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:32 Permit 10.41.100.1:65451 10.10.1.40:53
10.41.100.1:65451 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:32 Permit 10.41.1.59:58854 10.41.100.1:53
10.41.1.59:58854 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:32 Permit 10.41.0.131:33735 10.41.100.1:49154
10.41.0.131:33735 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:32 Permit 10.41.0.131:54173 10.41.100.1:135
10.41.0.131:54173 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:32 Permit 10.41.0.131:54172 10.41.100.1:135
10.41.0.131:54172 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:32 Permit 10.41.1.57:62149 10.41.100.7:60313
10.41.1.57:62149 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:32 Permit 10.41.1.55:52458 10.41.100.11:139
10.41.1.55:52458 10.41.100.11:139 0 sec 0 0
NETBIOS (SSN) Creation
2018-12-10 10:18:32 Permit 10.41.1.55:52457 10.41.100.11:445
10.41.1.55:52457 10.41.100.11:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:18:32 Permit 10.41.1.55:52456 10.41.100.11:445
10.41.1.55:52456 10.41.100.11:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:18:32 Permit 10.41.1.55:52455 10.41.100.11:445
10.41.1.55:52455 10.41.100.11:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:18:32 Permit 10.41.100.1:50791 10.10.1.24:53
10.41.100.1:50791 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:32 Permit 10.41.100.1:49664 10.10.1.4:53
10.41.100.1:49664 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:31 Permit 10.41.5.80:54295 10.41.100.1:53
10.41.5.80:54295 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:31 Permit 10.41.1.59:58854 172.217.26.144:80
1.9.140.18:5574 172.217.26.144:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:31 Permit 10.41.2.74:56340 104.103.55.181:443
1.9.140.18:1675 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:31 Permit 10.41.2.74:56339 104.103.55.181:443
1.9.140.18:36622 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:31 Permit 10.41.2.74:56338 104.103.55.181:443
1.9.140.18:52278 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:31 Permit 10.41.2.74:56337 104.103.55.181:443
1.9.140.18:9670 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:31 Permit 10.41.1.55:52454 10.41.100.11:445
10.41.1.55:52454 10.41.100.11:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:18:31 Permit 10.41.100.1:50001 10.10.1.40:53
10.41.100.1:50001 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:31 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:31 Permit 10.41.0.131:33731 10.41.100.1:49154
10.41.0.131:33731 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:31 Permit 10.41.0.131:54169 10.41.100.1:135
10.41.0.131:54169 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:31 Permit 10.41.0.131:54168 10.41.100.1:135
10.41.0.131:54168 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:31 Permit 10.41.100.1:65019 10.10.1.24:53
10.41.100.1:65019 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:31 Permit 10.41.100.1:50540 10.10.1.4:53
10.41.100.1:50540 10.10.1.4:53 59 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:31 Permit 10.41.1.55:52452 23.94.187.84:443
1.9.140.18:42317 23.94.187.84:443 4 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:18:31 Permit 10.41.100.1:65320 10.10.1.4:53
10.41.100.1:65320 10.10.1.4:53 59 sec 82 0
DNS Close - AGE OUT
2018-12-10 10:18:31 Permit 10.41.200.51:52685 172.217.166.142:443
1.9.140.18:56121 172.217.166.142:443 12 sec 4128 2099
HTTPS Close - TCP FIN
2018-12-10 10:18:31 Permit 10.41.0.131:36459 8.8.8.8:53
1.9.140.18:54574 8.8.8.8:53 1 sec 71 107
DNS Close - RESP
2018-12-10 10:18:31 Permit 10.41.5.80:61056 104.103.70.10:80
1.9.140.18:45787 104.103.70.10:80 3 sec 804 36670
HTTP Close - TCP RST
2018-12-10 10:18:31 Permit 10.41.100.1:49699 10.10.1.40:53
10.41.100.1:49699 10.10.1.40:53 59 sec 71 0
DNS Close - AGE OUT
2018-12-10 10:18:31 Permit 10.41.100.1:50308 10.10.1.24:53
10.41.100.1:50308 10.10.1.24:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:31 Permit 10.41.1.59:58852 172.217.26.144:80
1.9.140.18:43865 172.217.26.144:80 2 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:18:31 Permit 10.41.100.1:49871 10.10.1.4:53
10.41.100.1:49871 10.10.1.4:53 75 sec 166 0
DNS Close - AGE OUT
2018-12-10 10:18:31 Permit 10.41.200.80:60989 172.217.31.70:443
1.9.140.18:4201 172.217.31.70:443 243 sec 3335 1510
HTTPS Close - TCP FIN
2018-12-10 10:18:31 Permit 10.41.100.1:49235 10.10.1.24:53
10.41.100.1:49235 10.10.1.24:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:31 Permit 10.41.1.59:58784 172.217.26.142:443
1.9.140.18:33350 172.217.26.142:443 443 sec 5308 4475
HTTPS Close - TCP FIN
2018-12-10 10:18:31 Permit 10.41.200.2:49154 10.41.100.1:53
10.41.200.2:49154 10.41.100.1:53 4 sec 86 151
DNS Close - RESP
2018-12-10 10:18:31 Permit 10.62.1.54:123 10.41.100.1:123
10.62.1.54:123 10.41.100.1:123 61 sec 114 114
NETWORK TIME Close - AGE OUT
2018-12-10 10:18:31 Permit 10.41.1.51:53299 10.41.100.7:60313
10.41.1.51:53299 10.41.100.7:60313 3 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:31 Permit 10.41.1.112:58005 10.41.100.1:53
10.41.1.112:58005 10.41.100.1:53 16 sec 89 89
DNS Close - RESP
2018-12-10 10:18:31 Permit 10.41.1.112:55266 10.41.100.1:445
10.41.1.112:55266 10.41.100.1:445 15 sec 4687 2036
TCP PORT 445 Close - TCP RST
2018-12-10 10:18:31 Permit 10.41.200.9:49154 10.41.100.1:53
10.41.200.9:49154 10.41.100.1:53 4 sec 87 162
DNS Close - RESP
2018-12-10 10:18:31 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 242 93
DNS Close - RESP
2018-12-10 10:18:31 Permit 10.41.0.131:54161 10.41.100.1:135
10.41.0.131:54161 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:31 Permit 10.41.1.57:62148 10.41.100.7:60313
10.41.1.57:62148 10.41.100.7:60313 4 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:31 Permit 10.41.0.131:54162 10.41.100.1:135
10.41.0.131:54162 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:31 Permit 10.41.200.80:60264 10.41.100.1:389
10.41.200.80:60264 10.41.100.1:389 62 sec 245 207
UDP PORT 389 Close - AGE OUT
2018-12-10 10:18:31 Permit 10.41.0.131:54158 10.41.100.1:135
10.41.0.131:54158 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:31 Permit 10.41.0.131:33721 10.41.100.1:49154
10.41.0.131:33721 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:31 Permit 10.41.0.131:54159 10.41.100.1:135
10.41.0.131:54159 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:30 Permit 10.41.2.74:56336 104.103.55.181:443
1.9.140.18:36332 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:30 Permit 10.41.2.74:56335 104.103.55.181:443
1.9.140.18:35089 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:30 Permit 10.41.2.74:56334 104.103.55.181:443
1.9.140.18:39503 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:30 Permit 10.41.2.74:56333 104.103.55.181:443
1.9.140.18:1081 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:30 Permit 10.41.2.74:56332 104.103.55.181:443
1.9.140.18:21285 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:30 Permit 10.41.100.1:50210 10.10.1.24:53
10.41.100.1:50210 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:30 Permit 10.41.100.1:50438 10.10.1.4:53
10.41.100.1:50438 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:30 Permit 10.41.100.1:49356 10.10.1.40:53
10.41.100.1:49356 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:30 Permit 10.41.0.131:54008 10.41.100.1:53
10.41.0.131:54008 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:30 Permit 10.41.0.131:36459 8.8.8.8:53
1.9.140.18:54574 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:30 Permit 10.41.0.131:33728 10.41.100.1:49154
10.41.0.131:33728 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:30 Permit 10.41.0.131:54166 10.41.100.1:135
10.41.0.131:54166 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:30 Permit 10.41.0.131:54165 10.41.100.1:135
10.41.0.131:54165 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:29 Permit 10.41.200.58:58413 52.207.55.4:443
1.9.140.18:15758 52.207.55.4:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:29 Permit 10.41.200.58:58412 52.207.55.4:443
1.9.140.18:43726 52.207.55.4:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:29 Permit 10.41.1.59:58852 172.217.26.144:80
1.9.140.18:43865 172.217.26.144:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:29 Permit 10.41.100.1:50731 10.10.1.40:53
10.41.100.1:50731 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:29 Permit 10.41.200.58:61998 10.41.100.1:53
10.41.200.58:61998 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:29 Permit 10.62.1.52:55873 10.41.100.1:389
10.62.1.52:55873 10.41.100.1:389 0 sec 0 0
LDAP Creation
2018-12-10 10:18:29 Permit 10.41.100.1:64980 10.10.1.4:53
10.41.100.1:64980 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:29 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:29 Permit 10.41.1.112:55272 218.208.111.14:80
1.9.140.18:40691 218.208.111.14:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:29 Permit 10.41.1.112:55271 172.217.31.78:80
1.9.140.18:26876 172.217.31.78:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:29 Permit 10.41.100.1:65277 10.10.1.4:53
10.41.100.1:65277 10.10.1.4:53 59 sec 88 0
DNS Close - AGE OUT
2018-12-10 10:18:29 Permit 10.41.200.51:52684 172.217.166.142:443
1.9.140.18:11450 172.217.166.142:443 10 sec 2521 1468
HTTPS Close - TCP FIN
2018-12-10 10:18:29 Permit 10.41.100.1:49317 10.10.1.40:53
10.41.100.1:49317 10.10.1.40:53 59 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:18:29 Permit 10.41.100.1:49442 10.10.1.24:53
10.41.100.1:49442 10.10.1.24:53 59 sec 94 0
DNS Close - AGE OUT
2018-12-10 10:18:29 Permit 10.41.100.1:50112 10.10.1.40:53
10.41.100.1:50112 10.10.1.40:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:29 Permit 10.41.100.1:49609 10.10.1.24:53
10.41.100.1:49609 10.10.1.24:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:29 Permit 10.41.100.1:65113 10.10.1.40:53
10.41.100.1:65113 10.10.1.40:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:29 Permit 10.41.100.1:49741 10.10.1.4:53
10.41.100.1:49741 10.10.1.4:53 59 sec 96 0
DNS Close - AGE OUT
2018-12-10 10:18:29 Permit 10.41.100.1:65013 10.10.1.4:53
10.41.100.1:65013 10.10.1.4:53 59 sec 90 0
DNS Close - AGE OUT
2018-12-10 10:18:29 Permit 10.41.100.1:65399 10.10.1.4:53
10.41.100.1:65399 10.10.1.4:53 59 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:18:29 Permit 10.41.5.80:61054 104.103.70.10:80
1.9.140.18:54476 104.103.70.10:80 3 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:18:29 Permit 10.41.100.1:49992 10.10.1.24:53
10.41.100.1:49992 10.10.1.24:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:29 Permit 10.41.100.1:50706 10.10.1.40:53
10.41.100.1:50706 10.10.1.40:53 59 sec 82 0
DNS Close - AGE OUT
2018-12-10 10:18:29 Permit 10.41.1.112:55269 172.217.31.78:80
1.9.140.18:43181 172.217.31.78:80 6 sec 926 1158
HTTP Close - TCP RST
2018-12-10 10:18:29 Permit 10.41.100.1:50335 10.10.1.4:53
10.41.100.1:50335 10.10.1.4:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:29 Permit 10.41.100.1:49712 10.10.1.4:53
10.41.100.1:49712 10.10.1.4:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:29 Permit 10.41.100.1:49836 10.10.1.40:53
10.41.100.1:49836 10.10.1.40:53 59 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:18:29 Permit 10.41.100.1:50409 10.10.1.40:53
10.41.100.1:50409 10.10.1.40:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:29 Permit 10.41.100.1:65378 10.10.1.24:53
10.41.100.1:65378 10.10.1.24:53 59 sec 99 0
DNS Close - AGE OUT
2018-12-10 10:18:29 Permit 10.41.100.1:50703 10.10.1.4:53
10.41.100.1:50703 10.10.1.4:53 59 sec 87 0
DNS Close - AGE OUT
2018-12-10 10:18:29 Permit 10.41.100.1:49396 10.10.1.4:53
10.41.100.1:49396 10.10.1.4:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:29 Permit 10.41.5.80:64361 10.41.100.1:53
10.41.5.80:64361 10.41.100.1:53 15 sec 91 91
DNS Close - RESP
2018-12-10 10:18:29 Permit 10.41.1.65:63088 10.41.100.1:53
10.41.1.65:63088 10.41.100.1:53 15 sec 81 81
DNS Close - RESP
2018-12-10 10:18:29 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 2 sec 242 81
DNS Close - RESP
2018-12-10 10:18:29 Permit 10.41.0.131:54155 10.41.100.1:135
10.41.0.131:54155 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:29 Permit 10.41.0.131:54154 10.41.100.1:135
10.41.0.131:54154 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:29 Permit 10.41.0.131:33714 10.41.100.1:49154
10.41.0.131:33714 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:29 Permit 10.41.0.131:33717 10.41.100.1:49154
10.41.0.131:33717 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:29 Permit 10.41.0.131:47936 10.41.100.1:53
10.41.0.131:47936 10.41.100.1:53 15 sec 77 77
DNS Close - RESP
2018-12-10 10:18:29 Permit 10.41.0.131:54151 10.41.100.1:135
10.41.0.131:54151 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:29 Permit 10.41.0.131:54152 10.41.100.1:135
10.41.0.131:54152 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:28 Permit 10.41.100.1:50791 10.10.1.40:53
10.41.100.1:50791 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:28 Permit 10.41.5.80:60153 10.41.100.1:53
10.41.5.80:60153 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:28 Permit 10.41.0.131:33724 10.41.100.1:49154
10.41.0.131:33724 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:28 Permit 10.41.0.131:54162 10.41.100.1:135
10.41.0.131:54162 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:28 Permit 10.41.0.131:54161 10.41.100.1:135
10.41.0.131:54161 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:28 Permit 10.62.1.52:55872 10.41.100.1:389
10.62.1.52:55872 10.41.100.1:389 0 sec 0 0
LDAP Creation
2018-12-10 10:18:28 Permit 10.41.5.80:61057 104.103.70.8:80
1.9.140.18:62932 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:28 Permit 10.41.5.80:61056 104.103.70.10:80
1.9.140.18:45787 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:28 Permit 10.41.1.51:53299 10.41.100.7:60313
10.41.1.51:53299 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:28 Permit 10.41.100.1:49664 10.10.1.24:53
10.41.100.1:49664 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:28 Permit 10.41.100.1:65183 10.10.1.4:53
10.41.100.1:65183 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:27 Permit 10.41.0.131:33721 10.41.100.1:49154
10.41.0.131:33721 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:27 Permit 10.41.0.131:54159 10.41.100.1:135
10.41.0.131:54159 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:27 Permit 10.41.0.131:54158 10.41.100.1:135
10.41.0.131:54158 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:27 Permit 10.41.1.55:52452 23.94.187.84:443
1.9.140.18:42317 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:27 Permit 10.41.1.57:62148 10.41.100.7:60313
10.41.1.57:62148 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:27 Permit 10.41.200.9:49154 10.41.100.1:53
10.41.200.9:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:27 Permit 10.41.100.1:65019 10.10.1.40:53
10.41.100.1:65019 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:27 Permit 10.41.200.2:49154 10.41.100.1:53
10.41.200.2:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:27 Permit 10.41.100.1:49333 10.10.1.4:53
10.41.100.1:49333 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:27 Permit 10.41.200.2:49154 10.41.100.1:53
10.41.200.2:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:27 Permit 10.41.200.9:49154 10.41.100.1:53
10.41.200.9:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:27 Permit 10.41.1.54:51460 10.41.100.1:53
10.41.1.54:51460 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:27 Permit 10.41.100.1:50210 10.10.1.40:53
10.41.100.1:50210 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:27 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:27 Permit 10.41.1.55:52451 172.217.166.138:443
1.9.140.18:26860 172.217.166.138:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:27 Permit 10.41.100.1:53 10.41.200.2:49154
10.41.100.1:53 10.41.200.2:49154 60 sec 76 0
UDP PORT 49154 Close - AGE OUT
2018-12-10 10:18:27 Permit 10.41.0.131:60363 8.8.8.8:53
1.9.140.18:1760 8.8.8.8:53 2 sec 79 115
DNS Close - RESP
2018-12-10 10:18:27 Permit 10.41.100.1:53 10.41.200.9:49154
10.41.100.1:53 10.41.200.9:49154 60 sec 76 0
UDP PORT 49154 Close - AGE OUT
2018-12-10 10:18:27 Permit 10.41.200.62:64979 216.58.196.42:443
1.9.140.18:11142 216.58.196.42:443 243 sec 4634 6825
HTTPS Close - TCP FIN
2018-12-10 10:18:27 Permit 10.41.100.1:49435 10.10.1.4:53
10.41.100.1:49435 10.10.1.4:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:27 Permit 10.41.100.1:50540 10.10.1.24:53
10.41.100.1:50540 10.10.1.24:53 59 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:27 Permit 10.41.100.1:49871 10.10.1.24:53
10.41.100.1:49871 10.10.1.24:53 75 sec 166 0
DNS Close - AGE OUT
2018-12-10 10:18:27 Permit 10.41.100.1:49609 10.10.1.40:53
10.41.100.1:49609 10.10.1.40:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:27 Permit 10.41.100.1:49235 10.10.1.40:53
10.41.100.1:49235 10.10.1.40:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:27 Permit 10.41.1.59:58851 172.217.26.144:80
1.9.140.18:3823 172.217.26.144:80 2 sec 940 19538
HTTP Close - TCP RST
2018-12-10 10:18:27 Permit 10.41.2.74:56327 104.103.55.181:443
1.9.140.18:20713 104.103.55.181:443 5 sec 5333 1325
HTTPS Close - TCP FIN
2018-12-10 10:18:27 Permit 10.41.200.62:64978 216.58.196.42:443
1.9.140.18:30539 216.58.196.42:443 243 sec 2989 6247
HTTPS Close - TCP FIN
2018-12-10 10:18:27 Permit 10.41.100.1:50087 10.10.1.4:53
10.41.100.1:50087 10.10.1.4:53 97 sec 162 0
DNS Close - AGE OUT
2018-12-10 10:18:27 Permit 10.41.2.74:56326 104.103.55.181:443
1.9.140.18:33321 104.103.55.181:443 5 sec 5333 1325
HTTPS Close - TCP FIN
2018-12-10 10:18:27 Permit 10.41.100.1:65390 10.10.1.4:53
10.41.100.1:65390 10.10.1.4:53 59 sec 94 0
DNS Close - AGE OUT
2018-12-10 10:18:27 Permit 10.41.2.74:56328 104.103.55.181:443
1.9.140.18:19739 104.103.55.181:443 5 sec 5333 1325
HTTPS Close - TCP FIN
2018-12-10 10:18:27 Permit 10.41.100.1:50308 10.10.1.40:53
10.41.100.1:50308 10.10.1.40:53 59 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:27 Permit 10.41.100.1:65320 10.10.1.24:53
10.41.100.1:65320 10.10.1.24:53 59 sec 82 0
DNS Close - AGE OUT
2018-12-10 10:18:27 Permit 10.41.100.1:50121 10.10.1.4:53
10.41.100.1:50121 10.10.1.4:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:27 Permit 10.41.0.131:54149 10.41.100.1:135
10.41.0.131:54149 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:27 Permit 10.41.0.131:54148 10.41.100.1:135
10.41.0.131:54148 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:27 Permit 10.41.1.51:53298 10.41.100.7:60313
10.41.1.51:53298 10.41.100.7:60313 4 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:27 Permit 10.41.0.131:33711 10.41.100.1:49154
10.41.0.131:33711 10.41.100.1:49154 4 sec 3808 4266
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:27 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 322 133
DNS Close - RESP
2018-12-10 10:18:27 Permit 10.41.1.55:52436 10.41.100.11:445
10.41.1.55:52436 10.41.100.11:445 22 sec 136 0
TCP PORT 445 Close - AGE OUT
2018-12-10 10:18:27 Permit 10.41.1.55:52437 10.41.100.11:445
10.41.1.55:52437 10.41.100.11:445 22 sec 136 0
TCP PORT 445 Close - AGE OUT
2018-12-10 10:18:27 Permit 10.41.1.55:52438 10.41.100.11:445
10.41.1.55:52438 10.41.100.11:445 22 sec 136 0
TCP PORT 445 Close - AGE OUT
2018-12-10 10:18:27 Permit 10.41.1.55:52439 10.41.100.11:139
10.41.1.55:52439 10.41.100.11:139 22 sec 136 0
NETBIOS (SSN) Close - AGE OUT
2018-12-10 10:18:26 Permit 10.41.1.55:137 10.41.100.11:137
10.41.1.55:137 10.41.100.11:137 0 sec 0 0
NETBIOS (NS) Creation
2018-12-10 10:18:26 Permit 10.41.5.80:61054 104.103.70.10:80
1.9.140.18:54476 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:26 Permit 10.41.0.131:33717 10.41.100.1:49154
10.41.0.131:33717 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:26 Permit 10.41.0.131:54155 10.41.100.1:135
10.41.0.131:54155 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:26 Permit 10.41.0.131:54154 10.41.100.1:135
10.41.0.131:54154 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:26 Permit 10.41.100.1:50438 10.10.1.24:53
10.41.100.1:50438 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:26 Permit 10.41.100.1:65052 10.10.1.4:53
10.41.100.1:65052 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:25 Permit 10.41.1.59:58851 172.217.26.144:80
1.9.140.18:3823 172.217.26.144:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:25 Permit 10.41.100.1:64980 10.10.1.24:53
10.41.100.1:64980 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:25 Permit 10.41.100.1:65438 10.10.1.4:53
10.41.100.1:65438 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:25 Permit 10.41.100.1:49664 10.10.1.40:53
10.41.100.1:49664 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:25 Permit 10.41.0.131:36773 10.41.100.1:53
10.41.0.131:36773 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:25 Permit 10.41.0.131:33714 10.41.100.1:49154
10.41.0.131:33714 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:25 Permit 10.41.0.131:54152 10.41.100.1:135
10.41.0.131:54152 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:25 Permit 10.41.0.131:54151 10.41.100.1:135
10.41.0.131:54151 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:25 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:25 Permit 10.41.100.1:49712 10.10.1.24:53
10.41.100.1:49712 10.10.1.24:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:25 Permit 10.41.2.74:56213 104.103.55.181:443
1.9.140.18:1415 104.103.55.181:443 308 sec 264268 50966
HTTPS Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.2.74:56320 104.103.55.181:443
1.9.140.18:15116 104.103.55.181:443 4 sec 9227 2245
HTTPS Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.2.74:56324 104.103.55.181:443
1.9.140.18:64252 104.103.55.181:443 3 sec 5333 1325
HTTPS Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.100.1:65013 10.10.1.24:53
10.41.100.1:65013 10.10.1.24:53 59 sec 90 0
DNS Close - AGE OUT
2018-12-10 10:18:25 Permit 10.41.2.74:56322 104.103.55.181:443
1.9.140.18:48352 104.103.55.181:443 4 sec 5352 1325
HTTPS Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.2.74:56262 104.103.55.181:443
1.9.140.18:41711 104.103.55.181:443 170 sec 253286 48087
HTTPS Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.1.59:58849 172.217.26.144:80
1.9.140.18:59164 172.217.26.144:80 2 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:18:25 Permit 10.41.5.76:50542 172.217.166.129:443
1.9.140.18:15787 172.217.166.129:443 242 sec 6997 100388
HTTPS Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.2.74:56329 104.103.55.181:443
1.9.140.18:59137 104.103.55.181:443 3 sec 5334 1325
HTTPS Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.100.1:50703 10.10.1.24:53
10.41.100.1:50703 10.10.1.24:53 59 sec 87 0
DNS Close - AGE OUT
2018-12-10 10:18:25 Permit 10.41.100.1:65378 10.10.1.40:53
10.41.100.1:65378 10.10.1.40:53 59 sec 99 0
DNS Close - AGE OUT
2018-12-10 10:18:25 Permit 10.41.2.74:56323 104.103.55.181:443
1.9.140.18:60192 104.103.55.181:443 3 sec 5333 1325
HTTPS Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.1.112:55265 218.208.111.14:80
1.9.140.18:14007 218.208.111.14:80 10 sec 1828 21913
HTTP Close - TCP RST
2018-12-10 10:18:25 Permit 10.41.2.74:56319 104.103.55.181:443
1.9.140.18:59136 104.103.55.181:443 4 sec 5352 1325
HTTPS Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.100.1:49992 10.10.1.40:53
10.41.100.1:49992 10.10.1.40:53 59 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:25 Permit 10.41.2.74:56263 104.103.55.181:443
1.9.140.18:33451 104.103.55.181:443 170 sec 237086 41759
HTTPS Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.200.74:58581 1.9.8.41:443
1.9.140.18:33805 1.9.8.41:443 2 sec 1263 2011
HTTPS Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.2.74:56321 104.103.55.181:443
1.9.140.18:39172 104.103.55.181:443 4 sec 5351 1325
HTTPS Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.2.74:56325 104.103.55.181:443
1.9.140.18:5281 104.103.55.181:443 3 sec 5334 1325
HTTPS Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.2.74:56317 104.103.55.181:443
1.9.140.18:50679 104.103.55.181:443 4 sec 5352 1325
HTTPS Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.5.81:63180 210.187.22.204:80
1.9.140.18:8208 210.187.22.204:80 2 sec 1062 21450
HTTP Close - TCP RST
2018-12-10 10:18:25 Permit 10.41.100.1:49741 10.10.1.24:53
10.41.100.1:49741 10.10.1.24:53 59 sec 96 0
DNS Close - AGE OUT
2018-12-10 10:18:25 Permit 10.41.2.74:56260 104.103.55.181:443
1.9.140.18:44844 104.103.55.181:443 170 sec 237052 38343
HTTPS Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.2.74:56330 104.103.55.181:443
1.9.140.18:37761 104.103.55.181:443 3 sec 5333 1325
HTTPS Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.2.74:56211 104.103.55.181:443
1.9.140.18:18598 104.103.55.181:443 310 sec 280633 81288
HTTPS Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.5.72:63227 23.51.44.78:443
1.9.140.18:32674 23.51.44.78:443 769 sec 6415 9756
HTTPS Close - TCP RST
2018-12-10 10:18:25 Permit 10.41.100.1:50335 10.10.1.24:53
10.41.100.1:50335 10.10.1.24:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:25 Permit 10.41.100.1:65277 10.10.1.24:53
10.41.100.1:65277 10.10.1.24:53 59 sec 88 0
DNS Close - AGE OUT
2018-12-10 10:18:25 Permit 10.41.100.1:65399 10.10.1.24:53
10.41.100.1:65399 10.10.1.24:53 59 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:18:25 Permit 10.41.5.80:61053 104.103.70.10:80
1.9.140.18:43460 104.103.70.10:80 3 sec 804 39714
HTTP Close - TCP RST
2018-12-10 10:18:25 Permit 10.41.100.1:49442 10.10.1.40:53
10.41.100.1:49442 10.10.1.40:53 59 sec 94 0
DNS Close - AGE OUT
2018-12-10 10:18:25 Permit 10.41.100.1:49163 10.10.1.4:53
10.41.100.1:49163 10.10.1.4:53 60 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:25 Permit 10.41.100.1:49396 10.10.1.24:53
10.41.100.1:49396 10.10.1.24:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:25 Permit 10.41.0.131:60363 8.8.8.8:53
1.9.140.18:1760 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:25 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 4 sec 165 80
DNS Close - RESP
2018-12-10 10:18:25 Permit 10.41.0.131:54142 10.41.100.1:135
10.41.0.131:54142 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.200.58:49989 10.41.100.1:53
10.41.200.58:49989 10.41.100.1:53 16 sec 83 83
DNS Close - RESP
2018-12-10 10:18:25 Permit 10.41.5.76:50552 10.41.100.1:88
10.41.5.76:50552 10.41.100.1:88 4 sec 2159 2122
TCP PORT 88 Close - TCP RST
2018-12-10 10:18:25 Permit 10.41.0.131:57958 10.41.100.1:53
10.41.0.131:57958 10.41.100.1:53 16 sec 77 77
DNS Close - RESP
2018-12-10 10:18:25 Permit 10.41.3.74:52038 10.41.100.1:53
10.41.3.74:52038 10.41.100.1:53 16 sec 87 87
DNS Close - RESP
2018-12-10 10:18:25 Permit 10.41.0.131:33707 10.41.100.1:49154
10.41.0.131:33707 10.41.100.1:49154 3 sec 3808 4196
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.0.131:33704 10.41.100.1:49154
10.41.0.131:33704 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.1.57:62147 10.41.100.7:60313
10.41.1.57:62147 10.41.100.7:60313 3 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.1.55:52435 10.41.100.11:445
10.41.1.55:52435 10.41.100.11:445 21 sec 136 0
TCP PORT 445 Close - AGE OUT
2018-12-10 10:18:25 Permit 10.41.0.131:54145 10.41.100.1:135
10.41.0.131:54145 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.0.131:54144 10.41.100.1:135
10.41.0.131:54144 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:25 Permit 10.41.0.131:54141 10.41.100.1:135
10.41.0.131:54141 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:24 Permit 10.41.100.1:67 10.41.200.254:67
10.41.100.1:67 10.41.200.254:67 0 sec 0 0
DHCP Creation
2018-12-10 10:18:24 Permit 10.41.100.1:65183 10.10.1.24:53
10.41.100.1:65183 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:24 Permit 10.41.100.1:49721 10.10.1.4:53
10.41.100.1:49721 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:23 Deny 10.41.5.80:61049 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 28 HTTPS Traffic
Denied
2018-12-10 10:18:23 Permit 10.41.0.131:33711 10.41.100.1:49154
10.41.0.131:33711 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:23 Permit 10.41.0.131:54149 10.41.100.1:135
10.41.0.131:54149 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:23 Permit 10.41.0.131:54148 10.41.100.1:135
10.41.0.131:54148 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:23 Permit 10.41.1.59:58849 172.217.26.144:80
1.9.140.18:59164 172.217.26.144:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:23 Permit 10.41.1.51:53298 10.41.100.7:60313
10.41.1.51:53298 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:23 Permit 10.41.5.81:63180 210.187.22.204:80
1.9.140.18:8208 210.187.22.204:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:23 Deny 10.41.200.62:64996 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 28 HTTPS Traffic
Denied
2018-12-10 10:18:23 Permit 10.41.200.74:58582 1.9.8.41:80
1.9.140.18:15708 1.9.8.41:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:23 Permit 10.41.5.81:63179 172.217.31.78:80
1.9.140.18:37051 172.217.31.78:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:23 Permit 10.41.200.74:58581 1.9.8.41:443
1.9.140.18:33805 1.9.8.41:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:23 Permit 10.41.100.1:49333 10.10.1.24:53
10.41.100.1:49333 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:23 Permit 10.41.100.1:50495 10.10.1.4:53
10.41.100.1:50495 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:23 Permit 10.41.1.112:55269 172.217.31.78:80
1.9.140.18:43181 172.217.31.78:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:23 Permit 10.41.2.74:56261 104.103.55.181:443
1.9.140.18:10680 104.103.55.181:443 168 sec 244980 46387
HTTPS Close - TCP FIN
2018-12-10 10:18:23 Permit 10.41.1.55:52447 23.94.187.84:443
1.9.140.18:13644 23.94.187.84:443 2 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:18:23 Permit 10.41.100.1:50642 10.10.1.4:53
10.41.100.1:50642 10.10.1.4:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:23 Permit 10.41.5.81:63176 172.217.31.78:80
1.9.140.18:51558 172.217.31.78:80 6 sec 976 1208
HTTP Close - TCP RST
2018-12-10 10:18:23 Permit 10.41.100.1:65390 10.10.1.24:53
10.41.100.1:65390 10.10.1.24:53 59 sec 94 0
DNS Close - AGE OUT
2018-12-10 10:18:23 Permit 10.41.100.1:50540 10.10.1.40:53
10.41.100.1:50540 10.10.1.40:53 59 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:23 Permit 10.41.2.74:56318 104.103.55.181:443
1.9.140.18:26512 104.103.55.181:443 2 sec 5352 1325
HTTPS Close - TCP FIN
2018-12-10 10:18:23 Permit 10.41.1.65:63890 104.20.25.11:443
1.9.140.18:39299 104.20.25.11:443 627 sec 13323 40218
HTTPS Close - TCP FIN
2018-12-10 10:18:23 Permit 10.41.200.62:64977 172.217.26.142:443
1.9.140.18:38383 172.217.26.142:443 247 sec 3817 7009
HTTPS Close - TCP FIN
2018-12-10 10:18:23 Permit 10.41.100.1:50674 10.10.1.4:53
10.41.100.1:50674 10.10.1.4:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:23 Permit 10.41.100.1:49435 10.10.1.24:53
10.41.100.1:49435 10.10.1.24:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:23 Permit 10.41.100.1:50121 10.10.1.24:53
10.41.100.1:50121 10.10.1.24:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:23 Permit 10.41.2.74:56042 103.231.98.196:443
1.9.140.18:42449 103.231.98.196:443 363 sec 20172 11222
HTTPS Close - TCP FIN
2018-12-10 10:18:23 Permit 10.41.100.1:50087 10.10.1.24:53
10.41.100.1:50087 10.10.1.24:53 97 sec 162 0
DNS Close - AGE OUT
2018-12-10 10:18:23 Permit 10.41.5.80:61051 104.103.70.10:80
1.9.140.18:10275 104.103.70.10:80 3 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:18:23 Permit 10.41.2.74:56216 173.241.248.143:443
1.9.140.18:35198 173.241.248.143:443 305 sec 3162 4894
HTTPS Close - TCP FIN
2018-12-10 10:18:23 Permit 10.41.100.1:49871 10.10.1.40:53
10.41.100.1:49871 10.10.1.40:53 75 sec 166 0
DNS Close - AGE OUT
2018-12-10 10:18:23 Permit 10.41.2.74:56025 151.101.76.175:443
1.9.140.18:45262 151.101.76.175:443 366 sec 3600 8426
HTTPS Close - TCP RST
2018-12-10 10:18:23 Permit 10.41.2.74:56304 54.214.40.57:443
1.9.140.18:39705 54.214.40.57:443 35 sec 3372 1900
HTTPS Close - TCP RST
2018-12-10 10:18:23 Permit 10.41.100.1:65320 10.10.1.40:53
10.41.100.1:65320 10.10.1.40:53 59 sec 82 0
DNS Close - AGE OUT
2018-12-10 10:18:23 Permit 10.41.203.2:50284 10.41.100.1:53
10.41.203.2:50284 10.41.100.1:53 16 sec 76 76
DNS Close - RESP
2018-12-10 10:18:23 Permit 10.41.0.131:33700 10.41.100.1:49154
10.41.0.131:33700 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:23 Permit 10.41.5.80:63684 10.41.100.1:53
10.41.5.80:63684 10.41.100.1:53 12 sec 92 92
DNS Close - RESP
2018-12-10 10:18:23 Permit 10.41.0.131:54138 10.41.100.1:135
10.41.0.131:54138 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:23 Permit 10.41.0.131:33697 10.41.100.1:49154
10.41.0.131:33697 10.41.100.1:49154 5 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:23 Permit 10.41.5.80:60485 10.41.100.1:53
10.41.5.80:60485 10.41.100.1:53 14 sec 92 92
DNS Close - RESP
2018-12-10 10:18:23 Permit 10.41.0.131:54137 10.41.100.1:135
10.41.0.131:54137 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:23 Permit 10.41.203.4:62436 10.41.100.1:53
10.41.203.4:62436 10.41.100.1:53 15 sec 76 76
DNS Close - RESP
2018-12-10 10:18:23 Permit 10.41.1.50:53537 10.41.100.7:80
10.41.1.50:53537 10.41.100.7:80 211 sec 10816 160547
HTTP Close - TCP RST
2018-12-10 10:18:22 Permit 10.41.2.74:56331 104.103.55.181:443
1.9.140.18:7564 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:22 Permit 10.41.2.74:56330 104.103.55.181:443
1.9.140.18:37761 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:22 Permit 10.41.0.131:33707 10.41.100.1:49154
10.41.0.131:33707 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:22 Permit 10.41.0.131:54145 10.41.100.1:135
10.41.0.131:54145 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:22 Permit 10.41.0.131:54144 10.41.100.1:135
10.41.0.131:54144 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:22 Permit 10.41.5.80:61053 104.103.70.10:80
1.9.140.18:43460 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:22 Permit 10.41.1.65:64175 52.175.39.99:443
1.9.140.18:24289 52.175.39.99:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:22 Permit 10.41.1.57:62147 10.41.100.7:60313
10.41.1.57:62147 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:22 Permit 10.41.100.1:50438 10.10.1.40:53
10.41.100.1:50438 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:22 Permit 10.41.1.65:53890 10.41.100.1:53
10.41.1.65:53890 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:22 Permit 10.41.2.74:56329 104.103.55.181:443
1.9.140.18:59137 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:22 Permit 10.41.2.74:56328 104.103.55.181:443
1.9.140.18:19739 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:22 Permit 10.41.2.74:56327 104.103.55.181:443
1.9.140.18:20713 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:22 Permit 10.41.100.1:65052 10.10.1.24:53
10.41.100.1:65052 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:22 Permit 10.41.100.1:65214 10.10.1.4:53
10.41.100.1:65214 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:22 Permit 10.41.100.1:50905 10.10.1.4:53
10.41.100.1:50905 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:22 Permit 10.41.2.74:56326 104.103.55.181:443
1.9.140.18:33321 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:22 Permit 10.41.2.74:56325 104.103.55.181:443
1.9.140.18:5281 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:22 Permit 10.41.2.74:56324 104.103.55.181:443
1.9.140.18:64252 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:22 Permit 10.41.2.74:56323 104.103.55.181:443
1.9.140.18:60192 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:22 Permit 10.41.100.2:4381 10.100.10.189:139
10.41.100.2:4381 10.100.10.189:139 0 sec 0 0
NETBIOS (SSN) Creation
2018-12-10 10:18:21 Permit 10.41.1.55:52447 23.94.187.84:443
1.9.140.18:13644 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:21 Permit 10.41.0.131:33704 10.41.100.1:49154
10.41.0.131:33704 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:21 Permit 10.41.0.131:54142 10.41.100.1:135
10.41.0.131:54142 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:21 Permit 10.41.0.131:54141 10.41.100.1:135
10.41.0.131:54141 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:21 Permit 10.41.2.74:56322 104.103.55.181:443
1.9.140.18:48352 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:21 Permit 10.41.100.1:64980 10.10.1.40:53
10.41.100.1:64980 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:21 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:21 Permit 10.41.2.74:56321 104.103.55.181:443
1.9.140.18:39172 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:21 Permit 10.41.2.74:56320 104.103.55.181:443
1.9.140.18:15116 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:21 Permit 10.41.2.74:56319 104.103.55.181:443
1.9.140.18:59136 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:21 Permit 10.41.2.74:56318 104.103.55.181:443
1.9.140.18:26512 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:21 Permit 10.41.2.74:56317 104.103.55.181:443
1.9.140.18:50679 104.103.55.181:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:21 Permit 10.41.100.1:65438 10.10.1.24:53
10.41.100.1:65438 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:21 Permit 10.41.5.76:50552 10.41.100.1:88
10.41.5.76:50552 10.41.100.1:88 0 sec 0 0
TCP PORT 88 Creation
2018-12-10 10:18:21 Permit 10.41.5.76:50551 10.41.100.1:49155
10.41.5.76:50551 10.41.100.1:49155 0 sec 0 0
TCP PORT 49155 Creation
2018-12-10 10:18:21 Permit 10.41.5.76:50550 10.41.100.1:135
10.41.5.76:50550 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:21 Permit 10.41.100.1:65183 10.10.1.40:53
10.41.100.1:65183 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:21 Permit 10.41.2.74:63618 10.41.100.1:53
10.41.2.74:63618 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:21 Permit 10.41.1.112:55264 172.217.31.78:80
1.9.140.18:6392 172.217.31.78:80 6 sec 928 726
HTTP Close - TCP RST
2018-12-10 10:18:21 Permit 10.41.100.1:65277 10.10.1.40:53
10.41.100.1:65277 10.10.1.40:53 59 sec 88 0
DNS Close - AGE OUT
2018-12-10 10:18:21 Permit 10.41.100.1:49163 10.10.1.24:53
10.41.100.1:49163 10.10.1.24:53 60 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:21 Permit 10.41.100.1:65390 10.10.1.40:53
10.41.100.1:65390 10.10.1.40:53 60 sec 94 0
DNS Close - AGE OUT
2018-12-10 10:18:21 Permit 10.41.100.1:49712 10.10.1.40:53
10.41.100.1:49712 10.10.1.40:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:21 Permit 10.41.100.1:50335 10.10.1.40:53
10.41.100.1:50335 10.10.1.40:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:21 Permit 10.41.100.2:60495 205.251.195.240:53
1.9.140.18:23008 205.251.195.240:53 2 sec 81 269
DNS Close - RESP
2018-12-10 10:18:21 Permit 10.41.100.1:50703 10.10.1.40:53
10.41.100.1:50703 10.10.1.40:53 59 sec 87 0
DNS Close - AGE OUT
2018-12-10 10:18:21 Permit 10.41.100.1:50184 10.10.1.4:53
10.41.100.1:50184 10.10.1.4:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:21 Permit 10.41.100.1:65478 10.10.1.4:53
10.41.100.1:65478 10.10.1.4:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:21 Permit 10.41.0.131:36976 8.8.8.8:53
1.9.140.18:13470 8.8.8.8:53 2 sec 77 113
DNS Close - RESP
2018-12-10 10:18:21 Permit 10.41.100.1:49435 10.10.1.40:53
10.41.100.1:49435 10.10.1.40:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:21 Permit 10.41.100.1:65013 10.10.1.40:53
10.41.100.1:65013 10.10.1.40:53 59 sec 90 0
DNS Close - AGE OUT
2018-12-10 10:18:21 Permit 10.41.100.1:65399 10.10.1.40:53
10.41.100.1:65399 10.10.1.40:53 59 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:18:21 Permit 10.41.2.74:56303 52.218.96.131:443
1.9.140.18:18375 52.218.96.131:443 34 sec 3319 7053
HTTPS Close - TCP RST
2018-12-10 10:18:21 Permit 10.41.100.1:49741 10.10.1.40:53
10.41.100.1:49741 10.10.1.40:53 59 sec 96 0
DNS Close - AGE OUT
2018-12-10 10:18:21 Permit 10.41.100.1:49396 10.10.1.40:53
10.41.100.1:49396 10.10.1.40:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:21 Permit 10.41.0.131:54131 10.41.100.1:135
10.41.0.131:54131 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:21 Permit 10.41.0.131:33694 10.41.100.1:49154
10.41.0.131:33694 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:21 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 245 125
DNS Close - RESP
2018-12-10 10:18:21 Permit 10.41.0.131:54132 10.41.100.1:135
10.41.0.131:54132 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:21 Permit 10.41.1.57:62146 10.41.100.7:60313
10.41.1.57:62146 10.41.100.7:60313 4 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:21 Permit 10.41.1.51:53291 10.41.100.7:60313
10.41.1.51:53291 10.41.100.7:60313 3 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:21 Permit 10.41.0.131:54135 10.41.100.1:135
10.41.0.131:54135 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:21 Permit 10.41.0.131:54134 10.41.100.1:135
10.41.0.131:54134 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:20 Permit 10.41.5.80:61051 104.103.70.10:80
1.9.140.18:10275 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:20 Permit 10.41.100.1:49721 10.10.1.24:53
10.41.100.1:49721 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:20 Permit 10.41.0.131:33700 10.41.100.1:49154
10.41.0.131:33700 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:20 Permit 10.41.0.131:54138 10.41.100.1:135
10.41.0.131:54138 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:20 Permit 10.41.0.131:54137 10.41.100.1:135
10.41.0.131:54137 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:19 Permit 10.41.100.1:49333 10.10.1.40:53
10.41.100.1:49333 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:19 Permit 10.41.0.131:46171 10.41.100.1:53
10.41.0.131:46171 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:19 Permit 10.41.0.131:36976 8.8.8.8:53
1.9.140.18:13470 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:19 Permit 10.41.100.2:10117 10.100.10.189:512
10.41.100.2:10117 10.100.10.189:512 0 sec 0 0
ICMP Creation
2018-12-10 10:18:19 Permit 10.41.100.1:50495 10.10.1.24:53
10.41.100.1:50495 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:19 Permit 10.41.100.1:65444 10.10.1.4:53
10.41.100.1:65444 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:19 Permit 10.41.100.2:60495 205.251.195.240:53
1.9.140.18:23008 205.251.195.240:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:19 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:19 Permit 10.41.200.51:52685 172.217.166.142:443
1.9.140.18:56121 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:19 Permit 10.41.200.72:64121 172.217.166.138:443
1.9.140.18:16800 172.217.166.138:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:19 Permit 10.41.200.51:52684 172.217.166.142:443
1.9.140.18:11450 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:19 Permit 10.41.100.1:65052 10.10.1.40:53
10.41.100.1:65052 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:19 Permit 10.41.200.72:57192 10.41.100.1:53
10.41.200.72:57192 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:19 Permit 10.41.100.1:50087 10.10.1.40:53
10.41.100.1:50087 10.10.1.40:53 96 sec 162 0
DNS Close - AGE OUT
2018-12-10 10:18:19 Permit 10.41.1.57:53828 8.8.4.4:53
1.9.140.18:5471 8.8.4.4:53 1 sec 76 140
DNS Close - RESP
2018-12-10 10:18:19 Permit 10.41.1.55:52445 23.94.187.84:443
1.9.140.18:44108 23.94.187.84:443 4 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:18:19 Permit 10.41.5.80:61050 104.103.70.10:80
1.9.140.18:62242 104.103.70.10:80 3 sec 804 38192
HTTP Close - TCP RST
2018-12-10 10:18:19 Permit 10.41.100.1:49751 10.10.1.4:53
10.41.100.1:49751 10.10.1.4:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:19 Permit 10.41.100.1:65046 10.10.1.4:53
10.41.100.1:65046 10.10.1.4:53 60 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:18:19 Permit 10.41.1.65:64164 103.243.220.231:80
1.9.140.18:5054 103.243.220.231:80 16 sec 6021 5959
HTTP Close - TCP FIN
2018-12-10 10:18:19 Permit 10.41.100.1:50674 10.10.1.24:53
10.41.100.1:50674 10.10.1.24:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:19 Permit 10.41.100.1:65437 10.10.1.4:53
10.41.100.1:65437 10.10.1.4:53 60 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:18:19 Permit 10.41.5.81:63173 172.217.31.78:80
1.9.140.18:25302 172.217.31.78:80 8 sec 976 1208
HTTP Close - TCP RST
2018-12-10 10:18:19 Permit 10.41.1.65:64167 72.34.250.78:443
1.9.140.18:14776 72.34.250.78:443 16 sec 2659 6981
HTTPS Close - TCP RST
2018-12-10 10:18:19 Permit 10.41.100.1:49797 10.10.1.4:53
10.41.100.1:49797 10.10.1.4:53 59 sec 88 0
DNS Close - AGE OUT
2018-12-10 10:18:19 Permit 10.41.1.65:64168 72.34.250.78:443
1.9.140.18:9421 72.34.250.78:443 16 sec 332 284
HTTPS Close - TCP FIN
2018-12-10 10:18:19 Permit 10.41.5.81:63177 210.187.22.204:80
1.9.140.18:58914 210.187.22.204:80 2 sec 1062 21450
HTTP Close - TCP RST
2018-12-10 10:18:19 Permit 10.41.100.1:50121 10.10.1.40:53
10.41.100.1:50121 10.10.1.40:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:19 Permit 10.41.100.1:50642 10.10.1.24:53
10.41.100.1:50642 10.10.1.24:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:19 Permit 10.41.200.54:55222 172.217.26.133:443
1.9.140.18:42896 172.217.26.133:443 5 sec 3981 2172
HTTPS Close - TCP FIN
2018-12-10 10:18:19 Permit 10.41.100.1:49926 10.10.1.4:53
10.41.100.1:49926 10.10.1.4:53 59 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:19 Permit 10.41.1.65:63765 23.51.34.70:443
1.9.140.18:40388 23.51.34.70:443 311 sec 6640 95737
HTTPS Close - TCP RST
2018-12-10 10:18:19 Permit 10.41.1.57:62142 5.100.152.23:80
1.9.140.18:16570 5.100.152.23:80 22 sec 206 0
HTTP Close - AGE OUT
2018-12-10 10:18:19 Permit 10.41.0.131:54128 10.41.100.1:135
10.41.0.131:54128 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:19 Permit 10.41.1.65:52191 10.41.100.1:53
10.41.1.65:52191 10.41.100.1:53 15 sec 77 77
DNS Close - RESP
2018-12-10 10:18:19 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 8 sec 409 84
DNS Close - RESP
2018-12-10 10:18:19 Permit 10.41.0.131:33690 10.41.100.1:49154
10.41.0.131:33690 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:19 Permit 10.41.1.112:55267 10.41.100.1:88
10.41.1.112:55267 10.41.100.1:88 3 sec 1600 1610
TCP PORT 88 Close - TCP RST
2018-12-10 10:18:19 Permit 10.41.0.131:54127 10.41.100.1:135
10.41.0.131:54127 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:19 Permit 10.41.1.112:51970 10.41.100.1:53
10.41.1.112:51970 10.41.100.1:53 4 sec 83 83
DNS Close - RESP
2018-12-10 10:18:19 Permit 10.41.0.131:33685 10.41.100.1:49154
10.41.0.131:33685 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:19 Permit 10.41.0.131:54122 10.41.100.1:135
10.41.0.131:54122 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:19 Permit 10.41.0.131:58563 10.41.100.1:53
10.41.0.131:58563 10.41.100.1:53 15 sec 73 73
DNS Close - RESP
2018-12-10 10:18:19 Permit 10.41.0.131:54123 10.41.100.1:135
10.41.0.131:54123 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:19 Permit 10.41.1.65:61858 10.41.100.1:53
10.41.1.65:61858 10.41.100.1:53 15 sec 81 81
DNS Close - RESP
2018-12-10 10:18:19 Permit 10.41.5.81:62865 10.41.100.1:53
10.41.5.81:62865 10.41.100.1:53 14 sec 83 83
DNS Close - RESP
2018-12-10 10:18:18 Permit 10.41.7.70:57043 172.217.26.142:443
1.9.140.18:54601 172.217.26.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:18 Permit 10.41.0.131:33697 10.41.100.1:49154
10.41.0.131:33697 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:18 Permit 10.41.0.131:54135 10.41.100.1:135
10.41.0.131:54135 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:18 Permit 10.41.0.131:54134 10.41.100.1:135
10.41.0.131:54134 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:18 Permit 10.41.1.57:53828 8.8.4.4:53
1.9.140.18:5471 8.8.4.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:18 Permit 10.41.1.51:53291 10.41.100.7:60313
10.41.1.51:53291 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:18 Permit 10.41.100.1:65214 10.10.1.24:53
10.41.100.1:65214 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:18 Permit 10.41.100.1:50905 10.10.1.24:53
10.41.100.1:50905 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:18 Permit 10.41.203.4:63407 10.41.100.1:53
10.41.203.4:63407 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:18 Permit 10.41.1.65:64174 103.243.221.51:80
1.9.140.18:60622 103.243.221.51:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:17 Deny 10.41.5.80:61049 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 32 HTTPS Traffic
Denied
2018-12-10 10:18:17 Permit 10.41.0.131:33694 10.41.100.1:49154
10.41.0.131:33694 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:17 Permit 10.41.0.131:54132 10.41.100.1:135
10.41.0.131:54132 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:17 Permit 10.41.0.131:54131 10.41.100.1:135
10.41.0.131:54131 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:17 Deny 10.41.200.62:64996 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 32 HTTPS Traffic
Denied
2018-12-10 10:18:17 Permit 10.41.100.1:65438 10.10.1.40:53
10.41.100.1:65438 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:17 Permit 10.41.203.2:55211 10.41.100.1:53
10.41.203.2:55211 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:17 Permit 10.41.5.81:63177 210.187.22.204:80
1.9.140.18:58914 210.187.22.204:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:17 Permit 10.41.5.81:63176 172.217.31.78:80
1.9.140.18:51558 172.217.31.78:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:17 Permit 10.41.1.57:62146 10.41.100.7:60313
10.41.1.57:62146 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:17 Permit 10.41.100.1:65323 10.10.1.4:53
10.41.100.1:65323 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:17 Permit 10.41.100.1:65507 10.10.1.4:53
10.41.100.1:65507 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:17 Permit 10.41.100.1:49721 10.10.1.40:53
10.41.100.1:49721 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:17 Permit 10.41.100.2:9861 10.100.10.189:512
10.41.100.2:9861 10.100.10.189:512 0 sec 0 0
ICMP Creation
2018-12-10 10:18:17 Permit 10.41.100.2:4380 10.100.10.189:445
10.41.100.2:4380 10.100.10.189:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:18:17 Permit 10.41.200.54:55223 172.217.166.142:443
1.9.140.18:54958 172.217.166.142:443 3 sec 4864 2646
HTTPS Close - TCP FIN
2018-12-10 10:18:17 Permit 10.41.100.2:54246 104.103.70.183:53
1.9.140.18:58205 104.103.70.183:53 2 sec 86 106
DNS Close - RESP
2018-12-10 10:18:17 Permit 10.41.200.65:57643 117.18.232.200:443
1.9.140.18:46037 117.18.232.200:443 184 sec 9994 188787
HTTPS Close - TCP RST
2018-12-10 10:18:17 Permit 10.41.100.1:49363 10.10.1.4:53
10.41.100.1:49363 10.10.1.4:53 60 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:17 Permit 10.41.100.1:49163 10.10.1.40:53
10.41.100.1:49163 10.10.1.40:53 60 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:17 Permit 10.41.1.65:64166 103.243.220.231:80
1.9.140.18:39875 103.243.220.231:80 14 sec 5957 1376
HTTP Close - TCP FIN
2018-12-10 10:18:17 Permit 10.41.1.65:63763 23.51.34.70:443
1.9.140.18:50284 23.51.34.70:443 310 sec 7476 33318
HTTPS Close - TCP RST
2018-12-10 10:18:17 Permit 10.41.100.1:49616 10.10.1.4:53
10.41.100.1:49616 10.10.1.4:53 60 sec 86 0
DNS Close - AGE OUT
2018-12-10 10:18:17 Permit 10.41.1.65:64169 103.243.221.51:80
1.9.140.18:48661 103.243.221.51:80 12 sec 27019 4336
HTTP Close - TCP FIN
2018-12-10 10:18:17 Permit 10.41.100.1:65478 10.10.1.24:53
10.41.100.1:65478 10.10.1.24:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:17 Permit 10.41.5.80:61047 104.103.70.10:80
1.9.140.18:43538 104.103.70.10:80 6 sec 934 550
HTTP Close - TCP RST
2018-12-10 10:18:17 Permit 10.41.100.1:50184 10.10.1.24:53
10.41.100.1:50184 10.10.1.24:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:17 Permit 10.41.100.1:50642 10.10.1.40:53
10.41.100.1:50642 10.10.1.40:53 60 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:17 Permit 10.41.1.54:52546 10.41.100.11:139
10.41.1.54:52546 10.41.100.11:139 22 sec 136 0
NETBIOS (SSN) Close - AGE OUT
2018-12-10 10:18:17 Permit 10.41.0.131:54118 10.41.100.1:135
10.41.0.131:54118 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:17 Permit 10.41.0.131:54119 10.41.100.1:135
10.41.0.131:54119 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:17 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 322 93
DNS Close - RESP
2018-12-10 10:18:17 Permit 10.41.1.51:53290 10.41.100.7:60313
10.41.1.51:53290 10.41.100.7:60313 4 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:17 Permit 10.41.0.131:33681 10.41.100.1:49154
10.41.0.131:33681 10.41.100.1:49154 4 sec 3808 4196
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:16 Permit 10.41.1.65:64173 72.34.250.78:443
1.9.140.18:56639 72.34.250.78:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:16 Permit 10.41.1.65:64172 103.243.220.231:80
1.9.140.18:9489 103.243.220.231:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:16 Permit 10.41.1.65:64171 72.34.250.78:443
1.9.140.18:10393 72.34.250.78:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:16 Permit 10.41.1.65:64170 103.243.220.231:80
1.9.140.18:33969 103.243.220.231:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:16 Permit 10.41.1.112:55267 10.41.100.1:88
10.41.1.112:55267 10.41.100.1:88 0 sec 0 0
TCP PORT 88 Creation
2018-12-10 10:18:16 Permit 10.41.1.112:55266 10.41.100.1:445
10.41.1.112:55266 10.41.100.1:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:18:16 Permit 10.41.5.80:61050 104.103.70.10:80
1.9.140.18:62242 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:16 Permit 10.41.0.131:33690 10.41.100.1:49154
10.41.0.131:33690 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:16 Permit 10.41.0.131:54128 10.41.100.1:135
10.41.0.131:54128 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:16 Permit 10.41.0.131:54127 10.41.100.1:135
10.41.0.131:54127 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:16 Permit 10.41.100.1:50745 10.10.1.4:53
10.41.100.1:50745 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:15 Permit 10.41.1.112:55265 218.208.111.14:80
1.9.140.18:14007 218.208.111.14:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:15 Permit 10.41.100.1:50495 10.10.1.40:53
10.41.100.1:50495 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:15 Permit 10.41.1.112:58005 10.41.100.1:53
10.41.1.112:58005 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:15 Permit 10.41.1.112:55264 172.217.31.78:80
1.9.140.18:6392 172.217.31.78:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:15 Permit 10.41.1.112:51970 10.41.100.1:53
10.41.1.112:51970 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:15 Permit 10.41.1.55:52445 23.94.187.84:443
1.9.140.18:44108 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:15 Permit 10.41.100.1:65444 10.10.1.24:53
10.41.100.1:65444 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:15 Permit 10.41.100.1:50816 10.10.1.4:53
10.41.100.1:50816 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:15 Permit 10.41.0.131:33685 10.41.100.1:49154
10.41.0.131:33685 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:15 Permit 10.41.0.131:54123 10.41.100.1:135
10.41.0.131:54123 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:15 Permit 10.41.0.131:54122 10.41.100.1:135
10.41.0.131:54122 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:15 Permit 10.41.100.2:54246 104.103.70.183:53
1.9.140.18:58205 104.103.70.183:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:15 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:15 Permit 10.41.100.1:50097 10.10.1.4:53
10.41.100.1:50097 10.10.1.4:53 60 sec 95 0
DNS Close - AGE OUT
2018-12-10 10:18:15 Permit 10.41.0.131:58811 8.8.8.8:53
1.9.140.18:12020 8.8.8.8:53 1 sec 77 113
DNS Close - RESP
2018-12-10 10:18:15 Permit 10.41.1.59:58848 172.217.26.144:80
1.9.140.18:33655 172.217.26.144:80 1 sec 1406 7764
HTTP Close - TCP RST
2018-12-10 10:18:15 Permit 10.41.100.1:50591 10.10.1.4:53
10.41.100.1:50591 10.10.1.4:53 60 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:15 Permit 10.41.100.1:50674 10.10.1.40:53
10.41.100.1:50674 10.10.1.40:53 59 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:15 Permit 10.41.100.1:49797 10.10.1.24:53
10.41.100.1:49797 10.10.1.24:53 59 sec 88 0
DNS Close - AGE OUT
2018-12-10 10:18:15 Permit 10.41.100.1:50907 10.10.1.4:53
10.41.100.1:50907 10.10.1.4:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:15 Permit 10.41.100.1:49965 10.10.1.4:53
10.41.100.1:49965 10.10.1.4:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:15 Permit 10.41.100.1:65046 10.10.1.24:53
10.41.100.1:65046 10.10.1.24:53 60 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:18:15 Permit 10.41.100.1:65437 10.10.1.24:53
10.41.100.1:65437 10.10.1.24:53 60 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:18:15 Permit 10.41.100.1:49926 10.10.1.24:53
10.41.100.1:49926 10.10.1.24:53 59 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:15 Permit 10.41.100.1:49751 10.10.1.24:53
10.41.100.1:49751 10.10.1.24:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:15 Permit 10.41.100.1:49658 10.10.1.4:53
10.41.100.1:49658 10.10.1.4:53 60 sec 86 0
DNS Close - AGE OUT
2018-12-10 10:18:15 Permit 10.41.1.65:64036 4.78.226.235:443
1.9.140.18:14461 4.78.226.235:443 134 sec 2522 7146
HTTPS Close - TCP RST
2018-12-10 10:18:15 Permit 10.41.5.80:61046 104.103.70.10:80
1.9.140.18:48089 104.103.70.10:80 4 sec 804 34745
HTTP Close - TCP RST
2018-12-10 10:18:15 Permit 10.41.1.62:63683 172.217.31.99:443
1.9.140.18:49465 172.217.31.99:443 242 sec 5134 6686
HTTPS Close - TCP FIN
2018-12-10 10:18:15 Permit 10.41.100.1:50702 10.10.1.4:53
10.41.100.1:50702 10.10.1.4:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:15 Permit 10.41.100.1:49607 10.10.1.4:53
10.41.100.1:49607 10.10.1.4:53 60 sec 96 0
DNS Close - AGE OUT
2018-12-10 10:18:15 Permit 10.41.0.131:54106 10.41.100.1:135
10.41.0.131:54106 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:15 Permit 10.41.1.54:52545 10.41.100.11:445
10.41.1.54:52545 10.41.100.11:445 21 sec 136 0
TCP PORT 445 Close - AGE OUT
2018-12-10 10:18:15 Permit 10.41.0.131:54109 10.41.100.1:135
10.41.0.131:54109 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:15 Permit 10.41.0.131:54105 10.41.100.1:135
10.41.0.131:54105 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:15 Permit 10.41.0.131:54108 10.41.100.1:135
10.41.0.131:54108 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:15 Permit 10.41.0.131:33671 10.41.100.1:49154
10.41.0.131:33671 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:15 Permit 10.41.0.131:48472 10.41.100.1:53
10.41.0.131:48472 10.41.100.1:53 16 sec 83 83
DNS Close - RESP
2018-12-10 10:18:15 Permit 10.41.1.57:62145 10.41.100.7:60313
10.41.1.57:62145 10.41.100.7:60313 3 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:15 Permit 10.41.0.131:33668 10.41.100.1:49154
10.41.0.131:33668 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:15 Permit 10.41.1.58:64126 10.41.100.11:139
10.41.1.58:64126 10.41.100.11:139 22 sec 136 0
NETBIOS (SSN) Close - AGE OUT
2018-12-10 10:18:14 Deny 10.41.5.80:61049 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 32 HTTPS Traffic
Denied
2018-12-10 10:18:14 Permit 10.41.0.131:47936 10.41.100.1:53
10.41.0.131:47936 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:14 Permit 10.41.100.1:65214 10.10.1.40:53
10.41.100.1:65214 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:14 Permit 10.41.5.80:64361 10.41.100.1:53
10.41.5.80:64361 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:14 Permit 10.41.0.131:58811 8.8.8.8:53
1.9.140.18:12020 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:14 Permit 10.41.200.54:55223 172.217.166.142:443
1.9.140.18:54958 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:14 Permit 10.41.200.54:55222 172.217.26.133:443
1.9.140.18:42896 172.217.26.133:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:14 Permit 10.41.100.1:50905 10.10.1.40:53
10.41.100.1:50905 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:14 Permit 10.41.1.65:63088 10.41.100.1:53
10.41.1.65:63088 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:14 Permit 10.41.1.59:58848 172.217.26.144:80
1.9.140.18:33655 172.217.26.144:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:14 Deny 10.41.200.62:64996 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 32 HTTPS Traffic
Denied
2018-12-10 10:18:14 Permit 10.41.100.2:9605 10.100.10.189:512
10.41.100.2:9605 10.100.10.189:512 0 sec 0 0
ICMP Creation
2018-12-10 10:18:14 Permit 10.41.100.1:49933 10.10.1.4:53
10.41.100.1:49933 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:13 Permit 10.41.0.131:33681 10.41.100.1:49154
10.41.0.131:33681 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:13 Permit 10.41.0.131:54119 10.41.100.1:135
10.41.0.131:54119 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:13 Permit 10.41.0.131:54118 10.41.100.1:135
10.41.0.131:54118 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:13 Permit 10.41.1.51:53290 10.41.100.7:60313
10.41.1.51:53290 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:13 Permit 10.41.100.1:65323 10.10.1.24:53
10.41.100.1:65323 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:13 Permit 10.41.100.1:65507 10.10.1.24:53
10.41.100.1:65507 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:13 Permit 10.41.100.1:65095 10.10.1.4:53
10.41.100.1:65095 10.10.1.4:53 59 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:13 Permit 10.41.5.81:63174 210.187.22.204:80
1.9.140.18:62706 210.187.22.204:80 2 sec 1062 21450
HTTP Close - TCP RST
2018-12-10 10:18:13 Permit 10.41.100.1:49684 10.10.1.4:53
10.41.100.1:49684 10.10.1.4:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:13 Permit 10.41.100.1:49363 10.10.1.24:53
10.41.100.1:49363 10.10.1.24:53 60 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:13 Permit 10.41.100.1:49561 10.10.1.4:53
10.41.100.1:49561 10.10.1.4:53 59 sec 95 0
DNS Close - AGE OUT
2018-12-10 10:18:13 Permit 10.41.100.1:49616 10.10.1.24:53
10.41.100.1:49616 10.10.1.24:53 60 sec 86 0
DNS Close - AGE OUT
2018-12-10 10:18:13 Permit 10.41.100.1:50193 10.10.1.4:53
10.41.100.1:50193 10.10.1.4:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:13 Permit 10.41.5.80:61044 104.103.70.10:80
1.9.140.18:30782 104.103.70.10:80 4 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:18:13 Permit 10.41.0.131:47582 8.8.8.8:53
1.9.140.18:34492 8.8.8.8:53 4 sec 73 183
DNS Close - RESP
2018-12-10 10:18:13 Permit 10.41.1.55:52441 23.94.187.84:443
1.9.140.18:35173 23.94.187.84:443 4 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:18:13 Permit 10.41.100.1:65520 10.10.1.4:53
10.41.100.1:65520 10.10.1.4:53 60 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:18:13 Permit 10.41.100.1:49856 10.10.1.4:53
10.41.100.1:49856 10.10.1.4:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:13 Permit 10.41.100.1:50184 10.10.1.40:53
10.41.100.1:50184 10.10.1.40:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:13 Permit 10.41.5.76:50541 216.58.196.42:443
1.9.140.18:41445 216.58.196.42:443 245 sec 5129 7305
HTTPS Close - TCP FIN
2018-12-10 10:18:13 Permit 10.41.100.1:50622 10.10.1.4:53
10.41.100.1:50622 10.10.1.4:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:13 Permit 10.41.100.1:50837 10.10.1.4:53
10.41.100.1:50837 10.10.1.4:53 59 sec 74 0
DNS Close - AGE OUT
2018-12-10 10:18:13 Permit 10.41.100.1:49605 10.10.1.4:53
10.41.100.1:49605 10.10.1.4:53 63 sec 167 0
DNS Close - AGE OUT
2018-12-10 10:18:13 Permit 10.41.100.1:65478 10.10.1.40:53
10.41.100.1:65478 10.10.1.40:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:13 Permit 10.41.200.74:53854 10.41.100.1:389
10.41.200.74:53854 10.41.100.1:389 61 sec 250 207
UDP PORT 389 Close - AGE OUT
2018-12-10 10:18:13 Permit 10.41.0.131:33664 10.41.100.1:49154
10.41.0.131:33664 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:13 Permit 10.40.200.106:54518 10.41.100.11:139
10.40.200.106:54518 10.41.100.11:139 22 sec 136 0
NETBIOS (SSN) Close - AGE OUT
2018-12-10 10:18:13 Permit 10.41.0.131:54102 10.41.100.1:135
10.41.0.131:54102 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:13 Permit 10.41.203.4:52681 10.41.100.1:53
10.41.203.4:52681 10.41.100.1:53 15 sec 76 76
DNS Close - RESP
2018-12-10 10:18:13 Permit 10.41.0.131:33661 10.41.100.1:49154
10.41.0.131:33661 10.41.100.1:49154 5 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:13 Permit 10.41.1.58:64125 10.41.100.11:445
10.41.1.58:64125 10.41.100.11:445 21 sec 136 0
TCP PORT 445 Close - AGE OUT
2018-12-10 10:18:13 Permit 10.41.0.131:54101 10.41.100.1:135
10.41.0.131:54101 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:13 Permit 10.41.203.2:50867 10.41.100.1:53
10.41.203.2:50867 10.41.100.1:53 16 sec 76 76
DNS Close - RESP
2018-12-10 10:18:13 Permit 10.41.203.3:63710 10.41.100.1:53
10.41.203.3:63710 10.41.100.1:53 14 sec 76 76
DNS Close - RESP
2018-12-10 10:18:12 Permit 10.41.0.131:33671 10.41.100.1:49154
10.41.0.131:33671 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:12 Permit 10.41.0.131:54109 10.41.100.1:135
10.41.0.131:54109 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:12 Permit 10.41.0.131:54108 10.41.100.1:135
10.41.0.131:54108 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:12 Permit 10.41.1.57:62145 10.41.100.7:60313
10.41.1.57:62145 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:12 Permit 10.40.200.106:137 10.41.100.11:137
10.40.200.106:137 10.41.100.11:137 0 sec 0 0
NETBIOS (NS) Creation
2018-12-10 10:18:12 Permit 10.41.100.2:9349 10.100.10.189:512
10.41.100.2:9349 10.100.10.189:512 0 sec 0 0
ICMP Creation
2018-12-10 10:18:12 Permit 10.41.100.1:50745 10.10.1.24:53
10.41.100.1:50745 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:12 Permit 10.41.100.1:50559 10.10.1.4:53
10.41.100.1:50559 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:12 Permit 10.41.100.1:49448 10.10.1.4:53
10.41.100.1:49448 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:12 Permit 10.41.100.1:49251 10.10.1.4:53
10.41.100.1:49251 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:12 Permit 10.41.100.1:50792 10.10.1.4:53
10.41.100.1:50792 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:11 Permit 10.41.0.131:33668 10.41.100.1:49154
10.41.0.131:33668 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:11 Permit 10.41.0.131:54106 10.41.100.1:135
10.41.0.131:54106 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:11 Permit 10.41.0.131:54105 10.41.100.1:135
10.41.0.131:54105 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:11 Permit 10.41.5.80:63684 10.41.100.1:53
10.41.5.80:63684 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:11 Permit 10.41.100.1:65444 10.10.1.40:53
10.41.100.1:65444 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:11 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:11 Permit 10.41.5.81:63174 210.187.22.204:80
1.9.140.18:62706 210.187.22.204:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:11 Permit 10.41.5.80:61047 104.103.70.10:80
1.9.140.18:43538 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:11 Permit 10.41.5.81:63173 172.217.31.78:80
1.9.140.18:25302 172.217.31.78:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:11 Permit 10.41.100.1:50816 10.10.1.24:53
10.41.100.1:50816 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:11 Permit 10.41.5.80:61046 104.103.70.10:80
1.9.140.18:48089 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:11 Permit 10.41.100.1:49850 10.10.1.4:53
10.41.100.1:49850 10.10.1.4:53 60 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.1:50702 10.10.1.24:53
10.41.100.1:50702 10.10.1.24:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.200.74:58536 1.9.8.41:80
1.9.140.18:52102 1.9.8.41:80 20 sec 70 0
HTTP Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.3.74:57142 13.107.4.50:80
1.9.140.18:39971 13.107.4.50:80 2 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:18:11 Permit 10.41.100.1:49751 10.10.1.40:53
10.41.100.1:49751 10.10.1.40:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.1:49607 10.10.1.24:53
10.41.100.1:49607 10.10.1.24:53 60 sec 96 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.1:50097 10.10.1.24:53
10.41.100.1:50097 10.10.1.24:53 60 sec 95 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.1:65046 10.10.1.40:53
10.41.100.1:65046 10.10.1.40:53 59 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.1:50203 10.10.1.4:53
10.41.100.1:50203 10.10.1.4:53 59 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.1:50907 10.10.1.24:53
10.41.100.1:50907 10.10.1.24:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.1:50245 10.10.1.4:53
10.41.100.1:50245 10.10.1.4:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.1:50686 10.10.1.4:53
10.41.100.1:50686 10.10.1.4:53 60 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.1:49368 10.10.1.4:53
10.41.100.1:49368 10.10.1.4:53 60 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.1:65437 10.10.1.40:53
10.41.100.1:65437 10.10.1.40:53 59 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.1:49281 10.10.1.4:53
10.41.100.1:49281 10.10.1.4:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.5.81:63168 172.217.31.78:80
1.9.140.18:62982 172.217.31.78:80 66 sec 912 1276
HTTP Close - TCP FIN
2018-12-10 10:18:11 Permit 10.41.100.2:51529 69.171.239.11:53
1.9.140.18:55125 69.171.239.11:53 2 sec 91 234
DNS Close - RESP
2018-12-10 10:18:11 Permit 10.41.5.81:63171 172.217.31.78:80
1.9.140.18:48074 172.217.31.78:80 2 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:18:11 Permit 10.41.100.1:65145 10.10.1.4:53
10.41.100.1:65145 10.10.1.4:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.1:50866 10.10.1.4:53
10.41.100.1:50866 10.10.1.4:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.200.63:53362 1.9.57.142:80
1.9.140.18:41619 1.9.57.142:80 4 sec 1068 17809
HTTP Close - TCP RST
2018-12-10 10:18:11 Permit 10.41.100.1:50037 10.10.1.4:53
10.41.100.1:50037 10.10.1.4:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.1.66:50770 104.103.70.8:80
1.9.140.18:40158 104.103.70.8:80 3 sec 804 39714
HTTP Close - TCP RST
2018-12-10 10:18:11 Permit 10.41.100.1:49926 10.10.1.40:53
10.41.100.1:49926 10.10.1.40:53 59 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.1:49965 10.10.1.24:53
10.41.100.1:49965 10.10.1.24:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.1:65000 10.10.1.4:53
10.41.100.1:65000 10.10.1.4:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.1:49658 10.10.1.24:53
10.41.100.1:49658 10.10.1.24:53 60 sec 86 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.1:50833 10.10.1.4:53
10.41.100.1:50833 10.10.1.4:53 60 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.2:55472 23.45.232.164:53
1.9.140.18:44492 23.45.232.164:53 2 sec 86 106
DNS Close - RESP
2018-12-10 10:18:11 Permit 10.41.100.1:50591 10.10.1.24:53
10.41.100.1:50591 10.10.1.24:53 60 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.1.59:58809 172.217.166.129:443
1.9.140.18:1473 172.217.166.129:443 241 sec 3317 3760
HTTPS Close - TCP FIN
2018-12-10 10:18:11 Permit 10.41.1.65:63553 172.217.166.134:443
1.9.140.18:57932 172.217.166.134:443 842 sec 55240 962643
HTTPS Close - TCP FIN
2018-12-10 10:18:11 Permit 10.41.100.1:49797 10.10.1.40:53
10.41.100.1:49797 10.10.1.40:53 59 sec 88 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.1:65510 10.10.1.4:53
10.41.100.1:65510 10.10.1.4:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.100.1:49719 10.10.1.4:53
10.41.100.1:49719 10.10.1.4:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:11 Permit 10.40.200.106:54517 10.41.100.11:445
10.40.200.106:54517 10.41.100.11:445 21 sec 136 0
TCP PORT 445 Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.200.63:49597 10.41.100.1:53
10.41.200.63:49597 10.41.100.1:53 12 sec 83 83
DNS Close - RESP
2018-12-10 10:18:11 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 244 133
DNS Close - RESP
2018-12-10 10:18:11 Permit 10.41.1.51:53283 10.41.100.7:60313
10.41.1.51:53283 10.41.100.7:60313 3 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:11 Permit 10.41.0.131:54095 10.41.100.1:135
10.41.0.131:54095 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:11 Permit 10.41.1.57:62144 10.41.100.7:60313
10.41.1.57:62144 10.41.100.7:60313 4 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:11 Permit 10.41.0.131:54098 10.41.100.1:135
10.41.0.131:54098 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:11 Permit 10.41.0.131:54099 10.41.100.1:135
10.41.0.131:54099 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:11 Permit 10.41.200.74:123 10.41.100.1:123
10.41.200.74:123 10.41.100.1:123 65 sec 342 342
NETWORK TIME Close - AGE OUT
2018-12-10 10:18:11 Permit 10.41.0.131:54094 10.41.100.1:135
10.41.0.131:54094 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:11 Permit 10.41.0.131:33657 10.41.100.1:49154
10.41.0.131:33657 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:11 Permit 10.41.5.70:63588 10.41.100.1:53
10.41.5.70:63588 10.41.100.1:53 15 sec 83 83
DNS Close - RESP
2018-12-10 10:18:10 Permit 10.41.0.131:33664 10.41.100.1:49154
10.41.0.131:33664 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:10 Permit 10.41.0.131:54102 10.41.100.1:135
10.41.0.131:54102 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:10 Permit 10.41.0.131:54101 10.41.100.1:135
10.41.0.131:54101 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:10 Permit 10.41.100.1:49933 10.10.1.24:53
10.41.100.1:49933 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:09 Permit 10.41.200.58:58411 172.217.166.142:443
1.9.140.18:28899 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:09 Permit 10.62.1.51:52883 10.41.100.1:389
10.62.1.51:52883 10.41.100.1:389 0 sec 0 0
UDP PORT 389 Creation
2018-12-10 10:18:09 Permit 10.41.100.1:65323 10.10.1.40:53
10.41.100.1:65323 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:09 Permit 10.41.0.131:57958 10.41.100.1:53
10.41.0.131:57958 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:09 Permit 10.41.200.58:49989 10.41.100.1:53
10.41.200.58:49989 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:09 Permit 10.41.0.131:47582 8.8.8.8:53
1.9.140.18:34492 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:09 Permit 10.41.1.55:52441 23.94.187.84:443
1.9.140.18:35173 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:09 Permit 10.41.3.74:57142 13.107.4.50:80
1.9.140.18:39971 13.107.4.50:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:09 Permit 10.41.100.1:65507 10.10.1.40:53
10.41.100.1:65507 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:09 Permit 10.41.3.74:52038 10.41.100.1:53
10.41.3.74:52038 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:09 Permit 10.41.100.2:55472 23.45.232.164:53
1.9.140.18:44492 23.45.232.164:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:09 Permit 10.41.100.2:51529 69.171.239.11:53
1.9.140.18:55125 69.171.239.11:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:09 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:09 Permit 10.41.5.81:63171 172.217.31.78:80
1.9.140.18:48074 172.217.31.78:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:09 Permit 10.41.100.1:50745 10.10.1.40:53
10.41.100.1:50745 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:09 Permit 10.41.5.80:60485 10.41.100.1:53
10.41.5.80:60485 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:09 Permit 10.41.5.80:61044 104.103.70.10:80
1.9.140.18:30782 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:09 Permit 10.41.100.1:50837 10.10.1.24:53
10.41.100.1:50837 10.10.1.24:53 59 sec 74 0
DNS Close - AGE OUT
2018-12-10 10:18:09 Permit 10.41.100.1:49605 10.10.1.24:53
10.41.100.1:49605 10.10.1.24:53 63 sec 167 0
DNS Close - AGE OUT
2018-12-10 10:18:09 Permit 10.41.100.1:50193 10.10.1.24:53
10.41.100.1:50193 10.10.1.24:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:09 Permit 10.41.100.1:65131 10.10.1.4:53
10.41.100.1:65131 10.10.1.4:53 60 sec 72 0
DNS Close - AGE OUT
2018-12-10 10:18:09 Permit 10.41.100.1:49363 10.10.1.40:53
10.41.100.1:49363 10.10.1.40:53 60 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:09 Permit 10.41.3.72:50628 74.82.35.89:443
1.9.140.18:28426 74.82.35.89:443 3 sec 1348 74
HTTPS Close - TCP RST
2018-12-10 10:18:09 Permit 10.41.100.1:49684 10.10.1.24:53
10.41.100.1:49684 10.10.1.24:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:09 Permit 10.41.100.1:49616 10.10.1.40:53
10.41.100.1:49616 10.10.1.40:53 60 sec 86 0
DNS Close - AGE OUT
2018-12-10 10:18:09 Permit 10.41.100.1:49856 10.10.1.24:53
10.41.100.1:49856 10.10.1.24:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:09 Permit 10.41.200.54:55221 172.217.26.133:443
1.9.140.18:15494 172.217.26.133:443 11 sec 3703 2174
HTTPS Close - TCP FIN
2018-12-10 10:18:09 Permit 10.41.100.1:65095 10.10.1.24:53
10.41.100.1:65095 10.10.1.24:53 59 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:09 Permit 10.41.100.1:50622 10.10.1.24:53
10.41.100.1:50622 10.10.1.24:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:09 Permit 10.41.100.1:49561 10.10.1.24:53
10.41.100.1:49561 10.10.1.24:53 59 sec 95 0
DNS Close - AGE OUT
2018-12-10 10:18:09 Permit 10.41.100.1:65132 10.10.1.4:53
10.41.100.1:65132 10.10.1.4:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:09 Permit 10.41.1.66:50768 104.103.70.8:80
1.9.140.18:44462 104.103.70.8:80 3 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:18:09 Permit 10.41.100.1:65520 10.10.1.24:53
10.41.100.1:65520 10.10.1.24:53 60 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:18:09 Permit 10.41.5.80:59814 10.41.100.1:53
10.41.5.80:59814 10.41.100.1:53 15 sec 92 92
DNS Close - RESP
2018-12-10 10:18:09 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 2 sec 244 79
DNS Close - RESP
2018-12-10 10:18:09 Permit 10.41.0.131:33650 10.41.100.1:49154
10.41.0.131:33650 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:09 Permit 10.41.200.74:50457 10.41.100.1:389
10.41.200.74:50457 10.41.100.1:389 62 sec 250 207
UDP PORT 389 Close - AGE OUT
2018-12-10 10:18:09 Permit 10.41.200.74:57180 10.41.100.1:389
10.41.200.74:57180 10.41.100.1:389 61 sec 250 207
UDP PORT 389 Close - AGE OUT
2018-12-10 10:18:09 Permit 10.41.0.131:54088 10.41.100.1:135
10.41.0.131:54088 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:09 Permit 10.41.0.131:54087 10.41.100.1:135
10.41.0.131:54087 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:09 Permit 10.41.0.131:33654 10.41.100.1:49154
10.41.0.131:33654 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:09 Permit 10.41.0.131:54092 10.41.100.1:135
10.41.0.131:54092 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:09 Permit 10.41.0.131:54091 10.41.100.1:135
10.41.0.131:54091 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:08 Permit 10.41.0.131:33661 10.41.100.1:49154
10.41.0.131:33661 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:08 Permit 10.41.0.131:54099 10.41.100.1:135
10.41.0.131:54099 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:08 Permit 10.41.0.131:54098 10.41.100.1:135
10.41.0.131:54098 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:08 Permit 10.41.1.66:50770 104.103.70.8:80
1.9.140.18:40158 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:08 Permit 10.41.1.51:53283 10.41.100.7:60313
10.41.1.51:53283 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:08 Permit 10.41.100.1:50559 10.10.1.24:53
10.41.100.1:50559 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:08 Permit 10.41.100.1:49448 10.10.1.24:53
10.41.100.1:49448 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:08 Permit 10.41.100.1:49251 10.10.1.24:53
10.41.100.1:49251 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:08 Permit 10.41.100.1:50792 10.10.1.24:53
10.41.100.1:50792 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:08 Permit 10.41.203.4:62436 10.41.100.1:53
10.41.203.4:62436 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:07 Permit 10.41.200.63:53362 1.9.57.142:80
1.9.140.18:41619 1.9.57.142:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:07 Permit 10.41.200.63:53361 172.217.31.110:80
1.9.140.18:18783 172.217.31.110:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:07 Permit 10.41.1.82:3341 172.217.166.142:443
1.9.140.18:50859 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:07 Permit 10.41.0.131:33657 10.41.100.1:49154
10.41.0.131:33657 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:07 Permit 10.41.0.131:54095 10.41.100.1:135
10.41.0.131:54095 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:07 Permit 10.41.0.131:54094 10.41.100.1:135
10.41.0.131:54094 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:07 Permit 10.41.100.1:50816 10.10.1.40:53
10.41.100.1:50816 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:07 Permit 10.41.203.2:50284 10.41.100.1:53
10.41.203.2:50284 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:07 Permit 10.41.1.57:62144 10.41.100.7:60313
10.41.1.57:62144 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:07 Permit 10.41.100.1:49464 10.10.1.4:53
10.41.100.1:49464 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:07 Permit 10.41.100.1:49933 10.10.1.40:53
10.41.100.1:49933 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:07 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:07 Permit 10.41.100.1:50097 10.10.1.40:53
10.41.100.1:50097 10.10.1.40:53 60 sec 95 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:49281 10.10.1.24:53
10.41.100.1:49281 10.10.1.24:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:50203 10.10.1.24:53
10.41.100.1:50203 10.10.1.24:53 59 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:50833 10.10.1.24:53
10.41.100.1:50833 10.10.1.24:53 60 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:49605 10.10.1.40:53
10.41.100.1:49605 10.10.1.40:53 65 sec 167 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.5.80:61043 104.103.70.10:80
1.9.140.18:26640 104.103.70.10:80 2 sec 804 36267
HTTP Close - TCP RST
2018-12-10 10:18:07 Permit 10.41.100.1:50907 10.10.1.40:53
10.41.100.1:50907 10.10.1.40:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:65510 10.10.1.24:53
10.41.100.1:65510 10.10.1.24:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.200.63:53358 172.217.31.110:80
1.9.140.18:30271 172.217.31.110:80 6 sec 982 1214
HTTP Close - TCP RST
2018-12-10 10:18:07 Permit 10.41.100.1:49850 10.10.1.24:53
10.41.100.1:49850 10.10.1.24:53 60 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:49684 10.10.1.40:53
10.41.100.1:49684 10.10.1.40:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:50037 10.10.1.24:53
10.41.100.1:50037 10.10.1.24:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:50245 10.10.1.24:53
10.41.100.1:50245 10.10.1.24:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:49658 10.10.1.40:53
10.41.100.1:49658 10.10.1.40:53 60 sec 86 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.5.80:61041 104.103.70.10:80
1.9.140.18:57886 104.103.70.10:80 4 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:18:07 Permit 10.41.100.1:50866 10.10.1.24:53
10.41.100.1:50866 10.10.1.24:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:50702 10.10.1.40:53
10.41.100.1:50702 10.10.1.40:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:65000 10.10.1.24:53
10.41.100.1:65000 10.10.1.24:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:49368 10.10.1.24:53
10.41.100.1:49368 10.10.1.24:53 60 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:50193 10.10.1.40:53
10.41.100.1:50193 10.10.1.40:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:49607 10.10.1.40:53
10.41.100.1:49607 10.10.1.40:53 60 sec 96 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.1.65:64161 72.34.250.78:443
1.9.140.18:17494 72.34.250.78:443 32 sec 332 284
HTTPS Close - TCP RST
2018-12-10 10:18:07 Permit 10.41.100.1:50686 10.10.1.24:53
10.41.100.1:50686 10.10.1.24:53 60 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.3.72:50303 172.217.166.138:443
1.9.140.18:25294 172.217.166.138:443 241 sec 3856 4418
HTTPS Close - TCP FIN
2018-12-10 10:18:07 Permit 10.41.100.1:50837 10.10.1.40:53
10.41.100.1:50837 10.10.1.40:53 60 sec 74 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:49856 10.10.1.40:53
10.41.100.1:49856 10.10.1.40:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:50622 10.10.1.40:53
10.41.100.1:50622 10.10.1.40:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:49719 10.10.1.24:53
10.41.100.1:49719 10.10.1.24:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:49965 10.10.1.40:53
10.41.100.1:49965 10.10.1.40:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:50591 10.10.1.40:53
10.41.100.1:50591 10.10.1.40:53 60 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.100.1:65145 10.10.1.24:53
10.41.100.1:65145 10.10.1.24:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.1.65:64159 103.243.220.231:80
1.9.140.18:19130 103.243.220.231:80 32 sec 6238 1380
HTTP Close - TCP RST
2018-12-10 10:18:07 Permit 10.41.0.131:33644 10.41.100.1:49154
10.41.0.131:33644 10.41.100.1:49154 5 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:07 Permit 10.41.0.131:33647 10.41.100.1:49154
10.41.0.131:33647 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:07 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 325 176
DNS Close - RESP
2018-12-10 10:18:07 Permit 10.41.1.51:53282 10.41.100.7:60313
10.41.1.51:53282 10.41.100.7:60313 4 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:07 Permit 10.41.0.131:54084 10.41.100.1:135
10.41.0.131:54084 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:07 Permit 10.41.0.131:54085 10.41.100.1:135
10.41.0.131:54085 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:07 Permit 10.41.1.59:58844 10.41.100.11:2967
10.41.1.59:58844 10.41.100.11:2967 21 sec 136 0
TCP PORT 2967 Close - AGE OUT
2018-12-10 10:18:07 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 16 sec 76 76
DNS Close - RESP
2018-12-10 10:18:07 Permit 10.41.200.74:52199 10.41.100.1:389
10.41.200.74:52199 10.41.100.1:389 61 sec 250 207
UDP PORT 389 Close - AGE OUT
2018-12-10 10:18:06 Permit 10.41.1.66:50768 104.103.70.8:80
1.9.140.18:44462 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:06 Permit 10.41.0.131:33654 10.41.100.1:49154
10.41.0.131:33654 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:06 Permit 10.41.0.131:54092 10.41.100.1:135
10.41.0.131:54092 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:06 Permit 10.41.0.131:54091 10.41.100.1:135
10.41.0.131:54091 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:06 Permit 10.41.3.72:50628 74.82.35.89:443
1.9.140.18:28426 74.82.35.89:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:05 Permit 10.41.1.55:52439 10.41.100.11:139
10.41.1.55:52439 10.41.100.11:139 0 sec 0 0
NETBIOS (SSN) Creation
2018-12-10 10:18:05 Permit 10.41.1.55:52438 10.41.100.11:445
10.41.1.55:52438 10.41.100.11:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:18:05 Permit 10.41.1.55:52437 10.41.100.11:445
10.41.1.55:52437 10.41.100.11:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:18:05 Permit 10.41.1.55:52436 10.41.100.11:445
10.41.1.55:52436 10.41.100.11:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:18:05 Permit 10.41.0.131:33650 10.41.100.1:49154
10.41.0.131:33650 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:05 Permit 10.41.0.131:54088 10.41.100.1:135
10.41.0.131:54088 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:05 Permit 10.41.0.131:54087 10.41.100.1:135
10.41.0.131:54087 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:05 Permit 10.41.100.1:65528 10.10.1.4:53
10.41.100.1:65528 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:05 Permit 10.41.100.1:50559 10.10.1.40:53
10.41.100.1:50559 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:05 Permit 10.41.5.81:62865 10.41.100.1:53
10.41.5.81:62865 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:05 Permit 10.41.5.80:61043 104.103.70.10:80
1.9.140.18:26640 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:05 Permit 10.41.1.65:64169 103.243.221.51:80
1.9.140.18:48661 103.243.221.51:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:05 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:05 Permit 10.41.1.55:52434 23.94.187.84:443
1.9.140.18:43011 23.94.187.84:443 2 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:18:05 Permit 10.41.1.65:64157 103.243.220.231:80
1.9.140.18:56717 103.243.220.231:80 30 sec 6302 6045
HTTP Close - TCP RST
2018-12-10 10:18:05 Permit 10.41.100.1:65132 10.10.1.24:53
10.41.100.1:65132 10.10.1.24:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:05 Permit 10.41.0.131:42453 8.8.8.8:53
1.9.140.18:53674 8.8.8.8:53 1 sec 83 103
DNS Close - RESP
2018-12-10 10:18:05 Permit 10.41.100.1:65095 10.10.1.40:53
10.41.100.1:65095 10.10.1.40:53 59 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:18:05 Permit 10.41.100.1:65131 10.10.1.24:53
10.41.100.1:65131 10.10.1.24:53 60 sec 72 0
DNS Close - AGE OUT
2018-12-10 10:18:05 Permit 10.41.1.65:63904 13.228.230.223:80
1.9.140.18:9983 13.228.230.223:80 228 sec 110526 44710
HTTP Close - TCP FIN
2018-12-10 10:18:05 Permit 10.41.1.65:64158 72.34.250.78:443
1.9.140.18:30988 72.34.250.78:443 30 sec 2641 1602
HTTPS Close - TCP RST
2018-12-10 10:18:05 Permit 10.41.100.1:65169 10.10.1.4:53
10.41.100.1:65169 10.10.1.4:53 59 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:18:05 Permit 10.41.200.63:53359 1.9.57.142:80
1.9.140.18:13502 1.9.57.142:80 4 sec 1068 17809
HTTP Close - TCP RST
2018-12-10 10:18:05 Permit 10.41.1.65:63992 125.252.238.16:80
1.9.140.18:38855 125.252.238.16:80 602 sec 91335 6897
HTTP Close - TCP FIN
2018-12-10 10:18:05 Permit 10.41.100.1:65520 10.10.1.40:53
10.41.100.1:65520 10.10.1.40:53 60 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:18:05 Permit 10.41.100.1:67 10.41.200.254:67
10.41.100.1:67 10.41.200.254:67 60 sec 357 0
DHCP Close - AGE OUT
2018-12-10 10:18:05 Permit 10.41.100.1:49561 10.10.1.40:53
10.41.100.1:49561 10.10.1.40:53 59 sec 95 0
DNS Close - AGE OUT
2018-12-10 10:18:05 Permit 10.41.100.1:50203 10.10.1.40:53
10.41.100.1:50203 10.10.1.40:53 60 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:18:05 Permit 10.41.1.66:61630 10.41.100.1:53
10.41.1.66:61630 10.41.100.1:53 15 sec 92 92
DNS Close - RESP
2018-12-10 10:18:05 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 4 sec 244 84
DNS Close - RESP
2018-12-10 10:18:05 Permit 10.41.0.131:33640 10.41.100.1:49154
10.41.0.131:33640 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:05 Permit 10.41.0.131:33099 10.41.100.1:53
10.41.0.131:33099 10.41.100.1:53 11 sec 76 76
DNS Close - RESP
2018-12-10 10:18:05 Permit 10.41.0.131:54081 10.41.100.1:135
10.41.0.131:54081 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:05 Permit 10.41.0.131:54082 10.41.100.1:135
10.41.0.131:54082 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:05 Permit 10.41.0.131:54078 10.41.100.1:135
10.41.0.131:54078 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:05 Permit 10.41.5.80:55295 10.41.100.1:53
10.41.5.80:55295 10.41.100.1:53 15 sec 92 92
DNS Close - RESP
2018-12-10 10:18:05 Permit 10.41.0.131:54077 10.41.100.1:135
10.41.0.131:54077 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:05 Permit 10.41.1.57:62143 10.41.100.7:60313
10.41.1.57:62143 10.41.100.7:60313 3 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:05 Permit 10.41.5.80:58333 10.41.100.1:53
10.41.5.80:58333 10.41.100.1:53 15 sec 92 92
DNS Close - RESP
2018-12-10 10:18:05 Permit 10.41.200.63:62068 10.41.100.1:53
10.41.200.63:62068 10.41.100.1:53 16 sec 83 83
DNS Close - RESP
2018-12-10 10:18:05 Permit 10.41.1.66:56459 10.41.100.1:53
10.41.1.66:56459 10.41.100.1:53 12 sec 92 92
DNS Close - RESP
2018-12-10 10:18:05 Permit 10.41.0.131:41315 10.41.100.1:53
10.41.0.131:41315 10.41.100.1:53 16 sec 76 76
DNS Close - RESP
2018-12-10 10:18:04 Permit 10.41.100.1:49448 10.10.1.40:53
10.41.100.1:49448 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:04 Permit 10.41.1.65:52191 10.41.100.1:53
10.41.1.65:52191 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:04 Permit 10.41.100.1:49251 10.10.1.40:53
10.41.100.1:49251 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:04 Permit 10.41.1.65:61858 10.41.100.1:53
10.41.1.65:61858 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:04 Permit 10.41.200.63:123 10.41.100.1:123
10.41.200.63:123 10.41.100.1:123 0 sec 0 0
NETWORK TIME Creation
2018-12-10 10:18:04 Permit 10.41.1.55:52435 10.41.100.11:445
10.41.1.55:52435 10.41.100.11:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:18:04 Permit 10.41.100.1:50792 10.10.1.40:53
10.41.100.1:50792 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:04 Permit 10.41.0.131:58563 10.41.100.1:53
10.41.0.131:58563 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:04 Permit 10.41.0.131:42453 8.8.8.8:53
1.9.140.18:53674 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:04 Permit 10.41.100.1:50052 10.10.1.4:53
10.41.100.1:50052 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:04 Permit 10.41.100.1:50095 10.10.1.4:53
10.41.100.1:50095 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:04 Permit 10.41.100.1:50713 10.10.1.4:53
10.41.100.1:50713 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:04 Permit 10.41.100.1:50580 10.10.1.4:53
10.41.100.1:50580 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:04 Permit 10.41.0.131:33647 10.41.100.1:49154
10.41.0.131:33647 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:04 Permit 10.41.0.131:54085 10.41.100.1:135
10.41.0.131:54085 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:04 Permit 10.41.0.131:54084 10.41.100.1:135
10.41.0.131:54084 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:03 Permit 10.41.1.65:64168 72.34.250.78:443
1.9.140.18:9421 72.34.250.78:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:03 Permit 10.41.1.65:64167 72.34.250.78:443
1.9.140.18:14776 72.34.250.78:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:03 Permit 10.41.1.65:64166 103.243.220.231:80
1.9.140.18:39875 103.243.220.231:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:03 Permit 10.41.1.65:64165 210.176.156.48:80
1.9.140.18:54463 210.176.156.48:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:03 Permit 10.41.1.65:64164 103.243.220.231:80
1.9.140.18:5054 103.243.220.231:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:03 Permit 10.41.1.51:53282 10.41.100.7:60313
10.41.1.51:53282 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:03 Permit 10.41.1.55:52434 23.94.187.84:443
1.9.140.18:43011 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:18:03 Permit 10.41.100.1:49464 10.10.1.24:53
10.41.100.1:49464 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:03 Permit 10.41.1.66:50767 104.103.70.8:80
1.9.140.18:6415 104.103.70.8:80 1 sec 804 36670
HTTP Close - TCP RST
2018-12-10 10:18:03 Permit 10.41.100.1:49368 10.10.1.40:53
10.41.100.1:49368 10.10.1.40:53 60 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:03 Permit 10.41.100.1:50245 10.10.1.40:53
10.41.100.1:50245 10.10.1.40:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:03 Permit 10.41.100.1:49281 10.10.1.40:53
10.41.100.1:49281 10.10.1.40:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:03 Permit 10.41.100.1:50037 10.10.1.40:53
10.41.100.1:50037 10.10.1.40:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:03 Permit 10.41.100.1:65510 10.10.1.40:53
10.41.100.1:65510 10.10.1.40:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:03 Permit 10.41.200.59:50164 172.217.166.138:443
1.9.140.18:6092 172.217.166.138:443 56 sec 321 210
HTTPS Close - TCP RST
2018-12-10 10:18:03 Permit 10.41.200.63:53355 172.217.31.110:80
1.9.140.18:45343 172.217.31.110:80 8 sec 982 1214
HTTP Close - TCP RST
2018-12-10 10:18:03 Permit 10.41.100.1:65124 10.10.1.4:53
10.41.100.1:65124 10.10.1.4:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:18:03 Permit 10.41.100.1:65000 10.10.1.40:53
10.41.100.1:65000 10.10.1.40:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:18:03 Permit 10.41.100.1:50686 10.10.1.40:53
10.41.100.1:50686 10.10.1.40:53 60 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:18:03 Permit 10.41.100.1:50833 10.10.1.40:53
10.41.100.1:50833 10.10.1.40:53 60 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:18:03 Permit 10.41.1.50:53535 216.239.32.116:443
1.9.140.18:56212 216.239.32.116:443 243 sec 3889 6447
HTTPS Close - TCP FIN
2018-12-10 10:18:03 Permit 10.41.100.1:49719 10.10.1.40:53
10.41.100.1:49719 10.10.1.40:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:03 Permit 10.41.100.1:49850 10.10.1.40:53
10.41.100.1:49850 10.10.1.40:53 60 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:18:03 Permit 10.41.100.1:65326 10.10.1.4:53
10.41.100.1:65326 10.10.1.4:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:18:03 Permit 10.41.100.1:50866 10.10.1.40:53
10.41.100.1:50866 10.10.1.40:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:03 Permit 10.41.100.1:65145 10.10.1.40:53
10.41.100.1:65145 10.10.1.40:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:18:03 Permit 10.41.0.131:33060 8.8.8.8:53
1.9.140.18:58164 8.8.8.8:53 4 sec 76 80
DNS Close - RESP
2018-12-10 10:18:03 Permit 10.41.5.80:61041 104.103.70.10:80
1.9.140.18:57886 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:03 Permit 10.41.1.57:53823 10.41.100.1:53
10.41.1.57:53823 10.41.100.1:53 16 sec 225 75
DNS Close - RESP
2018-12-10 10:18:03 Permit 10.41.0.131:33637 10.41.100.1:49154
10.41.0.131:33637 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:03 Permit 10.41.0.131:54071 10.41.100.1:135
10.41.0.131:54071 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:03 Permit 10.41.0.131:33633 10.41.100.1:49154
10.41.0.131:33633 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:03 Permit 10.41.0.131:54074 10.41.100.1:135
10.41.0.131:54074 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:03 Permit 10.41.0.131:54075 10.41.100.1:135
10.41.0.131:54075 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:03 Permit 10.41.0.131:54070 10.41.100.1:135
10.41.0.131:54070 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:02 Permit 10.41.0.131:33644 10.41.100.1:49154
10.41.0.131:33644 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:02 Permit 10.41.0.131:54082 10.41.100.1:135
10.41.0.131:54082 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:02 Permit 10.41.0.131:54081 10.41.100.1:135
10.41.0.131:54081 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:02 Permit 10.41.1.66:50767 104.103.70.8:80
1.9.140.18:6415 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:02 Deny 10.41.200.62:64995 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 28 HTTPS Traffic
Denied
2018-12-10 10:18:02 Permit 10.41.1.57:62143 10.41.100.7:60313
10.41.1.57:62143 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:18:02 Permit 10.41.100.1:65525 10.10.1.4:53
10.41.100.1:65525 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:01 Permit 10.41.200.63:53359 1.9.57.142:80
1.9.140.18:13502 1.9.57.142:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:01 Permit 10.41.200.63:53358 172.217.31.110:80
1.9.140.18:30271 172.217.31.110:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:01 Permit 10.41.0.131:33640 10.41.100.1:49154
10.41.0.131:33640 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:01 Permit 10.41.0.131:54078 10.41.100.1:135
10.41.0.131:54078 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:01 Permit 10.41.0.131:54077 10.41.100.1:135
10.41.0.131:54077 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:01 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:01 Permit 10.41.100.1:65528 10.10.1.24:53
10.41.100.1:65528 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:01 Permit 10.41.100.1:65468 10.10.1.4:53
10.41.100.1:65468 10.10.1.4:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:18:01 Permit 10.41.100.1:65131 10.10.1.40:53
10.41.100.1:65131 10.10.1.40:53 60 sec 72 0
DNS Close - AGE OUT
2018-12-10 10:18:01 Permit 10.41.100.1:65132 10.10.1.40:53
10.41.100.1:65132 10.10.1.40:53 60 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:18:01 Permit 10.41.1.55:52431 23.94.187.84:443
1.9.140.18:31198 23.94.187.84:443 4 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:18:01 Permit 10.41.1.59:58847 172.217.26.144:80
1.9.140.18:12405 172.217.26.144:80 1 sec 940 21030
HTTP Close - TCP RST
2018-12-10 10:18:01 Permit 10.41.1.57:53827 8.8.4.4:53
1.9.140.18:2573 8.8.4.4:53 2 sec 76 137
DNS Close - RESP
2018-12-10 10:18:01 Permit 10.41.5.80:61010 64.62.197.70:443
1.9.140.18:25998 64.62.197.70:443 64 sec 3158 8878
HTTPS Close - TCP FIN
2018-12-10 10:18:01 Permit 10.41.100.1:65169 10.10.1.24:53
10.41.100.1:65169 10.10.1.24:53 59 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:18:01 Permit 10.41.2.74:56316 157.240.10.35:443
1.9.140.18:63562 157.240.10.35:443 2 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:18:01 Permit 10.41.1.66:50765 104.103.70.8:80
1.9.140.18:60755 104.103.70.8:80 1 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:18:01 Permit 10.41.200.65:57666 69.46.28.75:443
1.9.140.18:52796 69.46.28.75:443 144 sec 519 426
HTTPS Close - TCP RST
2018-12-10 10:18:01 Permit 10.41.2.74:56315 157.240.10.35:443
1.9.140.18:46953 157.240.10.35:443 2 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:18:01 Permit 10.41.2.74:56314 157.240.10.35:443
1.9.140.18:28957 157.240.10.35:443 2 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:18:01 Permit 10.41.1.57:53824 8.8.4.4:53
1.9.140.18:44069 8.8.4.4:53 4 sec 84 182
DNS Close - RESP
2018-12-10 10:18:01 Permit 10.41.100.1:49583 10.10.1.4:53
10.41.100.1:49583 10.10.1.4:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:01 Permit 10.41.2.74:56313 157.240.10.35:443
1.9.140.18:4951 157.240.10.35:443 2 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:18:01 Permit 10.41.1.57:62141 65.55.50.190:80
1.9.140.18:11252 65.55.50.190:80 4 sec 198 142
HTTP Close - TCP RST
2018-12-10 10:18:01 Permit 10.41.100.1:49928 10.10.1.4:53
10.41.100.1:49928 10.10.1.4:53 60 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:18:01 Permit 10.41.1.65:64037 106.10.193.33:443
1.9.140.18:24054 106.10.193.33:443 120 sec 2834 6531
HTTPS Close - TCP FIN
2018-12-10 10:18:01 Permit 10.41.200.62:57873 10.41.100.1:53
10.41.200.62:57873 10.41.100.1:53 15 sec 91 91
DNS Close - RESP
2018-12-10 10:18:01 Permit 10.41.0.131:54068 10.41.100.1:135
10.41.0.131:54068 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:01 Permit 10.41.0.131:54067 10.41.100.1:135
10.41.0.131:54067 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:18:01 Permit 10.41.3.74:53943 10.41.100.1:53
10.41.3.74:53943 10.41.100.1:53 7 sec 86 86
DNS Close - RESP
2018-12-10 10:18:01 Permit 10.41.0.131:33630 10.41.100.1:49154
10.41.0.131:33630 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:18:01 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 323 241
DNS Close - RESP
2018-12-10 10:18:01 Permit 10.41.1.51:53275 10.41.100.7:60313
10.41.1.51:53275 10.41.100.7:60313 3 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:01 Permit 10.41.1.57:62140 10.41.100.7:60313
10.41.1.57:62140 10.41.100.7:60313 4 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:18:01 Permit 10.41.3.72:52034 10.41.100.1:53
10.41.3.72:52034 10.41.100.1:53 16 sec 86 86
DNS Close - RESP
2018-12-10 10:18:01 Permit 10.60.210.17:64047 10.41.100.1:445
10.60.210.17:64047 10.41.100.1:445 20 sec 4871 2036
TCP PORT 445 Close - TCP RST
2018-12-10 10:18:00 Permit 10.41.1.66:50765 104.103.70.8:80
1.9.140.18:60755 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:00 Permit 10.41.1.59:58847 172.217.26.144:80
1.9.140.18:12405 172.217.26.144:80 0 sec 0 0
HTTP Creation
2018-12-10 10:18:00 Permit 10.41.0.131:33637 10.41.100.1:49154
10.41.0.131:33637 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:18:00 Permit 10.41.0.131:54075 10.41.100.1:135
10.41.0.131:54075 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:00 Permit 10.41.0.131:54074 10.41.100.1:135
10.41.0.131:54074 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:18:00 Permit 10.41.100.1:67 10.41.200.53:68
10.41.100.1:67 10.41.200.53:68 0 sec 0 0
DHCP Creation
2018-12-10 10:18:00 Permit 10.41.100.1:50052 10.10.1.24:53
10.41.100.1:50052 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:00 Permit 10.41.100.1:50095 10.10.1.24:53
10.41.100.1:50095 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:00 Permit 10.41.100.1:50713 10.10.1.24:53
10.41.100.1:50713 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:18:00 Permit 10.41.100.1:50580 10.10.1.24:53
10.41.100.1:50580 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:59 Permit 10.41.1.57:53827 8.8.4.4:53
1.9.140.18:2573 8.8.4.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:59 Permit 10.41.200.63:49597 10.41.100.1:53
10.41.200.63:49597 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:59 Permit 10.41.5.80:61040 64.62.197.70:443
1.9.140.18:61544 64.62.197.70:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:59 Permit 10.41.100.1:49464 10.10.1.40:53
10.41.100.1:49464 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:59 Permit 10.41.0.131:48472 10.41.100.1:53
10.41.0.131:48472 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:59 Permit 10.41.0.131:33060 8.8.8.8:53
1.9.140.18:58164 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:59 Permit 10.41.203.3:63710 10.41.100.1:53
10.41.203.3:63710 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:59 Permit 10.41.2.74:56316 157.240.10.35:443
1.9.140.18:63562 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:59 Permit 10.41.2.74:56315 157.240.10.35:443
1.9.140.18:46953 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:59 Permit 10.41.2.74:56314 157.240.10.35:443
1.9.140.18:28957 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:59 Permit 10.41.2.74:56313 157.240.10.35:443
1.9.140.18:4951 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:59 Permit 10.41.100.1:64993 10.10.1.4:53
10.41.100.1:64993 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:59 Permit 10.41.100.1:65111 10.10.1.4:53
10.41.100.1:65111 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:59 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:59 Permit 10.41.0.131:33633 10.41.100.1:49154
10.41.0.131:33633 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:59 Permit 10.41.0.131:54071 10.41.100.1:135
10.41.0.131:54071 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:59 Permit 10.41.0.131:54070 10.41.100.1:135
10.41.0.131:54070 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:59 Permit 10.41.100.1:64905 10.10.1.4:53
10.41.100.1:64905 10.10.1.4:53 96 sec 172 0
DNS Close - AGE OUT
2018-12-10 10:17:59 Permit 10.41.1.57:53826 8.8.4.4:53
1.9.140.18:49464 8.8.4.4:53 2 sec 75 95
DNS Close - RESP
2018-12-10 10:17:59 Permit 10.41.1.65:63883 172.217.26.142:443
1.9.140.18:14603 172.217.26.142:443 242 sec 4644 2503
HTTPS Close - TCP FIN
2018-12-10 10:17:59 Permit 10.41.200.63:53356 1.9.57.142:80
1.9.140.18:54093 1.9.57.142:80 4 sec 1068 18734
HTTP Close - TCP RST
2018-12-10 10:17:59 Permit 10.41.1.57:53825 8.8.4.4:53
1.9.140.18:33572 8.8.4.4:53 2 sec 75 95
DNS Close - RESP
2018-12-10 10:17:59 Permit 10.41.200.62:64976 172.217.26.131:443
1.9.140.18:29433 172.217.26.131:443 244 sec 2822 5902
HTTPS Close - TCP FIN
2018-12-10 10:17:59 Permit 10.41.100.1:65124 10.10.1.24:53
10.41.100.1:65124 10.10.1.24:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:17:59 Permit 10.41.100.1:49183 10.10.1.4:53
10.41.100.1:49183 10.10.1.4:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:17:59 Permit 10.41.5.80:61039 104.103.70.10:80
1.9.140.18:44856 104.103.70.10:80 3 sec 804 36267
HTTP Close - TCP RST
2018-12-10 10:17:59 Permit 10.41.100.1:50771 10.10.1.4:53
10.41.100.1:50771 10.10.1.4:53 60 sec 87 0
DNS Close - AGE OUT
2018-12-10 10:17:59 Permit 10.41.100.1:65326 10.10.1.24:53
10.41.100.1:65326 10.10.1.24:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:59 Permit 10.41.100.1:49162 10.10.1.4:53
10.41.100.1:49162 10.10.1.4:53 59 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:17:59 Permit 10.41.100.1:49410 10.10.1.4:53
10.41.100.1:49410 10.10.1.4:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:59 Permit 10.41.0.131:54061 10.41.100.1:135
10.41.0.131:54061 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:59 Permit 10.41.0.131:54060 10.41.100.1:135
10.41.0.131:54060 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:59 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 2 sec 323 81
DNS Close - RESP
2018-12-10 10:17:59 Permit 10.41.0.131:33623 10.41.100.1:49154
10.41.0.131:33623 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:59 Permit 10.41.0.131:33627 10.41.100.1:49154
10.41.0.131:33627 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:59 Permit 10.41.0.131:54065 10.41.100.1:135
10.41.0.131:54065 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:59 Permit 10.41.0.131:54064 10.41.100.1:135
10.41.0.131:54064 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:59 Permit 10.41.200.80:56220 10.41.100.1:53
10.41.200.80:56220 10.41.100.1:53 16 sec 93 93
DNS Close - RESP
2018-12-10 10:17:58 Permit 10.41.200.54:55221 172.217.26.133:443
1.9.140.18:15494 172.217.26.133:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:58 Permit 10.41.1.51:53275 10.41.100.7:60313
10.41.1.51:53275 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:17:58 Permit 10.41.100.1:65525 10.10.1.24:53
10.41.100.1:65525 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:58 Permit 10.41.100.1:49704 10.10.1.4:53
10.41.100.1:49704 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:58 Permit 10.41.100.1:49264 10.10.1.4:53
10.41.100.1:49264 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:58 Permit 10.41.203.4:52681 10.41.100.1:53
10.41.203.4:52681 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:57 Permit 10.41.0.131:33630 10.41.100.1:49154
10.41.0.131:33630 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:57 Permit 10.41.0.131:54068 10.41.100.1:135
10.41.0.131:54068 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:57 Permit 10.41.0.131:54067 10.41.100.1:135
10.41.0.131:54067 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:57 Permit 10.41.1.57:62142 5.100.152.23:80
1.9.140.18:16570 5.100.152.23:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:57 Permit 10.41.1.57:53826 8.8.4.4:53
1.9.140.18:49464 8.8.4.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:57 Permit 10.41.1.57:53825 8.8.4.4:53
1.9.140.18:33572 8.8.4.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:57 Permit 10.41.1.57:62141 65.55.50.190:80
1.9.140.18:11252 65.55.50.190:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:57 Permit 10.41.100.1:65528 10.10.1.40:53
10.41.100.1:65528 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:57 Permit 10.41.203.2:50867 10.41.100.1:53
10.41.203.2:50867 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:57 Permit 10.41.1.57:53824 8.8.4.4:53
1.9.140.18:44069 8.8.4.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:57 Permit 10.41.1.55:52431 23.94.187.84:443
1.9.140.18:31198 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:57 Permit 10.41.1.57:62140 10.41.100.7:60313
10.41.1.57:62140 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:17:57 Permit 10.41.100.1:50067 10.10.1.4:53
10.41.100.1:50067 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:57 Permit 10.41.100.1:50785 10.10.1.4:53
10.41.100.1:50785 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:57 Permit 10.41.100.1:50052 10.10.1.40:53
10.41.100.1:50052 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:57 Permit 10.41.100.1:50095 10.10.1.40:53
10.41.100.1:50095 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:57 Permit 10.41.100.1:50713 10.10.1.40:53
10.41.100.1:50713 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:57 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:57 Permit 10.41.2.74:56309 157.240.10.35:443
1.9.140.18:47177 157.240.10.35:443 1 sec 901 74
HTTPS Close - AGE OUT
2018-12-10 10:17:57 Permit 10.41.100.1:65169 10.10.1.40:53
10.41.100.1:65169 10.10.1.40:53 59 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:17:57 Permit 10.41.2.74:56312 157.240.10.35:443
1.9.140.18:51072 157.240.10.35:443 1 sec 595 74
HTTPS Close - AGE OUT
2018-12-10 10:17:57 Permit 10.41.2.74:56311 157.240.10.35:443
1.9.140.18:41224 157.240.10.35:443 1 sec 595 74
HTTPS Close - AGE OUT
2018-12-10 10:17:57 Permit 10.41.2.74:56310 157.240.10.35:443
1.9.140.18:39551 157.240.10.35:443 1 sec 901 74
HTTPS Close - AGE OUT
2018-12-10 10:17:57 Permit 10.41.200.65:57631 172.217.166.138:443
1.9.140.18:24866 172.217.166.138:443 242 sec 3661 9568
HTTPS Close - TCP FIN
2018-12-10 10:17:57 Permit 10.41.100.1:65326 10.10.1.40:53
10.41.100.1:65326 10.10.1.40:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:57 Permit 10.41.1.66:50764 104.103.70.8:80
1.9.140.18:13337 104.103.70.8:80 2 sec 804 38192
HTTP Close - TCP RST
2018-12-10 10:17:57 Permit 10.41.100.2:64827 216.239.36.10:53
1.9.140.18:57038 216.239.36.10:53 2 sec 87 219
DNS Close - RESP
2018-12-10 10:17:57 Permit 10.41.5.80:61037 104.103.70.10:80
1.9.140.18:60609 104.103.70.10:80 7 sec 934 550
HTTP Close - TCP RST
2018-12-10 10:17:57 Permit 10.41.100.1:50284 10.10.1.4:53
10.41.100.1:50284 10.10.1.4:53 59 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:17:57 Permit 10.41.200.63:53353 172.217.31.110:80
1.9.140.18:33105 172.217.31.110:80 4 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:17:57 Permit 10.41.100.1:49928 10.10.1.24:53
10.41.100.1:49928 10.10.1.24:53 60 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:17:57 Permit 10.41.100.1:49583 10.10.1.24:53
10.41.100.1:49583 10.10.1.24:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:17:57 Permit 10.41.100.1:65124 10.10.1.40:53
10.41.100.1:65124 10.10.1.40:53 60 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:17:57 Permit 10.41.100.1:67 10.41.200.53:68
10.41.100.1:67 10.41.200.53:68 59 sec 346 0
DHCP Close - AGE OUT
2018-12-10 10:17:57 Permit 10.41.100.1:65468 10.10.1.24:53
10.41.100.1:65468 10.10.1.24:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:17:57 Permit 10.41.200.63:53347 172.217.31.110:80
1.9.140.18:56691 172.217.31.110:80 68 sec 918 1282
HTTP Close - TCP FIN
2018-12-10 10:17:57 Permit 10.41.0.131:54058 10.41.100.1:135
10.41.0.131:54058 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:57 Permit 10.62.1.52:55840 10.41.100.1:445
10.62.1.52:55840 10.41.100.1:445 129 sec 4982 3706
TCP PORT 445 Close - TCP RST
2018-12-10 10:17:57 Permit 10.41.0.131:54057 10.41.100.1:135
10.41.0.131:54057 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:57 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 404 176
DNS Close - RESP
2018-12-10 10:17:57 Permit 10.41.200.60:49991 10.41.100.1:53
10.41.200.60:49991 10.41.100.1:53 15 sec 89 89
DNS Close - RESP
2018-12-10 10:17:57 Permit 10.41.1.51:53274 10.41.100.7:60313
10.41.1.51:53274 10.41.100.7:60313 4 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:17:57 Permit 10.41.0.131:33616 10.41.100.1:49154
10.41.0.131:33616 10.41.100.1:49154 5 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:57 Permit 10.41.0.131:33620 10.41.100.1:49154
10.41.0.131:33620 10.41.100.1:49154 3 sec 3808 4196
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:56 Permit 10.41.5.80:61039 104.103.70.10:80
1.9.140.18:44856 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:56 Permit 10.41.0.131:33627 10.41.100.1:49154
10.41.0.131:33627 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:56 Permit 10.41.0.131:54065 10.41.100.1:135
10.41.0.131:54065 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:56 Permit 10.41.0.131:54064 10.41.100.1:135
10.41.0.131:54064 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:56 Deny 10.41.200.62:64995 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 32 HTTPS Traffic
Denied
2018-12-10 10:17:56 Permit 10.41.2.74:56312 157.240.10.35:443
1.9.140.18:51072 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:56 Permit 10.41.2.74:56311 157.240.10.35:443
1.9.140.18:41224 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:56 Permit 10.41.2.74:56310 157.240.10.35:443
1.9.140.18:39551 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:56 Permit 10.41.2.74:56309 157.240.10.35:443
1.9.140.18:47177 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:56 Permit 10.41.100.1:50580 10.10.1.40:53
10.41.100.1:50580 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:56 Permit 10.41.5.70:63588 10.41.100.1:53
10.41.5.70:63588 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:55 Permit 10.41.200.63:53356 1.9.57.142:80
1.9.140.18:54093 1.9.57.142:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:55 Permit 10.41.200.63:53355 172.217.31.110:80
1.9.140.18:45343 172.217.31.110:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:55 Permit 10.41.1.66:50764 104.103.70.8:80
1.9.140.18:13337 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:55 Permit 10.41.0.131:33623 10.41.100.1:49154
10.41.0.131:33623 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:55 Permit 10.41.0.131:54061 10.41.100.1:135
10.41.0.131:54061 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:55 Permit 10.41.0.131:54060 10.41.100.1:135
10.41.0.131:54060 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:55 Permit 10.41.1.54:52546 10.41.100.11:139
10.41.1.54:52546 10.41.100.11:139 0 sec 0 0
NETBIOS (SSN) Creation
2018-12-10 10:17:55 Permit 10.41.100.1:64993 10.10.1.24:53
10.41.100.1:64993 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:55 Permit 10.41.100.1:65111 10.10.1.24:53
10.41.100.1:65111 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:55 Permit 10.41.100.1:49866 10.10.1.4:53
10.41.100.1:49866 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:55 Permit 10.41.100.2:64827 216.239.36.10:53
1.9.140.18:57038 216.239.36.10:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:55 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:55 Permit 10.41.100.1:50728 10.10.1.4:53
10.41.100.1:50728 10.10.1.4:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:17:55 Permit 10.41.1.66:50762 104.103.70.8:80
1.9.140.18:35346 104.103.70.8:80 2 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:17:55 Permit 10.41.100.1:50771 10.10.1.24:53
10.41.100.1:50771 10.10.1.24:53 60 sec 87 0
DNS Close - AGE OUT
2018-12-10 10:17:55 Permit 10.41.0.131:60584 8.8.8.8:53
1.9.140.18:28332 8.8.8.8:53 1 sec 76 80
DNS Close - RESP
2018-12-10 10:17:55 Permit 10.41.5.76:50546 104.103.70.27:80
1.9.140.18:37337 104.103.70.27:80 113 sec 1366 872
HTTP Close - TCP FIN
2018-12-10 10:17:55 Permit 10.41.5.76:50548 104.103.70.33:80
1.9.140.18:32520 104.103.70.33:80 111 sec 762 795
HTTP Close - TCP FIN
2018-12-10 10:17:55 Permit 10.41.100.1:64905 10.10.1.24:53
10.41.100.1:64905 10.10.1.24:53 96 sec 172 0
DNS Close - AGE OUT
2018-12-10 10:17:55 Permit 10.41.2.74:56302 52.218.96.131:443
1.9.140.18:45083 52.218.96.131:443 8 sec 3267 6928
HTTPS Close - TCP FIN
2018-12-10 10:17:55 Permit 10.41.100.1:49183 10.10.1.24:53
10.41.100.1:49183 10.10.1.24:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:17:55 Permit 10.41.100.1:49410 10.10.1.24:53
10.41.100.1:49410 10.10.1.24:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:55 Permit 10.41.1.55:52429 23.94.187.84:443
1.9.140.18:9895 23.94.187.84:443 4 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:17:55 Permit 10.41.5.76:50547 104.103.70.27:80
1.9.140.18:28678 104.103.70.27:80 113 sec 1964 1237
HTTP Close - TCP FIN
2018-12-10 10:17:55 Permit 10.41.100.1:49162 10.10.1.24:53
10.41.100.1:49162 10.10.1.24:53 59 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:17:55 Permit 10.41.3.74:57136 52.230.84.0:443
1.9.140.18:41827 52.230.84.0:443 22 sec 1557 4420
HTTPS Close - TCP FIN
2018-12-10 10:17:55 Permit 10.41.100.1:49840 10.10.1.4:53
10.41.100.1:49840 10.10.1.4:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:17:55 Permit 10.41.200.6:49154 10.41.100.1:53
10.41.200.6:49154 10.41.100.1:53 6 sec 76 76
DNS Close - RESP
2018-12-10 10:17:55 Permit 10.41.0.131:54054 10.41.100.1:135
10.41.0.131:54054 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:55 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 4 sec 244 80
DNS Close - RESP
2018-12-10 10:17:55 Permit 10.41.0.131:33613 10.41.100.1:49154
10.41.0.131:33613 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:55 Permit 10.41.1.51:123 10.41.100.1:123
10.41.1.51:123 10.41.100.1:123 61 sec 114 114
NETWORK TIME Close - AGE OUT
2018-12-10 10:17:55 Permit 10.41.0.131:54053 10.41.100.1:135
10.41.0.131:54053 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:55 Permit 10.41.0.131:54051 10.41.100.1:135
10.41.0.131:54051 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:55 Permit 10.41.0.131:54050 10.41.100.1:135
10.41.0.131:54050 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:55 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 8 sec 76 76
DNS Close - RESP
2018-12-10 10:17:55 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 4 sec 87 162
DNS Close - RESP
2018-12-10 10:17:55 Permit 10.41.1.57:62139 10.41.100.7:60313
10.41.1.57:62139 10.41.100.7:60313 3 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:17:55 Permit 10.41.3.74:53322 10.41.100.1:53
10.41.3.74:53322 10.41.100.1:53 16 sec 87 87
DNS Close - RESP
2018-12-10 10:17:55 Permit 10.41.200.59:50172 10.41.100.2:2967
10.41.200.59:50172 10.41.100.2:2967 4 sec 136 128
TCP PORT 2967 Close - TCP RST
2018-12-10 10:17:54 Permit 10.41.100.1:65525 10.10.1.40:53
10.41.100.1:65525 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:54 Permit 10.41.5.80:59814 10.41.100.1:53
10.41.5.80:59814 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:54 Permit 10.41.0.131:33099 10.41.100.1:53
10.41.0.131:33099 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:54 Permit 10.41.0.131:60584 8.8.8.8:53
1.9.140.18:28332 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:54 Permit 10.41.100.1:49704 10.10.1.24:53
10.41.100.1:49704 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:54 Permit 10.41.100.1:49264 10.10.1.24:53
10.41.100.1:49264 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:54 Permit 10.41.100.1:50450 10.10.1.4:53
10.41.100.1:50450 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:54 Permit 10.41.100.1:65342 10.10.1.4:53
10.41.100.1:65342 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:54 Permit 10.41.1.54:52545 10.41.100.11:445
10.41.1.54:52545 10.41.100.11:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:17:54 Permit 10.41.0.131:33620 10.41.100.1:49154
10.41.0.131:33620 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:54 Permit 10.41.0.131:54058 10.41.100.1:135
10.41.0.131:54058 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:54 Permit 10.41.0.131:54057 10.41.100.1:135
10.41.0.131:54057 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:54 Permit 10.41.3.74:57141 52.230.80.159:443
1.9.140.18:41755 52.230.80.159:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:54 Permit 10.41.3.74:53943 10.41.100.1:53
10.41.3.74:53943 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:53 Deny 10.41.200.62:64995 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 32 HTTPS Traffic
Denied
2018-12-10 10:17:53 Permit 10.41.1.51:53274 10.41.100.7:60313
10.41.1.51:53274 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:17:53 Permit 10.41.200.63:53353 172.217.31.110:80
1.9.140.18:33105 172.217.31.110:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:53 Permit 10.41.1.66:56459 10.41.100.1:53
10.41.1.66:56459 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:53 Permit 10.41.1.66:50762 104.103.70.8:80
1.9.140.18:35346 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:53 Permit 10.41.1.58:64126 10.41.100.11:139
10.41.1.58:64126 10.41.100.11:139 0 sec 0 0
NETBIOS (SSN) Creation
2018-12-10 10:17:53 Permit 10.41.100.1:50067 10.10.1.24:53
10.41.100.1:50067 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:53 Permit 10.41.100.1:50785 10.10.1.24:53
10.41.100.1:50785 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:53 Permit 10.41.100.1:49636 10.10.1.4:53
10.41.100.1:49636 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:53 Permit 10.41.100.1:49162 10.10.1.40:53
10.41.100.1:49162 10.10.1.40:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:17:53 Permit 10.41.100.1:50284 10.10.1.24:53
10.41.100.1:50284 10.10.1.24:53 59 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:17:53 Permit 10.41.1.59:58845 172.217.26.144:80
1.9.140.18:53705 172.217.26.144:80 1 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:17:53 Permit 10.41.1.65:64160 210.176.156.48:80
1.9.140.18:24223 210.176.156.48:80 18 sec 5546 1533
HTTP Close - TCP RST
2018-12-10 10:17:53 Permit 10.41.100.1:50889 10.10.1.4:53
10.41.100.1:50889 10.10.1.4:53 59 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:17:53 Permit 10.41.100.1:49809 10.10.1.4:53
10.41.100.1:49809 10.10.1.4:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:17:53 Permit 10.41.100.1:49385 10.10.1.4:53
10.41.100.1:49385 10.10.1.4:53 59 sec 74 0
DNS Close - AGE OUT
2018-12-10 10:17:53 Permit 10.41.200.74:58535 1.9.8.41:443
1.9.140.18:18721 1.9.8.41:443 2 sec 1263 1669
HTTPS Close - TCP FIN
2018-12-10 10:17:53 Permit 10.41.200.55:51322 172.217.26.131:443
1.9.140.18:24073 172.217.26.131:443 242 sec 2980 2129
HTTPS Close - TCP FIN
2018-12-10 10:17:53 Permit 10.41.5.80:61036 104.103.70.10:80
1.9.140.18:26168 104.103.70.10:80 3 sec 804 36670
HTTP Close - TCP RST
2018-12-10 10:17:53 Permit 10.41.100.1:50808 10.10.1.4:53
10.41.100.1:50808 10.10.1.4:53 60 sec 77 0
DNS Close - AGE OUT
2018-12-10 10:17:53 Permit 10.41.100.1:65468 10.10.1.40:53
10.41.100.1:65468 10.10.1.40:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:17:53 Permit 10.41.100.1:49928 10.10.1.40:53
10.41.100.1:49928 10.10.1.40:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:17:53 Permit 10.41.100.1:49374 10.10.1.4:53
10.41.100.1:49374 10.10.1.4:53 59 sec 72 0
DNS Close - AGE OUT
2018-12-10 10:17:53 Permit 10.41.100.1:49583 10.10.1.40:53
10.41.100.1:49583 10.10.1.40:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:17:53 Permit 10.41.1.65:63792 172.217.166.142:443
1.9.140.18:27370 172.217.166.142:443 262 sec 4648 9872
HTTPS Close - TCP FIN
2018-12-10 10:17:53 Permit 10.41.200.50:123 10.41.100.1:123
10.41.200.50:123 10.41.100.1:123 61 sec 114 114
NETWORK TIME Close - AGE OUT
2018-12-10 10:17:53 Permit 10.41.0.131:33610 10.41.100.1:49154
10.41.0.131:33610 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:53 Permit 10.41.200.6:49154 10.41.100.1:53
10.41.200.6:49154 10.41.100.1:53 14 sec 163 162
DNS Close - RESP
2018-12-10 10:17:53 Permit 10.41.0.131:33606 10.41.100.1:49154
10.41.0.131:33606 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:53 Permit 10.41.3.74:52405 10.41.100.1:53
10.41.3.74:52405 10.41.100.1:53 14 sec 95 95
DNS Close - RESP
2018-12-10 10:17:53 Permit 10.41.5.72:59896 10.41.100.1:389
10.41.5.72:59896 10.41.100.1:389 62 sec 297 207
UDP PORT 389 Close - AGE OUT
2018-12-10 10:17:53 Permit 10.41.0.131:54044 10.41.100.1:135
10.41.0.131:54044 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:53 Permit 10.41.0.131:54043 10.41.100.1:135
10.41.0.131:54043 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:53 Permit 10.41.0.131:59392 10.41.100.1:53
10.41.0.131:59392 10.41.100.1:53 10 sec 76 76
DNS Close - RESP
2018-12-10 10:17:53 Permit 10.41.0.131:52666 10.41.100.1:53
10.41.0.131:52666 10.41.100.1:53 15 sec 76 76
DNS Close - RESP
2018-12-10 10:17:53 Permit 10.41.5.72:53697 10.41.100.1:389
10.41.5.72:53697 10.41.100.1:389 62 sec 253 207
UDP PORT 389 Close - AGE OUT
2018-12-10 10:17:53 Permit 10.41.200.59:50172 10.41.100.2:2967
10.41.200.59:50172 10.41.100.2:2967 3 sec 70 64
TCP PORT 2967 Close - TCP RST
2018-12-10 10:17:53 Permit 10.41.0.131:54047 10.41.100.1:135
10.41.0.131:54047 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:53 Permit 10.41.0.131:54048 10.41.100.1:135
10.41.0.131:54048 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:53 Permit 10.41.1.65:62050 10.41.100.1:53
10.41.1.65:62050 10.41.100.1:53 16 sec 85 85
DNS Close - RESP
2018-12-10 10:17:52 Permit 10.41.0.131:33616 10.41.100.1:49154
10.41.0.131:33616 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:52 Permit 10.41.0.131:54054 10.41.100.1:135
10.41.0.131:54054 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:52 Permit 10.41.0.131:54053 10.41.100.1:135
10.41.0.131:54053 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:52 Permit 10.41.1.59:58845 172.217.26.144:80
1.9.140.18:53705 172.217.26.144:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:52 Permit 10.41.1.57:62139 10.41.100.7:60313
10.41.1.57:62139 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:17:52 Permit 10.41.1.58:64125 10.41.100.11:445
10.41.1.58:64125 10.41.100.11:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:17:51 Permit 10.41.0.131:33613 10.41.100.1:49154
10.41.0.131:33613 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:51 Permit 10.41.0.131:54051 10.41.100.1:135
10.41.0.131:54051 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:51 Permit 10.41.0.131:54050 10.41.100.1:135
10.41.0.131:54050 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:51 Permit 10.41.1.55:52429 23.94.187.84:443
1.9.140.18:9895 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:51 Permit 10.41.200.74:58536 1.9.8.41:80
1.9.140.18:52102 1.9.8.41:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:51 Permit 10.40.200.106:54518 10.41.100.11:139
10.40.200.106:54518 10.41.100.11:139 0 sec 0 0
NETBIOS (SSN) Creation
2018-12-10 10:17:51 Permit 10.41.100.1:64993 10.10.1.40:53
10.41.100.1:64993 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:51 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:51 Permit 10.41.200.74:58535 1.9.8.41:443
1.9.140.18:18721 1.9.8.41:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:51 Permit 10.41.200.59:50172 10.41.100.2:2967
10.41.200.59:50172 10.41.100.2:2967 0 sec 0 0
TCP PORT 2967 Creation
2018-12-10 10:17:51 Permit 10.41.100.1:65111 10.10.1.40:53
10.41.100.1:65111 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:51 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:51 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:51 Permit 10.41.100.1:49866 10.10.1.24:53
10.41.100.1:49866 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:51 Permit 10.41.100.1:50159 10.10.1.4:53
10.41.100.1:50159 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:51 Permit 10.41.100.1:53 10.41.200.6:49154
10.41.100.1:53 10.41.200.6:49154 0 sec 0 0
UDP PORT 49154 Creation
2018-12-10 10:17:51 Permit 10.41.5.77:63575 23.51.32.160:80
1.9.140.18:20824 23.51.32.160:80 118 sec 706 1036
HTTP Close - TCP FIN
2018-12-10 10:17:51 Permit 10.41.100.1:49840 10.10.1.24:53
10.41.100.1:49840 10.10.1.24:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:17:51 Permit 10.41.100.1:50779 10.10.1.4:53
10.41.100.1:50779 10.10.1.4:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:17:51 Permit 10.41.100.1:50771 10.10.1.40:53
10.41.100.1:50771 10.10.1.40:53 59 sec 87 0
DNS Close - AGE OUT
2018-12-10 10:17:51 Permit 10.41.2.74:56307 157.240.10.35:443
1.9.140.18:15502 157.240.10.35:443 1 sec 595 74
HTTPS Close - AGE OUT
2018-12-10 10:17:51 Permit 10.41.100.1:49410 10.10.1.40:53
10.41.100.1:49410 10.10.1.40:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:51 Permit 10.41.0.131:33683 8.8.8.8:53
1.9.140.18:10433 8.8.8.8:53 3 sec 76 80
DNS Close - RESP
2018-12-10 10:17:51 Permit 10.41.1.66:50761 104.103.70.8:80
1.9.140.18:46687 104.103.70.8:80 1 sec 804 39714
HTTP Close - TCP RST
2018-12-10 10:17:51 Permit 10.41.100.1:64905 10.10.1.40:53
10.41.100.1:64905 10.10.1.40:53 96 sec 172 0
DNS Close - AGE OUT
2018-12-10 10:17:51 Permit 10.41.2.74:56308 157.240.10.35:443
1.9.140.18:8822 157.240.10.35:443 1 sec 595 74
HTTPS Close - AGE OUT
2018-12-10 10:17:51 Permit 10.41.2.74:56306 157.240.10.35:443
1.9.140.18:12033 157.240.10.35:443 1 sec 901 74
HTTPS Close - AGE OUT
2018-12-10 10:17:51 Permit 10.41.1.66:50759 104.103.70.8:80
1.9.140.18:29117 104.103.70.8:80 3 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:17:51 Permit 10.41.2.74:56305 157.240.10.35:443
1.9.140.18:39048 157.240.10.35:443 1 sec 901 74
HTTPS Close - AGE OUT
2018-12-10 10:17:51 Permit 10.41.100.1:49183 10.10.1.40:53
10.41.100.1:49183 10.10.1.40:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:17:51 Permit 10.41.5.80:61034 104.103.70.10:80
1.9.140.18:27406 104.103.70.10:80 3 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:17:51 Permit 10.41.100.1:49929 10.10.1.4:53
10.41.100.1:49929 10.10.1.4:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:17:51 Permit 10.41.100.1:50728 10.10.1.24:53
10.41.100.1:50728 10.10.1.24:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:17:51 Permit 10.41.1.66:55810 10.41.100.1:53
10.41.1.66:55810 10.41.100.1:53 16 sec 92 92
DNS Close - RESP
2018-12-10 10:17:51 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 14 sec 76 76
DNS Close - RESP
2018-12-10 10:17:51 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 325 176
DNS Close - RESP
2018-12-10 10:17:51 Permit 10.41.1.65:62752 10.41.100.1:53
10.41.1.65:62752 10.41.100.1:53 14 sec 79 79
DNS Close - RESP
2018-12-10 10:17:51 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 14 sec 76 76
DNS Close - RESP
2018-12-10 10:17:51 Permit 10.41.0.131:54041 10.41.100.1:135
10.41.0.131:54041 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:51 Permit 10.41.0.131:54040 10.41.100.1:135
10.41.0.131:54040 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:51 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 12 sec 76 76
DNS Close - RESP
2018-12-10 10:17:51 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 4 sec 87 162
DNS Close - RESP
2018-12-10 10:17:51 Permit 10.41.1.51:53267 10.41.100.7:60313
10.41.1.51:53267 10.41.100.7:60313 3 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:17:51 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 14 sec 76 76
DNS Close - RESP
2018-12-10 10:17:51 Permit 10.41.1.57:62138 10.41.100.7:60313
10.41.1.57:62138 10.41.100.7:60313 4 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:17:51 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 14 sec 76 76
DNS Close - RESP
2018-12-10 10:17:51 Permit 10.41.0.131:33603 10.41.100.1:49154
10.41.0.131:33603 10.41.100.1:49154 4 sec 3808 4196
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:51 Permit 10.41.200.80:64936 10.41.100.1:53
10.41.200.80:64936 10.41.100.1:53 16 sec 80 80
DNS Close - RESP
2018-12-10 10:17:50 Permit 10.41.5.80:55295 10.41.100.1:53
10.41.5.80:55295 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:50 Permit 10.41.5.80:61037 104.103.70.10:80
1.9.140.18:60609 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:50 Permit 10.41.100.1:49704 10.10.1.40:53
10.41.100.1:49704 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:50 Permit 10.41.5.80:58333 10.41.100.1:53
10.41.5.80:58333 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:50 Permit 10.41.200.59:50172 10.41.100.2:2967
10.41.200.59:50172 10.41.100.2:2967 0 sec 0 0
TCP PORT 2967 Creation
2018-12-10 10:17:50 Permit 10.41.5.80:61036 104.103.70.10:80
1.9.140.18:26168 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:50 Permit 10.41.0.131:33610 10.41.100.1:49154
10.41.0.131:33610 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:50 Permit 10.41.0.131:54048 10.41.100.1:135
10.41.0.131:54048 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:50 Permit 10.41.0.131:54047 10.41.100.1:135
10.41.0.131:54047 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:50 Permit 10.41.100.1:49264 10.10.1.40:53
10.41.100.1:49264 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:50 Permit 10.40.200.106:54517 10.41.100.11:445
10.40.200.106:54517 10.41.100.11:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:17:50 Permit 10.41.1.66:61630 10.41.100.1:53
10.41.1.66:61630 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:50 Permit 10.41.1.66:50761 104.103.70.8:80
1.9.140.18:46687 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:50 Permit 10.41.2.74:56308 157.240.10.35:443
1.9.140.18:8822 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:50 Permit 10.41.100.1:50450 10.10.1.24:53
10.41.100.1:50450 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:50 Permit 10.41.100.1:65342 10.10.1.24:53
10.41.100.1:65342 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:50 Permit 10.41.2.74:56307 157.240.10.35:443
1.9.140.18:15502 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:50 Permit 10.41.2.74:56306 157.240.10.35:443
1.9.140.18:12033 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:50 Permit 10.41.2.74:56305 157.240.10.35:443
1.9.140.18:39048 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:49 Permit 10.41.100.1:50067 10.10.1.40:53
10.41.100.1:50067 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:49 Permit 10.41.200.63:62068 10.41.100.1:53
10.41.200.63:62068 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:49 Permit 10.41.100.1:50785 10.10.1.40:53
10.41.100.1:50785 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:49 Permit 10.41.0.131:41315 10.41.100.1:53
10.41.0.131:41315 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:49 Permit 10.41.200.6:49154 10.41.100.1:53
10.41.200.6:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:49 Permit 10.41.100.1:49636 10.10.1.24:53
10.41.100.1:49636 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:49 Permit 10.41.100.1:50544 10.10.1.4:53
10.41.100.1:50544 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:49 Permit 10.41.100.1:65174 10.10.1.4:53
10.41.100.1:65174 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:49 Permit 10.41.100.1:50123 10.10.1.4:53
10.41.100.1:50123 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:49 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:49 Permit 10.41.0.131:33606 10.41.100.1:49154
10.41.0.131:33606 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:49 Permit 10.41.0.131:54044 10.41.100.1:135
10.41.0.131:54044 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:49 Permit 10.41.0.131:54043 10.41.100.1:135
10.41.0.131:54043 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:49 Permit 10.41.200.51:52683 172.217.166.142:443
1.9.140.18:56210 172.217.166.142:443 6 sec 4151 2124
HTTPS Close - TCP FIN
2018-12-10 10:17:49 Permit 10.41.100.1:53 10.41.200.3:49154
10.41.100.1:53 10.41.200.3:49154 2 sec 76 0
UDP PORT 49154 Close - ICMP Unreach
2018-12-10 10:17:49 Permit 10.41.2.74:56292 54.214.40.57:443
1.9.140.18:14733 54.214.40.57:443 21 sec 2341 6216
HTTPS Close - TCP RST
2018-12-10 10:17:49 Permit 10.41.100.1:65228 10.10.1.4:53
10.41.100.1:65228 10.10.1.4:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:49 Permit 10.41.2.74:55975 23.51.44.78:443
1.9.140.18:63546 23.51.44.78:443 337 sec 6432 9171
HTTPS Close - TCP RST
2018-12-10 10:17:49 Permit 10.41.100.1:50284 10.10.1.40:53
10.41.100.1:50284 10.10.1.40:53 59 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:17:49 Permit 10.41.1.55:52426 23.94.187.84:443
1.9.140.18:62014 23.94.187.84:443 4 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:17:49 Permit 10.41.1.57:55031 8.8.4.4:53
1.9.140.18:16598 8.8.4.4:53 4 sec 75 95
DNS Close - RESP
2018-12-10 10:17:49 Permit 10.41.200.65:57598 172.217.26.131:443
1.9.140.18:58466 172.217.26.131:443 308 sec 87869 13710
HTTPS Close - TCP FIN
2018-12-10 10:17:49 Permit 10.41.100.1:49374 10.10.1.24:53
10.41.100.1:49374 10.10.1.24:53 59 sec 72 0
DNS Close - AGE OUT
2018-12-10 10:17:49 Permit 10.41.100.1:49840 10.10.1.40:53
10.41.100.1:49840 10.10.1.40:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:17:49 Permit 10.41.100.1:53 10.41.200.7:49154
10.41.100.1:53 10.41.200.7:49154 2 sec 76 0
UDP PORT 49154 Close - ICMP Unreach
2018-12-10 10:17:49 Permit 10.41.100.1:49385 10.10.1.24:53
10.41.100.1:49385 10.10.1.24:53 59 sec 74 0
DNS Close - AGE OUT
2018-12-10 10:17:49 Permit 10.41.100.1:53 10.41.200.8:49154
10.41.100.1:53 10.41.200.8:49154 2 sec 76 0
UDP PORT 49154 Close - ICMP Unreach
2018-12-10 10:17:49 Permit 10.41.100.1:49601 10.10.1.4:53
10.41.100.1:49601 10.10.1.4:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:17:49 Permit 10.41.100.1:49809 10.10.1.24:53
10.41.100.1:49809 10.10.1.24:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:17:49 Permit 10.41.100.1:50808 10.10.1.24:53
10.41.100.1:50808 10.10.1.24:53 60 sec 77 0
DNS Close - AGE OUT
2018-12-10 10:17:49 Permit 10.41.200.80:61073 172.217.166.131:443
1.9.140.18:31486 172.217.166.131:443 15 sec 1615 491
HTTPS Close - TCP RST
2018-12-10 10:17:49 Permit 10.41.1.57:62137 40.76.4.15:80
1.9.140.18:18686 40.76.4.15:80 4 sec 262 142
HTTP Close - TCP FIN
2018-12-10 10:17:49 Permit 10.41.100.1:53 10.41.200.10:49154
10.41.100.1:53 10.41.200.10:49154 2 sec 76 0
UDP PORT 49154 Close - ICMP Unreach
2018-12-10 10:17:49 Permit 10.41.100.1:49190 10.10.1.4:53
10.41.100.1:49190 10.10.1.4:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:17:49 Permit 10.41.1.57:55030 8.8.4.4:53
1.9.140.18:14971 8.8.4.4:53 4 sec 77 161
DNS Close - RESP
2018-12-10 10:17:49 Permit 10.41.100.1:50889 10.10.1.24:53
10.41.100.1:50889 10.10.1.24:53 59 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:17:49 Permit 10.41.100.1:49541 10.10.1.4:53
10.41.100.1:49541 10.10.1.4:53 63 sec 185 0
DNS Close - AGE OUT
2018-12-10 10:17:49 Permit 10.41.5.77:59582 10.41.100.1:53
10.41.5.77:59582 10.41.100.1:53 16 sec 91 91
DNS Close - RESP
2018-12-10 10:17:49 Permit 10.41.200.80:59497 10.41.100.1:53
10.41.200.80:59497 10.41.100.1:53 15 sec 83 83
DNS Close - RESP
2018-12-10 10:17:49 Permit 10.41.3.74:64850 10.41.100.1:53
10.41.3.74:64850 10.41.100.1:53 4 sec 80 145
DNS Close - RESP
2018-12-10 10:17:49 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 8 sec 569 79
DNS Close - RESP
2018-12-10 10:17:49 Permit 10.41.200.80:50716 10.41.100.1:53
10.41.200.80:50716 10.41.100.1:53 16 sec 80 80
DNS Close - RESP
2018-12-10 10:17:49 Permit 10.41.200.80:52784 10.41.100.1:53
10.41.200.80:52784 10.41.100.1:53 16 sec 77 77
DNS Close - RESP
2018-12-10 10:17:49 Permit 10.41.200.80:59345 10.41.100.1:53
10.41.200.80:59345 10.41.100.1:53 16 sec 80 80
DNS Close - RESP
2018-12-10 10:17:49 Permit 10.41.200.80:52985 10.41.100.1:53
10.41.200.80:52985 10.41.100.1:53 15 sec 84 84
DNS Close - RESP
2018-12-10 10:17:49 Permit 10.41.200.80:54969 10.41.100.1:53
10.41.200.80:54969 10.41.100.1:53 15 sec 78 78
DNS Close - RESP
2018-12-10 10:17:49 Permit 10.41.0.131:33599 10.41.100.1:49154
10.41.0.131:33599 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:49 Permit 10.41.0.131:33596 10.41.100.1:49154
10.41.0.131:33596 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:49 Permit 10.41.200.63:62400 10.41.100.1:53
10.41.200.63:62400 10.41.100.1:53 16 sec 79 79
DNS Close - RESP
2018-12-10 10:17:49 Permit 10.41.0.131:54033 10.41.100.1:135
10.41.0.131:54033 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:49 Permit 10.41.200.80:61309 10.41.100.1:53
10.41.200.80:61309 10.41.100.1:53 15 sec 90 90
DNS Close - RESP
2018-12-10 10:17:49 Permit 10.41.0.131:54034 10.41.100.1:135
10.41.0.131:54034 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:49 Permit 10.41.200.80:50003 10.41.100.1:53
10.41.200.80:50003 10.41.100.1:53 15 sec 84 84
DNS Close - RESP
2018-12-10 10:17:49 Permit 10.41.0.131:54036 10.41.100.1:135
10.41.0.131:54036 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:49 Permit 10.41.0.131:54037 10.41.100.1:135
10.41.0.131:54037 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:49 Permit 10.41.200.80:51847 10.41.100.1:53
10.41.200.80:51847 10.41.100.1:53 15 sec 81 81
DNS Close - RESP
2018-12-10 10:17:48 Permit 10.41.0.131:33683 8.8.8.8:53
1.9.140.18:10433 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:48 Permit 10.41.2.74:56304 54.214.40.57:443
1.9.140.18:39705 54.214.40.57:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:48 Permit 10.41.5.80:61034 104.103.70.10:80
1.9.140.18:27406 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:48 Permit 10.41.1.51:53267 10.41.100.7:60313
10.41.1.51:53267 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:17:48 Permit 10.41.1.66:50759 104.103.70.8:80
1.9.140.18:29117 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:47 Permit 10.41.0.131:33603 10.41.100.1:49154
10.41.0.131:33603 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:47 Permit 10.41.0.131:54041 10.41.100.1:135
10.41.0.131:54041 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:47 Permit 10.41.0.131:54040 10.41.100.1:135
10.41.0.131:54040 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:47 Permit 10.41.2.74:56303 52.218.96.131:443
1.9.140.18:18375 52.218.96.131:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:47 Permit 10.41.100.1:49866 10.10.1.40:53
10.41.100.1:49866 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:47 Permit 10.41.1.57:53823 10.41.100.1:53
10.41.1.57:53823 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:47 Permit 10.41.2.74:56302 52.218.96.131:443
1.9.140.18:45083 52.218.96.131:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:47 Permit 10.41.1.57:62138 10.41.100.7:60313
10.41.1.57:62138 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:17:47 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:47 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:47 Permit 10.41.100.1:50159 10.10.1.24:53
10.41.100.1:50159 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:47 Permit 10.41.100.1:49617 10.10.1.4:53
10.41.100.1:49617 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:47 Permit 10.41.100.1:65263 10.10.1.4:53
10.41.100.1:65263 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:47 Permit 10.41.100.1:53 10.41.200.10:49154
10.41.100.1:53 10.41.200.10:49154 0 sec 0 0
UDP PORT 49154 Creation
2018-12-10 10:17:47 Permit 10.41.100.1:53 10.41.200.7:49154
10.41.100.1:53 10.41.200.7:49154 0 sec 0 0
UDP PORT 49154 Creation
2018-12-10 10:17:47 Permit 10.41.100.1:53 10.41.200.3:49154
10.41.100.1:53 10.41.200.3:49154 0 sec 0 0
UDP PORT 49154 Creation
2018-12-10 10:17:47 Permit 10.41.100.1:53 10.41.200.8:49154
10.41.100.1:53 10.41.200.8:49154 0 sec 0 0
UDP PORT 49154 Creation
2018-12-10 10:17:47 Permit 10.41.100.1:50450 10.10.1.40:53
10.41.100.1:50450 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:47 Permit 10.41.200.62:64994 172.217.166.138:443
1.9.140.18:12221 172.217.166.138:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:47 Permit 10.41.200.62:64993 172.217.166.138:443
1.9.140.18:6189 172.217.166.138:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:47 Permit 10.41.100.2:53112 104.103.70.183:53
1.9.140.18:39487 104.103.70.183:53 2 sec 86 106
DNS Close - RESP
2018-12-10 10:17:47 Permit 10.41.100.2:56501 69.171.239.11:53
1.9.140.18:3087 69.171.239.11:53 2 sec 87 230
DNS Close - RESP
2018-12-10 10:17:47 Permit 10.41.1.59:58834 23.15.25.156:80
1.9.140.18:9017 23.15.25.156:80 92 sec 804 1960
HTTP Close - TCP FIN
2018-12-10 10:17:47 Permit 10.41.100.1:49385 10.10.1.40:53
10.41.100.1:49385 10.10.1.40:53 60 sec 74 0
DNS Close - AGE OUT
2018-12-10 10:17:47 Permit 10.41.5.80:61033 104.103.70.10:80
1.9.140.18:8146 104.103.70.10:80 3 sec 804 38192
HTTP Close - TCP RST
2018-12-10 10:17:47 Permit 10.41.1.59:58833 104.103.42.96:80
1.9.140.18:31933 104.103.42.96:80 93 sec 774 1878
HTTP Close - TCP FIN
2018-12-10 10:17:47 Permit 10.41.3.72:50570 52.230.84.0:443
1.9.140.18:60206 52.230.84.0:443 23 sec 1684 4420
HTTPS Close - TCP FIN
2018-12-10 10:17:47 Permit 10.41.100.1:49929 10.10.1.24:53
10.41.100.1:49929 10.10.1.24:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:17:47 Permit 10.41.100.1:50728 10.10.1.40:53
10.41.100.1:50728 10.10.1.40:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:17:47 Permit 10.41.100.1:49374 10.10.1.40:53
10.41.100.1:49374 10.10.1.40:53 60 sec 72 0
DNS Close - AGE OUT
2018-12-10 10:17:47 Permit 10.41.100.1:65524 10.10.1.4:53
10.41.100.1:65524 10.10.1.4:53 59 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:17:47 Permit 10.41.1.65:55399 172.217.31.70:443
1.9.140.18:59844 172.217.31.70:443 1525 sec 64941 217926
HTTPS Close - TCP FIN
2018-12-10 10:17:47 Permit 10.41.100.1:50779 10.10.1.24:53
10.41.100.1:50779 10.10.1.24:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:17:47 Permit 10.41.1.66:50758 104.103.70.8:80
1.9.140.18:13275 104.103.70.8:80 3 sec 804 38192
HTTP Close - TCP RST
2018-12-10 10:17:47 Permit 10.41.100.2:60698 23.45.232.164:53
1.9.140.18:43950 23.45.232.164:53 2 sec 86 106
DNS Close - RESP
2018-12-10 10:17:47 Permit 10.41.200.74:58498 1.9.8.41:80
1.9.140.18:14173 1.9.8.41:80 21 sec 140 0
HTTP Close - AGE OUT
2018-12-10 10:17:47 Permit 10.41.1.58:60467 10.41.100.1:389
10.41.1.58:60467 10.41.100.1:389 61 sec 256 207
UDP PORT 389 Close - AGE OUT
2018-12-10 10:17:47 Permit 10.41.1.58:60468 10.41.100.1:389
10.41.1.58:60468 10.41.100.1:389 61 sec 255 207
UDP PORT 389 Close - AGE OUT
2018-12-10 10:17:47 Permit 10.41.0.131:41260 10.41.100.1:53
10.41.0.131:41260 10.41.100.1:53 15 sec 71 71
DNS Close - RESP
2018-12-10 10:17:47 Permit 10.41.0.131:33589 10.41.100.1:49154
10.41.0.131:33589 10.41.100.1:49154 5 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:47 Permit 10.60.210.15:61929 10.41.100.1:445
10.60.210.15:61929 10.41.100.1:445 13 sec 4829 2036
TCP PORT 445 Close - TCP RST
2018-12-10 10:17:47 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 404 257
DNS Close - RESP
2018-12-10 10:17:47 Permit 10.41.1.55:137 10.41.100.11:137
10.41.1.55:137 10.41.100.11:137 150 sec 2208 0
NETBIOS (NS) Close - AGE OUT
2018-12-10 10:17:47 Permit 10.41.0.131:33592 10.41.100.1:49154
10.41.0.131:33592 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:47 Permit 10.41.1.51:53266 10.41.100.7:60313
10.41.1.51:53266 10.41.100.7:60313 4 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:17:47 Permit 10.41.0.131:54030 10.41.100.1:135
10.41.0.131:54030 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:47 Permit 10.41.0.131:54029 10.41.100.1:135
10.41.0.131:54029 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:46 Permit 10.41.100.1:65342 10.10.1.40:53
10.41.100.1:65342 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:46 Permit 10.41.200.62:57873 10.41.100.1:53
10.41.200.62:57873 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:46 Permit 10.41.0.131:33599 10.41.100.1:49154
10.41.0.131:33599 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:46 Permit 10.41.0.131:54037 10.41.100.1:135
10.41.0.131:54037 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:46 Permit 10.41.0.131:54036 10.41.100.1:135
10.41.0.131:54036 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:46 Permit 10.41.1.59:58844 10.41.100.11:2967
10.41.1.59:58844 10.41.100.11:2967 0 sec 0 0
TCP PORT 2967 Creation
2018-12-10 10:17:46 Permit 10.41.100.1:49409 10.10.1.4:53
10.41.100.1:49409 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:45 Permit 10.41.100.1:54857 10.10.1.155:443
10.41.100.1:54857 10.10.1.155:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:45 Permit 10.41.3.74:64850 10.41.100.1:53
10.41.3.74:64850 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:45 Permit 10.41.1.57:55031 8.8.4.4:53
1.9.140.18:16598 8.8.4.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:45 Permit 10.41.0.131:33596 10.41.100.1:49154
10.41.0.131:33596 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:45 Permit 10.41.0.131:54034 10.41.100.1:135
10.41.0.131:54034 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:45 Permit 10.41.0.131:54033 10.41.100.1:135
10.41.0.131:54033 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:45 Permit 10.41.1.55:52426 23.94.187.84:443
1.9.140.18:62014 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:45 Permit 10.41.3.72:50599 52.230.80.159:443
1.9.140.18:53832 52.230.80.159:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:45 Permit 10.41.100.1:49636 10.10.1.40:53
10.41.100.1:49636 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:45 Permit 10.41.3.72:52034 10.41.100.1:53
10.41.3.72:52034 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:45 Permit 10.41.1.57:62137 40.76.4.15:80
1.9.140.18:18686 40.76.4.15:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:45 Permit 10.41.1.57:55030 8.8.4.4:53
1.9.140.18:14971 8.8.4.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:45 Permit 10.41.100.1:50544 10.10.1.24:53
10.41.100.1:50544 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:45 Permit 10.41.100.1:65174 10.10.1.24:53
10.41.100.1:65174 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:45 Permit 10.41.100.1:50123 10.10.1.24:53
10.41.100.1:50123 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:45 Permit 10.41.100.1:64877 10.10.1.4:53
10.41.100.1:64877 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:45 Permit 10.41.100.1:50251 10.10.1.4:53
10.41.100.1:50251 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:45 Permit 10.41.100.2:60698 23.45.232.164:53
1.9.140.18:43950 23.45.232.164:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:45 Permit 10.41.100.2:56501 69.171.239.11:53
1.9.140.18:3087 69.171.239.11:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:45 Permit 10.41.100.2:53112 104.103.70.183:53
1.9.140.18:39487 104.103.70.183:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:45 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:45 Permit 10.41.100.1:50756 10.10.1.4:53
10.41.100.1:50756 10.10.1.4:53 60 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:17:45 Permit 10.41.100.1:49809 10.10.1.40:53
10.41.100.1:49809 10.10.1.40:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:17:45 Permit 10.41.100.1:50808 10.10.1.40:53
10.41.100.1:50808 10.10.1.40:53 60 sec 77 0
DNS Close - AGE OUT
2018-12-10 10:17:45 Permit 10.41.200.60:65186 17.248.154.82:443
1.9.140.18:45134 17.248.154.82:443 65 sec 3121 7463
HTTPS Close - TCP FIN
2018-12-10 10:17:45 Permit 10.41.100.1:49601 10.10.1.24:53
10.41.100.1:49601 10.10.1.24:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:17:45 Permit 10.41.100.1:49541 10.10.1.24:53
10.41.100.1:49541 10.10.1.24:53 63 sec 185 0
DNS Close - AGE OUT
2018-12-10 10:17:45 Permit 10.41.0.131:43555 8.8.8.8:53
1.9.140.18:57250 8.8.8.8:53 2 sec 76 80
DNS Close - RESP
2018-12-10 10:17:45 Permit 10.41.100.1:50889 10.10.1.40:53
10.41.100.1:50889 10.10.1.40:53 59 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:17:45 Permit 10.41.100.1:65228 10.10.1.24:53
10.41.100.1:65228 10.10.1.24:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:45 Permit 10.41.1.66:50756 104.103.70.8:80
1.9.140.18:61770 104.103.70.8:80 3 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:17:45 Permit 10.41.100.1:49190 10.10.1.24:53
10.41.100.1:49190 10.10.1.24:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:17:45 Permit 10.41.100.1:49255 10.10.1.4:53
10.41.100.1:49255 10.10.1.4:53 60 sec 86 0
DNS Close - AGE OUT
2018-12-10 10:17:45 Permit 10.41.200.80:61072 50.116.239.135:443
1.9.140.18:47118 50.116.239.135:443 11 sec 8118 10593
HTTPS Close - TCP RST
2018-12-10 10:17:45 Permit 10.41.100.1:50559 10.10.1.4:53
10.41.100.1:50559 10.10.1.4:53 60 sec 107 0
DNS Close - AGE OUT
2018-12-10 10:17:45 Permit 10.41.1.50:53530 172.217.166.138:443
1.9.140.18:61730 172.217.166.138:443 243 sec 3727 8600
HTTPS Close - TCP FIN
2018-12-10 10:17:45 Permit 10.41.100.1:49592 10.10.1.4:53
10.41.100.1:49592 10.10.1.4:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:17:45 Permit 10.41.2.74:53770 10.41.100.1:53
10.41.2.74:53770 10.41.100.1:53 15 sec 89 89
DNS Close - RESP
2018-12-10 10:17:45 Permit 10.41.200.60:52667 10.41.100.1:53
10.41.200.60:52667 10.41.100.1:53 15 sec 83 83
DNS Close - RESP
2018-12-10 10:17:45 Permit 10.41.2.74:50608 10.41.100.1:53
10.41.2.74:50608 10.41.100.1:53 15 sec 93 93
DNS Close - RESP
2018-12-10 10:17:45 Permit 10.41.1.107:61068 10.41.100.1:53
10.41.1.107:61068 10.41.100.1:53 12 sec 92 92
DNS Close - RESP
2018-12-10 10:17:45 Permit 10.41.1.66:58415 10.41.100.1:53
10.41.1.66:58415 10.41.100.1:53 15 sec 92 92
DNS Close - RESP
2018-12-10 10:17:45 Permit 10.41.2.74:63154 10.41.100.1:53
10.41.2.74:63154 10.41.100.1:53 15 sec 75 75
DNS Close - RESP
2018-12-10 10:17:45 Permit 10.41.2.74:62025 10.41.100.1:53
10.41.2.74:62025 10.41.100.1:53 15 sec 82 82
DNS Close - RESP
2018-12-10 10:17:45 Permit 10.41.5.80:51485 10.41.100.1:53
10.41.5.80:51485 10.41.100.1:53 12 sec 92 92
DNS Close - RESP
2018-12-10 10:17:45 Permit 10.41.0.131:54024 10.41.100.1:135
10.41.0.131:54024 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:45 Permit 10.41.0.131:54023 10.41.100.1:135
10.41.0.131:54023 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:45 Permit 10.41.2.74:49314 10.41.100.1:53
10.41.2.74:49314 10.41.100.1:53 15 sec 92 92
DNS Close - RESP
2018-12-10 10:17:45 Permit 10.41.0.131:54026 10.41.100.1:135
10.41.0.131:54026 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:45 Permit 10.41.1.57:62136 10.41.100.7:60313
10.41.1.57:62136 10.41.100.7:60313 3 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:17:45 Permit 10.41.0.131:33586 10.41.100.1:49154
10.41.0.131:33586 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:45 Permit 10.41.0.131:54027 10.41.100.1:135
10.41.0.131:54027 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:44 Permit 10.41.5.80:61033 104.103.70.10:80
1.9.140.18:8146 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:44 Permit 10.41.0.131:33592 10.41.100.1:49154
10.41.0.131:33592 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:44 Permit 10.41.0.131:54030 10.41.100.1:135
10.41.0.131:54030 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:44 Permit 10.41.0.131:54029 10.41.100.1:135
10.41.0.131:54029 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:44 Permit 10.41.100.1:50027 10.10.1.4:53
10.41.100.1:50027 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:44 Permit 10.41.100.1:50772 10.10.1.4:53
10.41.100.1:50772 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:44 Permit 10.41.100.1:65185 10.10.1.4:53
10.41.100.1:65185 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:44 Permit 10.41.1.66:50758 104.103.70.8:80
1.9.140.18:13275 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:43 Permit 10.41.0.131:59392 10.41.100.1:53
10.41.0.131:59392 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:43 Permit 10.41.1.51:53266 10.41.100.7:60313
10.41.1.51:53266 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:17:43 Permit 10.41.200.80:61082 216.58.199.202:443
1.9.140.18:39710 216.58.199.202:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:43 Permit 10.41.200.80:61081 216.58.199.202:443
1.9.140.18:7482 216.58.199.202:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:43 Permit 10.41.100.1:50159 10.10.1.40:53
10.41.100.1:50159 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:43 Permit 10.41.200.80:56220 10.41.100.1:53
10.41.200.80:56220 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:43 Permit 10.41.100.1:49617 10.10.1.24:53
10.41.100.1:49617 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:43 Permit 10.41.100.1:65263 10.10.1.24:53
10.41.100.1:65263 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:43 Permit 10.41.100.1:49979 10.10.1.4:53
10.41.100.1:49979 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:43 Permit 10.41.100.1:49977 10.10.1.4:53
10.41.100.1:49977 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:43 Permit 10.41.100.1:49306 10.10.1.4:53
10.41.100.1:49306 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:43 Permit 10.41.0.131:43555 8.8.8.8:53
1.9.140.18:57250 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:43 Permit 10.41.200.51:52683 172.217.166.142:443
1.9.140.18:56210 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:43 Permit 10.41.5.80:61031 104.103.70.10:80
1.9.140.18:11845 104.103.70.10:80 1 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:17:43 Permit 10.41.100.1:50779 10.10.1.40:53
10.41.100.1:50779 10.10.1.40:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:17:43 Permit 10.41.200.65:57630 172.217.166.131:443
1.9.140.18:35087 172.217.166.131:443 241 sec 8308 6582
HTTPS Close - TCP FIN
2018-12-10 10:17:43 Permit 10.41.1.55:52424 23.94.187.84:443
1.9.140.18:23952 23.94.187.84:443 4 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:17:43 Permit 10.41.200.80:60965 172.217.24.170:443
1.9.140.18:58956 172.217.24.170:443 257 sec 9337 11335
HTTPS Close - TCP FIN
2018-12-10 10:17:43 Permit 10.41.100.1:50351 10.10.1.4:53
10.41.100.1:50351 10.10.1.4:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:17:43 Permit 10.41.100.1:49572 10.10.1.4:53
10.41.100.1:49572 10.10.1.4:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:43 Permit 10.41.100.1:49958 10.10.1.4:53
10.41.100.1:49958 10.10.1.4:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:17:43 Permit 10.41.100.2:50979 10.10.1.4:53
10.41.100.2:50979 10.10.1.4:53 59 sec 73 0
DNS Close - AGE OUT
2018-12-10 10:17:43 Permit 10.41.100.2:49170 10.3.1.12:53
10.41.100.2:49170 10.3.1.12:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:17:43 Permit 10.41.100.2:49170 10.10.1.4:53
10.41.100.2:49170 10.10.1.4:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:17:43 Permit 10.41.100.2:50979 10.3.1.12:53
10.41.100.2:50979 10.3.1.12:53 59 sec 73 0
DNS Close - AGE OUT
2018-12-10 10:17:43 Permit 10.41.3.74:57138 13.107.4.50:80
1.9.140.18:21367 13.107.4.50:80 4 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:17:43 Permit 10.41.100.1:65524 10.10.1.24:53
10.41.100.1:65524 10.10.1.24:53 59 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:17:43 Permit 10.41.100.1:49929 10.10.1.40:53
10.41.100.1:49929 10.10.1.40:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:17:43 Permit 10.41.200.6:49154 10.41.100.1:53
10.41.200.6:49154 10.41.100.1:53 4 sec 87 162
DNS Close - RESP
2018-12-10 10:17:43 Permit 10.41.0.131:33582 10.41.100.1:49154
10.41.0.131:33582 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:43 Permit 10.41.200.80:61059 10.41.100.1:445
10.41.200.80:61059 10.41.100.1:445 14 sec 4815 2036
TCP PORT 445 Close - TCP RST
2018-12-10 10:17:43 Permit 10.41.0.131:54016 10.41.100.1:135
10.41.0.131:54016 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:43 Permit 10.41.0.131:54017 10.41.100.1:135
10.41.0.131:54017 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:43 Permit 10.41.200.54:123 10.41.100.1:123
10.41.200.54:123 10.41.100.1:123 61 sec 114 114
NETWORK TIME Close - AGE OUT
2018-12-10 10:17:43 Permit 10.41.0.131:33579 10.41.100.1:49154
10.41.0.131:33579 10.41.100.1:49154 4 sec 3808 4266
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:43 Permit 10.41.0.131:54019 10.41.100.1:135
10.41.0.131:54019 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:43 Permit 10.41.0.131:54020 10.41.100.1:135
10.41.0.131:54020 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:43 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 4 sec 87 162
DNS Close - RESP
2018-12-10 10:17:43 Permit 10.41.2.74:52667 10.41.100.1:53
10.41.2.74:52667 10.41.100.1:53 16 sec 91 91
DNS Close - RESP
2018-12-10 10:17:43 Permit 10.60.210.15:49675 10.41.100.1:389
10.60.210.15:49675 10.41.100.1:389 62 sec 251 222
UDP PORT 389 Close - AGE OUT
2018-12-10 10:17:43 Permit 10.41.2.74:62259 10.41.100.1:53
10.41.2.74:62259 10.41.100.1:53 15 sec 79 79
DNS Close - RESP
2018-12-10 10:17:42 Permit 10.41.0.131:33589 10.41.100.1:49154
10.41.0.131:33589 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:42 Permit 10.41.0.131:54027 10.41.100.1:135
10.41.0.131:54027 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:42 Permit 10.41.0.131:54026 10.41.100.1:135
10.41.0.131:54026 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:42 Permit 10.41.200.80:61080 13.33.172.219:443
1.9.140.18:47168 13.33.172.219:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:42 Permit 10.41.5.80:61031 104.103.70.10:80
1.9.140.18:11845 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:42 Permit 10.41.100.1:49409 10.10.1.24:53
10.41.100.1:49409 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:42 Permit 10.41.100.1:64997 10.10.1.4:53
10.41.100.1:64997 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:42 Permit 10.41.100.1:50565 10.10.1.4:53
10.41.100.1:50565 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:42 Permit 10.41.100.1:49455 10.10.1.4:53
10.41.100.1:49455 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:42 Permit 10.41.100.1:64921 10.10.1.4:53
10.41.100.1:64921 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:42 Permit 10.41.100.1:65450 10.10.1.4:53
10.41.100.1:65450 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:42 Permit 10.41.1.57:62136 10.41.100.7:60313
10.41.1.57:62136 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:17:42 Permit 10.41.200.60:65197 17.248.154.139:443
1.9.140.18:47827 17.248.154.139:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:42 Permit 10.41.100.1:50544 10.10.1.40:53
10.41.100.1:50544 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:42 Permit 10.41.200.60:49991 10.41.100.1:53
10.41.200.60:49991 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:42 Permit 10.41.1.66:50756 104.103.70.8:80
1.9.140.18:61770 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:41 Permit 10.41.0.131:33586 10.41.100.1:49154
10.41.0.131:33586 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:41 Permit 10.41.0.131:54024 10.41.100.1:135
10.41.0.131:54024 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:41 Permit 10.41.0.131:54023 10.41.100.1:135
10.41.0.131:54023 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:41 Permit 10.60.210.17:64047 10.41.100.1:445
10.60.210.17:64047 10.41.100.1:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:17:41 Deny 10.41.200.62:64992 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 28 HTTPS Traffic
Denied
2018-12-10 10:17:41 Permit 10.60.210.17:61556 10.41.100.1:389
10.60.210.17:61556 10.41.100.1:389 0 sec 0 0
UDP PORT 389 Creation
2018-12-10 10:17:41 Permit 10.41.100.1:65174 10.10.1.40:53
10.41.100.1:65174 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:41 Permit 10.41.100.1:50123 10.10.1.40:53
10.41.100.1:50123 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:41 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:41 Permit 10.41.100.1:64877 10.10.1.24:53
10.41.100.1:64877 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:41 Permit 10.41.100.1:50251 10.10.1.24:53
10.41.100.1:50251 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:41 Permit 10.41.100.1:50815 10.10.1.4:53
10.41.100.1:50815 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:41 Permit 10.41.100.1:50102 10.10.1.4:53
10.41.100.1:50102 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:41 Permit 10.41.100.1:65484 10.10.1.4:53
10.41.100.1:65484 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:41 Permit 10.41.100.1:65275 10.10.1.4:53
10.41.100.1:65275 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:41 Permit 10.41.100.1:50529 10.10.1.4:53
10.41.100.1:50529 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:41 Permit 10.41.100.1:49940 10.10.1.4:53
10.41.100.1:49940 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:41 Permit 10.41.7.70:57042 172.217.166.142:443
1.9.140.18:37971 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:41 Permit 10.41.100.1:49601 10.10.1.40:53
10.41.100.1:49601 10.10.1.40:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:17:41 Permit 10.41.100.1:49592 10.10.1.24:53
10.41.100.1:49592 10.10.1.24:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:17:41 Permit 10.41.100.1:65228 10.10.1.40:53
10.41.100.1:65228 10.10.1.40:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:41 Permit 10.41.3.74:57137 52.175.39.99:443
1.9.140.18:28223 52.175.39.99:443 2 sec 1074 4198
HTTPS Close - TCP RST
2018-12-10 10:17:41 Permit 10.41.2.74:56293 54.214.40.57:443
1.9.140.18:20979 54.214.40.57:443 13 sec 262 136
HTTPS Close - TCP FIN
2018-12-10 10:17:41 Permit 10.41.2.74:56271 52.51.230.32:443
1.9.140.18:62067 52.51.230.32:443 20 sec 262 142
HTTPS Close - TCP FIN
2018-12-10 10:17:41 Permit 10.41.3.74:57140 52.175.39.99:443
1.9.140.18:47618 52.175.39.99:443 2 sec 1010 4198
HTTPS Close - TCP RST
2018-12-10 10:17:41 Permit 10.41.100.1:49541 10.10.1.40:53
10.41.100.1:49541 10.10.1.40:53 63 sec 185 0
DNS Close - AGE OUT
2018-12-10 10:17:41 Permit 10.41.2.74:56301 157.240.10.35:443
1.9.140.18:30878 157.240.10.35:443 2 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:17:41 Permit 10.41.2.74:56300 157.240.10.35:443
1.9.140.18:2273 157.240.10.35:443 2 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:17:41 Permit 10.41.100.1:50756 10.10.1.24:53
10.41.100.1:50756 10.10.1.24:53 60 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:17:41 Permit 10.41.2.74:56291 52.218.96.131:443
1.9.140.18:29930 52.218.96.131:443 15 sec 262 211
HTTPS Close - TCP RST
2018-12-10 10:17:41 Permit 10.41.100.1:50637 10.10.1.4:53
10.41.100.1:50637 10.10.1.4:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:17:41 Permit 10.41.5.80:61030 104.103.70.10:80
1.9.140.18:56869 104.103.70.10:80 3 sec 804 38192
HTTP Close - TCP RST
2018-12-10 10:17:41 Permit 10.41.100.1:50559 10.10.1.24:53
10.41.100.1:50559 10.10.1.24:53 60 sec 107 0
DNS Close - AGE OUT
2018-12-10 10:17:41 Permit 10.41.100.1:49255 10.10.1.24:53
10.41.100.1:49255 10.10.1.24:53 60 sec 86 0
DNS Close - AGE OUT
2018-12-10 10:17:41 Permit 10.41.2.74:56299 157.240.10.35:443
1.9.140.18:40924 157.240.10.35:443 2 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:17:41 Permit 10.41.100.1:49190 10.10.1.40:53
10.41.100.1:49190 10.10.1.40:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:17:41 Permit 10.41.2.74:56298 157.240.10.35:443
1.9.140.18:19180 157.240.10.35:443 2 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:17:41 Permit 10.41.100.1:64891 10.10.1.4:53
10.41.100.1:64891 10.10.1.4:53 60 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:17:41 Permit 10.41.0.131:54013 10.41.100.1:135
10.41.0.131:54013 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:41 Permit 10.41.2.74:53579 10.41.100.1:53
10.41.2.74:53579 10.41.100.1:53 15 sec 94 94
DNS Close - RESP
2018-12-10 10:17:41 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 5 sec 76 76
DNS Close - RESP
2018-12-10 10:17:41 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 4 sec 87 162
DNS Close - RESP
2018-12-10 10:17:41 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 323 257
DNS Close - RESP
2018-12-10 10:17:41 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 5 sec 76 76
DNS Close - RESP
2018-12-10 10:17:41 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 4 sec 87 162
DNS Close - RESP
2018-12-10 10:17:41 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 5 sec 76 76
DNS Close - RESP
2018-12-10 10:17:41 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 4 sec 86 151
DNS Close - RESP
2018-12-10 10:17:41 Permit 10.41.0.131:54012 10.41.100.1:135
10.41.0.131:54012 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:41 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 5 sec 76 76
DNS Close - RESP
2018-12-10 10:17:41 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 4 sec 87 162
DNS Close - RESP
2018-12-10 10:17:41 Permit 10.41.0.131:33575 10.41.100.1:49154
10.41.0.131:33575 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:41 Permit 10.41.1.51:53259 10.41.100.7:60313
10.41.1.51:53259 10.41.100.7:60313 3 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:17:41 Permit 10.41.2.74:60807 10.41.100.1:53
10.41.2.74:60807 10.41.100.1:53 15 sec 99 99
DNS Close - RESP
2018-12-10 10:17:41 Permit 10.41.1.57:62135 10.41.100.7:60313
10.41.1.57:62135 10.41.100.7:60313 4 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:17:40 Permit 10.41.7.70:57041 172.217.166.142:443
1.9.140.18:19737 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:40 Permit 10.41.0.131:33582 10.41.100.1:49154
10.41.0.131:33582 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:40 Permit 10.41.0.131:54020 10.41.100.1:135
10.41.0.131:54020 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:40 Permit 10.41.0.131:54019 10.41.100.1:135
10.41.0.131:54019 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:40 Permit 10.41.100.1:50027 10.10.1.24:53
10.41.100.1:50027 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:40 Permit 10.41.100.1:50772 10.10.1.24:53
10.41.100.1:50772 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:40 Permit 10.41.100.1:65185 10.10.1.24:53
10.41.100.1:65185 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:40 Permit 10.41.100.1:49699 10.10.1.4:53
10.41.100.1:49699 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:39 Permit 10.41.1.55:52424 23.94.187.84:443
1.9.140.18:23952 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:39 Permit 10.41.3.74:57140 52.175.39.99:443
1.9.140.18:47618 52.175.39.99:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:39 Permit 10.41.3.74:57138 13.107.4.50:80
1.9.140.18:21367 13.107.4.50:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:39 Permit 10.41.100.1:49617 10.10.1.40:53
10.41.100.1:49617 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:39 Permit 10.41.3.74:53322 10.41.100.1:53
10.41.3.74:53322 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:39 Permit 10.41.0.131:33579 10.41.100.1:49154
10.41.0.131:33579 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:39 Permit 10.41.0.131:54017 10.41.100.1:135
10.41.0.131:54017 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:39 Permit 10.41.0.131:54016 10.41.100.1:135
10.41.0.131:54016 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:39 Permit 10.41.2.74:56301 157.240.10.35:443
1.9.140.18:30878 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:39 Permit 10.41.100.1:65263 10.10.1.40:53
10.41.100.1:65263 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:39 Permit 10.41.100.1:49979 10.10.1.24:53
10.41.100.1:49979 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:39 Permit 10.41.100.1:49977 10.10.1.24:53
10.41.100.1:49977 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:39 Permit 10.41.100.1:49306 10.10.1.24:53
10.41.100.1:49306 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:39 Permit 10.41.200.6:49154 10.41.100.1:53
10.41.200.6:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:39 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:39 Permit 10.41.200.6:49154 10.41.100.1:53
10.41.200.6:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:39 Permit 10.41.200.5:49154 10.41.100.1:53
10.41.200.5:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:39 Permit 10.41.2.74:56300 157.240.10.35:443
1.9.140.18:2273 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:39 Permit 10.41.2.74:56299 157.240.10.35:443
1.9.140.18:40924 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:39 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:39 Permit 10.41.2.74:56298 157.240.10.35:443
1.9.140.18:19180 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:39 Permit 10.41.3.74:57137 52.175.39.99:443
1.9.140.18:28223 52.175.39.99:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:39 Permit 10.41.100.1:49409 10.10.1.40:53
10.41.100.1:49409 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:39 Permit 10.41.3.74:52405 10.41.100.1:53
10.41.3.74:52405 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:39 Permit 10.41.100.1:49958 10.10.1.24:53
10.41.100.1:49958 10.10.1.24:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:17:39 Permit 10.41.2.74:56286 52.218.96.131:443
1.9.140.18:53644 52.218.96.131:443 13 sec 2820 8414
HTTPS Close - TCP RST
2018-12-10 10:17:39 Permit 10.41.100.1:65231 10.10.1.4:53
10.41.100.1:65231 10.10.1.4:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:39 Permit 10.41.1.112:55258 172.217.166.138:443
1.9.140.18:21770 172.217.166.138:443 242 sec 3559 4414
HTTPS Close - TCP FIN
2018-12-10 10:17:39 Permit 10.41.100.1:50351 10.10.1.24:53
10.41.100.1:50351 10.10.1.24:53 59 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:17:39 Permit 10.41.0.131:35379 8.8.8.8:53
1.9.140.18:44874 8.8.8.8:53 1 sec 71 91
DNS Close - RESP
2018-12-10 10:17:39 Permit 10.41.1.66:50755 104.103.70.8:80
1.9.140.18:31330 104.103.70.8:80 2 sec 868 41236
HTTP Close - TCP RST
2018-12-10 10:17:39 Permit 10.41.100.1:53 10.41.200.5:49154
10.41.100.1:53 10.41.200.5:49154 60 sec 76 0
UDP PORT 49154 Close - AGE OUT
2018-12-10 10:17:39 Permit 10.41.100.1:50813 10.10.1.4:53
10.41.100.1:50813 10.10.1.4:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:17:39 Permit 10.41.1.65:64156 103.243.221.17:80
1.9.140.18:45289 103.243.221.17:80 14 sec 27020 4337
HTTP Close - TCP FIN
2018-12-10 10:17:39 Permit 10.41.100.1:50147 10.10.1.4:53
10.41.100.1:50147 10.10.1.4:53 60 sec 72 0
DNS Close - AGE OUT
2018-12-10 10:17:39 Permit 10.41.1.107:51956 104.103.70.10:80
1.9.140.18:42194 104.103.70.10:80 4 sec 804 39714
HTTP Close - TCP RST
2018-12-10 10:17:39 Permit 10.41.100.1:49572 10.10.1.24:53
10.41.100.1:49572 10.10.1.24:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:39 Permit 10.41.100.1:65524 10.10.1.40:53
10.41.100.1:65524 10.10.1.40:53 59 sec 89 0
DNS Close - AGE OUT
2018-12-10 10:17:39 Permit 10.41.100.1:65254 10.10.1.4:53
10.41.100.1:65254 10.10.1.4:53 71 sec 171 0
DNS Close - AGE OUT
2018-12-10 10:17:39 Permit 10.41.1.65:64153 103.243.220.231:80
1.9.140.18:4555 103.243.220.231:80 15 sec 6022 5946
HTTP Close - TCP FIN
2018-12-10 10:17:39 Permit 10.41.100.1:53 10.41.200.6:49154
10.41.100.1:53 10.41.200.6:49154 60 sec 76 0
UDP PORT 49154 Close - AGE OUT
2018-12-10 10:17:39 Permit 10.41.1.65:64155 72.34.250.78:443
1.9.140.18:41102 72.34.250.78:443 15 sec 332 216
HTTPS Close - TCP FIN
2018-12-10 10:17:39 Permit 10.41.0.131:33569 10.41.100.1:49154
10.41.0.131:33569 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:39 Permit 10.41.1.65:63023 10.41.100.1:53
10.41.1.65:63023 10.41.100.1:53 15 sec 76 76
DNS Close - RESP
2018-12-10 10:17:39 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 2 sec 323 80
DNS Close - RESP
2018-12-10 10:17:39 Permit 10.41.0.131:54009 10.41.100.1:135
10.41.0.131:54009 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:39 Permit 10.41.0.131:33572 10.41.100.1:49154
10.41.0.131:33572 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:39 Permit 10.41.5.70:51508 10.41.100.1:53
10.41.5.70:51508 10.41.100.1:53 15 sec 83 83
DNS Close - RESP
2018-12-10 10:17:39 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 13 sec 163 162
DNS Close - RESP
2018-12-10 10:17:39 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 13 sec 163 162
DNS Close - RESP
2018-12-10 10:17:39 Permit 10.41.1.65:50232 10.41.100.1:53
10.41.1.65:50232 10.41.100.1:53 15 sec 82 82
DNS Close - RESP
2018-12-10 10:17:39 Permit 10.41.0.131:54010 10.41.100.1:135
10.41.0.131:54010 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:39 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 13 sec 162 151
DNS Close - RESP
2018-12-10 10:17:39 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 13 sec 163 162
DNS Close - RESP
2018-12-10 10:17:39 Permit 10.41.0.131:54007 10.41.100.1:135
10.41.0.131:54007 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:39 Permit 10.41.0.131:54006 10.41.100.1:135
10.41.0.131:54006 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:38 Permit 10.41.1.51:53259 10.41.100.7:60313
10.41.1.51:53259 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:17:38 Permit 10.41.5.80:61030 104.103.70.10:80
1.9.140.18:56869 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:38 Permit 10.41.100.1:64997 10.10.1.24:53
10.41.100.1:64997 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:38 Permit 10.41.100.1:50565 10.10.1.24:53
10.41.100.1:50565 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:38 Permit 10.41.100.1:49455 10.10.1.24:53
10.41.100.1:49455 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:38 Permit 10.41.100.1:64921 10.10.1.24:53
10.41.100.1:64921 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:38 Permit 10.41.100.1:65450 10.10.1.24:53
10.41.100.1:65450 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:38 Permit 10.41.100.1:50112 10.10.1.4:53
10.41.100.1:50112 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:38 Permit 10.41.100.1:50706 10.10.1.4:53
10.41.100.1:50706 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:38 Permit 10.41.100.1:49317 10.10.1.4:53
10.41.100.1:49317 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:38 Permit 10.41.100.1:49836 10.10.1.4:53
10.41.100.1:49836 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:38 Permit 10.41.100.1:65113 10.10.1.4:53
10.41.100.1:65113 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:38 Permit 10.41.100.1:50409 10.10.1.4:53
10.41.100.1:50409 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:38 Permit 10.41.100.1:64877 10.10.1.40:53
10.41.100.1:64877 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:38 Permit 10.41.0.131:52666 10.41.100.1:53
10.41.0.131:52666 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:38 Permit 10.41.0.131:33575 10.41.100.1:49154
10.41.0.131:33575 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:38 Permit 10.41.0.131:54013 10.41.100.1:135
10.41.0.131:54013 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:38 Permit 10.41.0.131:54012 10.41.100.1:135
10.41.0.131:54012 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:38 Permit 10.41.0.131:35379 8.8.8.8:53
1.9.140.18:44874 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.1.66:50755 104.103.70.8:80
1.9.140.18:31330 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:37 Permit 10.41.1.65:64163 74.125.68.154:443
1.9.140.18:8279 74.125.68.154:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:37 Permit 10.41.100.1:50251 10.10.1.40:53
10.41.100.1:50251 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.1.65:62050 10.41.100.1:53
10.41.1.65:62050 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.1.65:64162 172.217.166.131:80
1.9.140.18:10490 172.217.166.131:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:37 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.100.1:50815 10.10.1.24:53
10.41.100.1:50815 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.100.1:50102 10.10.1.24:53
10.41.100.1:50102 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.100.1:65484 10.10.1.24:53
10.41.100.1:65484 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.100.1:65275 10.10.1.24:53
10.41.100.1:65275 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.100.1:50529 10.10.1.24:53
10.41.100.1:50529 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.100.1:49940 10.10.1.24:53
10.41.100.1:49940 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.1.57:62135 10.41.100.7:60313
10.41.1.57:62135 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:17:37 Permit 10.41.100.1:50027 10.10.1.40:53
10.41.100.1:50027 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.1.65:62752 10.41.100.1:53
10.41.1.65:62752 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.100.1:50772 10.10.1.40:53
10.41.100.1:50772 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.100.1:65185 10.10.1.40:53
10.41.100.1:65185 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:37 Permit 10.41.5.80:61028 104.103.70.10:80
1.9.140.18:48408 104.103.70.10:80 4 sec 934 551
HTTP Close - TCP RST
2018-12-10 10:17:37 Permit 10.41.100.1:50756 10.10.1.40:53
10.41.100.1:50756 10.10.1.40:53 60 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:17:37 Permit 10.41.1.65:64154 72.34.250.78:443
1.9.140.18:15559 72.34.250.78:443 13 sec 2456 1599
HTTPS Close - TCP RST
2018-12-10 10:17:37 Permit 10.41.100.1:49255 10.10.1.40:53
10.41.100.1:49255 10.10.1.40:53 60 sec 86 0
DNS Close - AGE OUT
2018-12-10 10:17:37 Permit 10.41.100.1:49513 10.10.1.4:53
10.41.100.1:49513 10.10.1.4:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:17:37 Permit 10.41.100.1:49958 10.10.1.40:53
10.41.100.1:49958 10.10.1.40:53 60 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:17:37 Permit 10.41.1.65:64152 103.243.220.231:80
1.9.140.18:30422 103.243.220.231:80 13 sec 5958 1382
HTTP Close - TCP FIN
2018-12-10 10:17:37 Permit 10.41.100.1:49592 10.10.1.40:53
10.41.100.1:49592 10.10.1.40:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:17:37 Permit 10.41.100.1:50559 10.10.1.40:53
10.41.100.1:50559 10.10.1.40:53 60 sec 107 0
DNS Close - AGE OUT
2018-12-10 10:17:37 Permit 10.41.1.62:63622 216.58.196.42:443
1.9.140.18:8980 216.58.196.42:443 665 sec 7302 10432
HTTPS Close - TCP FIN
2018-12-10 10:17:37 Permit 10.41.1.66:50753 104.103.70.8:80
1.9.140.18:2392 104.103.70.8:80 2 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:17:37 Permit 10.41.5.80:61027 104.103.70.10:80
1.9.140.18:48008 104.103.70.10:80 4 sec 804 17541
HTTP Close - TCP RST
2018-12-10 10:17:37 Permit 10.41.1.50:53525 172.217.166.142:443
1.9.140.18:44042 172.217.166.142:443 244 sec 3227 6485
HTTPS Close - TCP FIN
2018-12-10 10:17:37 Permit 10.41.200.80:61066 106.10.198.33:443
1.9.140.18:59694 106.10.198.33:443 4 sec 730 74
HTTPS Close - TCP RST
2018-12-10 10:17:37 Permit 10.41.100.1:50351 10.10.1.40:53
10.41.100.1:50351 10.10.1.40:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:17:37 Permit 10.41.100.1:50637 10.10.1.24:53
10.41.100.1:50637 10.10.1.24:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:17:37 Permit 10.41.1.107:51954 104.103.70.10:80
1.9.140.18:36314 104.103.70.10:80 4 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:17:37 Permit 10.41.100.1:49572 10.10.1.40:53
10.41.100.1:49572 10.10.1.40:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:37 Permit 10.41.100.1:64891 10.10.1.24:53
10.41.100.1:64891 10.10.1.24:53 60 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:17:37 Permit 10.41.200.80:61063 106.10.198.33:443
1.9.140.18:38340 106.10.198.33:443 4 sec 1358 74
HTTPS Close - TCP RST
2018-12-10 10:17:37 Permit 10.41.1.55:52421 23.94.187.84:443
1.9.140.18:7575 23.94.187.84:443 4 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:17:37 Permit 10.41.2.74:61167 10.41.100.1:53
10.41.2.74:61167 10.41.100.1:53 15 sec 87 87
DNS Close - RESP
2018-12-10 10:17:37 Permit 10.41.0.131:39222 10.41.100.1:53
10.41.0.131:39222 10.41.100.1:53 15 sec 90 90
DNS Close - RESP
2018-12-10 10:17:37 Permit 10.41.0.131:33565 10.41.100.1:49154
10.41.0.131:33565 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:37 Permit 10.41.2.74:50164 10.41.100.1:53
10.41.2.74:50164 10.41.100.1:53 15 sec 91 91
DNS Close - RESP
2018-12-10 10:17:37 Permit 10.60.210.15:61930 10.41.100.1:88
10.60.210.15:61930 10.41.100.1:88 3 sec 1596 1606
TCP PORT 88 Close - TCP RST
2018-12-10 10:17:37 Permit 10.41.2.74:65472 10.41.100.1:53
10.41.2.74:65472 10.41.100.1:53 15 sec 88 88
DNS Close - RESP
2018-12-10 10:17:37 Permit 10.41.0.131:54003 10.41.100.1:135
10.41.0.131:54003 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:37 Permit 10.41.0.131:53999 10.41.100.1:135
10.41.0.131:53999 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:37 Permit 10.41.1.112:52611 10.41.100.1:53
10.41.1.112:52611 10.41.100.1:53 15 sec 96 96
DNS Close - RESP
2018-12-10 10:17:37 Permit 10.41.0.131:54002 10.41.100.1:135
10.41.0.131:54002 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:37 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 404 176
DNS Close - RESP
2018-12-10 10:17:37 Permit 10.41.0.131:54000 10.41.100.1:135
10.41.0.131:54000 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:37 Permit 10.41.200.74:58512 10.41.100.1:88
10.41.200.74:58512 10.41.100.1:88 3 sec 2202 2168
TCP PORT 88 Close - TCP RST
2018-12-10 10:17:37 Permit 10.41.0.131:33562 10.41.100.1:49154
10.41.0.131:33562 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:37 Permit 10.41.0.131:41910 10.41.100.1:53
10.41.0.131:41910 10.41.100.1:53 10 sec 90 90
DNS Close - RESP
2018-12-10 10:17:37 Permit 10.41.1.51:53258 10.41.100.7:60313
10.41.1.51:53258 10.41.100.7:60313 4 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:17:37 Permit 10.41.2.74:52788 10.41.100.1:53
10.41.2.74:52788 10.41.100.1:53 15 sec 78 78
DNS Close - RESP
2018-12-10 10:17:37 Permit 10.41.2.74:63999 10.41.100.1:53
10.41.2.74:63999 10.41.100.1:53 15 sec 84 84
DNS Close - RESP
2018-12-10 10:17:36 Permit 10.41.0.131:33572 10.41.100.1:49154
10.41.0.131:33572 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:36 Permit 10.41.0.131:54010 10.41.100.1:135
10.41.0.131:54010 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:36 Permit 10.41.0.131:54009 10.41.100.1:135
10.41.0.131:54009 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:36 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:36 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:36 Permit 10.41.100.1:49699 10.10.1.24:53
10.41.100.1:49699 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:36 Permit 10.41.100.1:49979 10.10.1.40:53
10.41.100.1:49979 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:36 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:36 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:36 Permit 10.41.200.63:53352 172.217.166.142:443
1.9.140.18:5122 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:36 Permit 10.41.200.80:61078 34.233.187.252:443
1.9.140.18:40088 34.233.187.252:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:35 Permit 10.41.1.65:64161 72.34.250.78:443
1.9.140.18:17494 72.34.250.78:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:35 Permit 10.41.200.80:61077 34.233.187.252:443
1.9.140.18:13670 34.233.187.252:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:35 Permit 10.41.100.1:49977 10.10.1.40:53
10.41.100.1:49977 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:35 Permit 10.41.1.66:55810 10.41.100.1:53
10.41.1.66:55810 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:35 Permit 10.41.1.107:51956 104.103.70.10:80
1.9.140.18:42194 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:35 Permit 10.41.100.1:49306 10.10.1.40:53
10.41.100.1:49306 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:35 Permit 10.41.200.80:64936 10.41.100.1:53
10.41.200.80:64936 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:35 Permit 10.41.1.66:50753 104.103.70.8:80
1.9.140.18:2392 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:35 Permit 10.41.1.65:64160 210.176.156.48:80
1.9.140.18:24223 210.176.156.48:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:35 Permit 10.41.1.65:64159 103.243.220.231:80
1.9.140.18:19130 103.243.220.231:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:35 Permit 10.41.1.65:64158 72.34.250.78:443
1.9.140.18:30988 72.34.250.78:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:35 Permit 10.41.1.65:64157 103.243.220.231:80
1.9.140.18:56717 103.243.220.231:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:35 Permit 10.41.0.131:33569 10.41.100.1:49154
10.41.0.131:33569 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:35 Permit 10.41.0.131:54007 10.41.100.1:135
10.41.0.131:54007 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:35 Permit 10.41.0.131:54006 10.41.100.1:135
10.41.0.131:54006 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:35 Deny 10.41.200.62:64992 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 32 HTTPS Traffic
Denied
2018-12-10 10:17:35 Permit 10.41.100.1:50308 10.10.1.4:53
10.41.100.1:50308 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:35 Permit 10.41.100.1:49235 10.10.1.4:53
10.41.100.1:49235 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:35 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:35 Permit 10.41.5.70:61745 172.217.166.133:443
1.9.140.18:48343 172.217.166.133:443 242 sec 6276 28522
HTTPS Close - TCP FIN
2018-12-10 10:17:35 Permit 10.41.100.1:50266 10.10.1.4:53
10.41.100.1:50266 10.10.1.4:53 60 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:17:35 Permit 10.41.100.1:49784 10.10.1.4:53
10.41.100.1:49784 10.10.1.4:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:17:35 Permit 10.41.100.1:65254 10.10.1.24:53
10.41.100.1:65254 10.10.1.24:53 71 sec 171 0
DNS Close - AGE OUT
2018-12-10 10:17:35 Permit 10.41.200.80:61064 106.10.198.33:443
1.9.140.18:42220 106.10.198.33:443 2 sec 730 74
HTTPS Close - TCP RST
2018-12-10 10:17:35 Permit 10.41.200.80:61065 106.10.198.33:443
1.9.140.18:56448 106.10.198.33:443 2 sec 1358 74
HTTPS Close - TCP RST
2018-12-10 10:17:35 Permit 10.41.5.77:63577 72.52.125.95:443
1.9.140.18:21360 72.52.125.95:443 64 sec 3191 8886
HTTPS Close - TCP FIN
2018-12-10 10:17:35 Permit 10.41.200.62:64982 23.51.36.199:80
1.9.140.18:58026 23.51.36.199:80 114 sec 896 573
HTTP Close - TCP FIN
2018-12-10 10:17:35 Permit 10.41.200.80:60982 119.161.10.200:443
1.9.140.18:22744 119.161.10.200:443 189 sec 5200 84608
HTTPS Close - TCP RST
2018-12-10 10:17:35 Permit 10.41.200.62:64984 104.103.42.96:80
1.9.140.18:49534 104.103.42.96:80 114 sec 1316 3606
HTTP Close - TCP FIN
2018-12-10 10:17:35 Permit 10.41.100.1:65231 10.10.1.24:53
10.41.100.1:65231 10.10.1.24:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:35 Permit 10.41.200.62:64983 104.103.42.96:80
1.9.140.18:57196 104.103.42.96:80 114 sec 892 2032
HTTP Close - TCP FIN
2018-12-10 10:17:35 Permit 10.41.200.62:64986 23.15.25.156:80
1.9.140.18:29673 23.15.25.156:80 114 sec 938 2034
HTTP Close - TCP FIN
2018-12-10 10:17:35 Permit 10.41.100.1:65282 10.10.1.4:53
10.41.100.1:65282 10.10.1.4:53 60 sec 85 0
DNS Close - AGE OUT
2018-12-10 10:17:35 Permit 10.41.100.1:50813 10.10.1.24:53
10.41.100.1:50813 10.10.1.24:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:17:35 Permit 10.41.5.80:61025 104.103.70.10:80
1.9.140.18:23760 104.103.70.10:80 4 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:17:35 Permit 10.41.100.1:50147 10.10.1.24:53
10.41.100.1:50147 10.10.1.24:53 60 sec 72 0
DNS Close - AGE OUT
2018-12-10 10:17:35 Permit 10.41.0.131:53995 10.41.100.1:135
10.41.0.131:53995 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:35 Permit 10.41.0.131:53996 10.41.100.1:135
10.41.0.131:53996 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:35 Permit 10.41.1.53:61541 10.41.100.1:53
10.41.1.53:61541 10.41.100.1:53 16 sec 93 93
DNS Close - RESP
2018-12-10 10:17:35 Permit 10.41.0.131:33558 10.41.100.1:49154
10.41.0.131:33558 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:35 Permit 10.41.2.74:49511 10.41.100.1:53
10.41.2.74:49511 10.41.100.1:53 14 sec 80 80
DNS Close - RESP
2018-12-10 10:17:35 Permit 10.41.200.74:60582 10.41.100.1:53
10.41.200.74:60582 10.41.100.1:53 16 sec 79 79
DNS Close - RESP
2018-12-10 10:17:35 Permit 10.41.3.74:57225 10.41.100.1:53
10.41.3.74:57225 10.41.100.1:53 12 sec 79 79
DNS Close - RESP
2018-12-10 10:17:35 Permit 10.41.5.81:57075 10.41.100.1:53
10.41.5.81:57075 10.41.100.1:53 9 sec 79 79
DNS Close - RESP
2018-12-10 10:17:35 Permit 10.41.1.107:58771 10.41.100.1:53
10.41.1.107:58771 10.41.100.1:53 16 sec 79 79
DNS Close - RESP
2018-12-10 10:17:35 Permit 10.41.2.74:62266 10.41.100.1:53
10.41.2.74:62266 10.41.100.1:53 14 sec 94 94
DNS Close - RESP
2018-12-10 10:17:35 Permit 10.41.1.57:62134 10.41.100.7:60313
10.41.1.57:62134 10.41.100.7:60313 3 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:17:34 Permit 10.41.200.80:61075 13.33.172.219:443
1.9.140.18:3652 13.33.172.219:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:34 Permit 10.41.100.1:64997 10.10.1.40:53
10.41.100.1:64997 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.200.80:50003 10.41.100.1:53
10.41.200.80:50003 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.200.80:61074 13.229.186.156:443
1.9.140.18:32404 13.229.186.156:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:34 Permit 10.41.100.1:50565 10.10.1.40:53
10.41.100.1:50565 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.200.80:54969 10.41.100.1:53
10.41.200.80:54969 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.200.80:61073 172.217.166.131:443
1.9.140.18:31486 172.217.166.131:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:34 Permit 10.41.200.74:58512 10.41.100.1:88
10.41.200.74:58512 10.41.100.1:88 0 sec 0 0
TCP PORT 88 Creation
2018-12-10 10:17:34 Permit 10.41.100.1:49455 10.10.1.40:53
10.41.100.1:49455 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.200.80:51847 10.41.100.1:53
10.41.200.80:51847 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.200.80:61071 184.29.97.53:443
1.9.140.18:17782 184.29.97.53:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:34 Permit 10.41.200.80:61072 50.116.239.135:443
1.9.140.18:47118 50.116.239.135:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:34 Permit 10.41.0.131:33565 10.41.100.1:49154
10.41.0.131:33565 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:34 Permit 10.41.0.131:54003 10.41.100.1:135
10.41.0.131:54003 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:34 Permit 10.41.0.131:54002 10.41.100.1:135
10.41.0.131:54002 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:34 Permit 10.41.100.1:64921 10.10.1.40:53
10.41.100.1:64921 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.100.1:65450 10.10.1.40:53
10.41.100.1:65450 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.200.80:61309 10.41.100.1:53
10.41.200.80:61309 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.200.80:52985 10.41.100.1:53
10.41.200.80:52985 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.100.1:50112 10.10.1.24:53
10.41.100.1:50112 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.100.1:50706 10.10.1.24:53
10.41.100.1:50706 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.100.1:49317 10.10.1.24:53
10.41.100.1:49317 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.100.1:49836 10.10.1.24:53
10.41.100.1:49836 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.100.1:65113 10.10.1.24:53
10.41.100.1:65113 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.100.1:50409 10.10.1.24:53
10.41.100.1:50409 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.100.1:50387 10.10.1.4:53
10.41.100.1:50387 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.100.1:49609 10.10.1.4:53
10.41.100.1:49609 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.100.1:65378 10.10.1.4:53
10.41.100.1:65378 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.100.1:49442 10.10.1.4:53
10.41.100.1:49442 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.200.80:61070 103.231.98.47:443
1.9.140.18:36088 103.231.98.47:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:34 Permit 10.60.210.15:61930 10.41.100.1:88
10.60.210.15:61930 10.41.100.1:88 0 sec 0 0
TCP PORT 88 Creation
2018-12-10 10:17:34 Permit 10.60.210.15:61929 10.41.100.1:445
10.60.210.15:61929 10.41.100.1:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:17:34 Permit 10.41.200.80:61069 103.231.98.47:443
1.9.140.18:4552 103.231.98.47:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:34 Permit 10.41.200.80:61067 106.10.193.33:443
1.9.140.18:36127 106.10.193.33:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:34 Permit 10.41.200.80:61068 103.231.98.47:443
1.9.140.18:22014 103.231.98.47:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:34 Permit 10.41.100.1:50815 10.10.1.40:53
10.41.100.1:50815 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:34 Permit 10.41.200.80:59497 10.41.100.1:53
10.41.200.80:59497 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:33 Permit 10.41.200.80:61066 106.10.198.33:443
1.9.140.18:59694 106.10.198.33:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:33 Permit 10.41.200.80:61065 106.10.198.33:443
1.9.140.18:56448 106.10.198.33:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:33 Permit 10.41.100.1:50102 10.10.1.40:53
10.41.100.1:50102 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:33 Permit 10.41.200.80:59345 10.41.100.1:53
10.41.200.80:59345 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:33 Permit 10.41.200.80:61064 106.10.198.33:443
1.9.140.18:42220 106.10.198.33:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:33 Permit 10.41.200.80:61063 106.10.198.33:443
1.9.140.18:38340 106.10.198.33:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:33 Permit 10.41.1.107:61068 10.41.100.1:53
10.41.1.107:61068 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:33 Permit 10.41.100.1:65484 10.10.1.40:53
10.41.100.1:65484 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:33 Permit 10.41.200.80:52784 10.41.100.1:53
10.41.200.80:52784 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:33 Permit 10.41.1.107:51954 104.103.70.10:80
1.9.140.18:36314 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:33 Permit 10.41.5.77:63579 74.82.60.42:443
1.9.140.18:30427 74.82.60.42:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:33 Permit 10.41.200.80:61062 106.10.231.44:443
1.9.140.18:13398 106.10.231.44:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:33 Permit 10.41.200.80:61061 106.10.231.44:443
1.9.140.18:5214 106.10.231.44:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:33 Permit 10.41.3.74:57136 52.230.84.0:443
1.9.140.18:41827 52.230.84.0:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:33 Permit 10.41.200.63:53351 172.217.166.142:443
1.9.140.18:6608 172.217.166.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:33 Permit 10.41.100.1:65275 10.10.1.40:53
10.41.100.1:65275 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:33 Permit 10.41.200.80:50716 10.41.100.1:53
10.41.200.80:50716 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:33 Permit 10.41.5.77:63578 74.82.60.42:443
1.9.140.18:57579 74.82.60.42:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:33 Permit 10.41.1.51:53258 10.41.100.7:60313
10.41.1.51:53258 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:17:33 Permit 10.41.100.1:50529 10.10.1.40:53
10.41.100.1:50529 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:33 Permit 10.41.200.63:62400 10.41.100.1:53
10.41.200.63:62400 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:33 Permit 10.41.1.55:52421 23.94.187.84:443
1.9.140.18:7575 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:33 Permit 10.41.100.1:49940 10.10.1.40:53
10.41.100.1:49940 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:33 Permit 10.41.5.77:59582 10.41.100.1:53
10.41.5.77:59582 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:33 Permit 10.41.5.80:61028 104.103.70.10:80
1.9.140.18:48408 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:33 Permit 10.41.100.1:49992 10.10.1.4:53
10.41.100.1:49992 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:33 Permit 10.41.5.80:51485 10.41.100.1:53
10.41.5.80:51485 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:33 Permit 10.41.5.80:61027 104.103.70.10:80
1.9.140.18:48008 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:33 Permit 10.41.0.131:33562 10.41.100.1:49154
10.41.0.131:33562 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:33 Permit 10.41.0.131:54000 10.41.100.1:135
10.41.0.131:54000 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:33 Permit 10.41.0.131:53999 10.41.100.1:135
10.41.0.131:53999 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:33 Permit 10.41.200.62:64985 104.103.70.26:80
1.9.140.18:58687 104.103.70.26:80 112 sec 888 837
HTTP Close - TCP FIN
2018-12-10 10:17:33 Permit 10.41.200.60:65196 210.187.22.204:80
1.9.140.18:47307 210.187.22.204:80 1 sec 1062 21450
HTTP Close - TCP RST
2018-12-10 10:17:33 Permit 10.41.100.1:64979 10.10.1.4:53
10.41.100.1:64979 10.10.1.4:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:17:33 Permit 10.41.100.1:49675 10.10.1.4:53
10.41.100.1:49675 10.10.1.4:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:33 Permit 10.41.0.131:60905 8.8.8.8:53
1.9.140.18:14205 8.8.8.8:53 1 sec 90 159
DNS Close - RESP
2018-12-10 10:17:33 Permit 10.41.100.1:49513 10.10.1.24:53
10.41.100.1:49513 10.10.1.24:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:17:33 Permit 10.41.100.1:64891 10.10.1.40:53
10.41.100.1:64891 10.10.1.40:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:17:33 Permit 10.41.100.1:50131 10.10.1.4:53
10.41.100.1:50131 10.10.1.4:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:17:33 Permit 10.41.1.107:51953 104.103.70.10:80
1.9.140.18:63644 104.103.70.10:80 4 sec 804 38192
HTTP Close - TCP RST
2018-12-10 10:17:33 Permit 10.41.100.1:50637 10.10.1.40:53
10.41.100.1:50637 10.10.1.40:53 60 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:17:33 Permit 10.41.0.131:53992 10.41.100.1:135
10.41.0.131:53992 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:33 Permit 10.41.1.107:50817 10.41.100.1:53
10.41.1.107:50817 10.41.100.1:53 16 sec 92 92
DNS Close - RESP
2018-12-10 10:17:33 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 2 sec 244 80
DNS Close - RESP
2018-12-10 10:17:33 Permit 10.41.200.80:61060 10.41.100.1:88
10.41.200.80:61060 10.41.100.1:88 4 sec 1590 1600
TCP PORT 88 Close - TCP RST
2018-12-10 10:17:33 Permit 10.41.0.131:33552 10.41.100.1:49154
10.41.0.131:33552 10.41.100.1:49154 4 sec 3808 4196
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:33 Permit 10.41.0.131:53990 10.41.100.1:135
10.41.0.131:53990 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:33 Permit 10.41.0.131:53993 10.41.100.1:135
10.41.0.131:53993 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:33 Permit 10.41.0.131:33555 10.41.100.1:49154
10.41.0.131:33555 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:33 Permit 10.41.0.131:53989 10.41.100.1:135
10.41.0.131:53989 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:32 Permit 10.41.100.1:49699 10.10.1.40:53
10.41.100.1:49699 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:32 Permit 10.41.0.131:41260 10.41.100.1:53
10.41.0.131:41260 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:32 Permit 10.41.0.131:60905 8.8.8.8:53
1.9.140.18:14205 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:32 Deny 10.41.200.62:64992 65.55.252.93:443 0.0.0.0:0
0.0.0.0:0 0 sec 0 32 HTTPS Traffic
Denied
2018-12-10 10:17:32 Permit 10.41.200.60:65196 210.187.22.204:80
1.9.140.18:47307 210.187.22.204:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:32 Permit 10.41.200.60:65195 172.217.31.78:80
1.9.140.18:25988 172.217.31.78:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:32 Permit 10.41.100.1:65320 10.10.1.4:53
10.41.100.1:65320 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:32 Permit 10.41.100.1:50540 10.10.1.4:53
10.41.100.1:50540 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:32 Permit 10.41.1.57:62134 10.41.100.7:60313
10.41.1.57:62134 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:17:31 Permit 10.41.0.131:33558 10.41.100.1:49154
10.41.0.131:33558 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:31 Permit 10.41.0.131:53996 10.41.100.1:135
10.41.0.131:53996 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:31 Permit 10.41.0.131:53995 10.41.100.1:135
10.41.0.131:53995 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:31 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:31 Permit 10.41.100.1:50308 10.10.1.24:53
10.41.100.1:50308 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:31 Permit 10.41.100.1:49235 10.10.1.24:53
10.41.100.1:49235 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:31 Permit 10.41.5.80:61025 104.103.70.10:80
1.9.140.18:23760 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:31 Permit 10.41.2.74:56297 216.58.196.34:443
1.9.140.18:28635 216.58.196.34:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:31 Permit 10.41.2.74:56296 172.217.31.70:443
1.9.140.18:12663 172.217.31.70:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:31 Permit 10.41.100.1:50813 10.10.1.40:53
10.41.100.1:50813 10.10.1.40:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:17:31 Permit 10.41.100.1:50266 10.10.1.24:53
10.41.100.1:50266 10.10.1.24:53 60 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:17:31 Permit 10.41.1.66:50752 104.103.70.8:80
1.9.140.18:45489 104.103.70.8:80 2 sec 804 35148
HTTP Close - TCP RST
2018-12-10 10:17:31 Permit 10.41.100.1:50147 10.10.1.40:53
10.41.100.1:50147 10.10.1.40:53 60 sec 72 0
DNS Close - AGE OUT
2018-12-10 10:17:31 Permit 10.41.100.1:65319 10.10.1.4:53
10.41.100.1:65319 10.10.1.4:53 60 sec 87 0
DNS Close - AGE OUT
2018-12-10 10:17:31 Permit 10.41.100.1:49784 10.10.1.24:53
10.41.100.1:49784 10.10.1.24:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:17:31 Permit 10.41.200.74:58448 1.9.8.41:80
1.9.140.18:7744 1.9.8.41:80 19 sec 70 0
HTTP Close - AGE OUT
2018-12-10 10:17:31 Permit 10.41.5.80:61024 104.103.70.10:80
1.9.140.18:20443 104.103.70.10:80 4 sec 804 17541
HTTP Close - TCP RST
2018-12-10 10:17:31 Permit 10.41.200.51:52681 172.217.166.131:443
1.9.140.18:22004 172.217.166.131:443 12 sec 2632 1423
HTTPS Close - TCP FIN
2018-12-10 10:17:31 Permit 10.41.200.60:65192 172.217.31.78:80
1.9.140.18:34206 172.217.31.78:80 6 sec 976 1208
HTTP Close - TCP RST
2018-12-10 10:17:31 Permit 10.41.100.1:65231 10.10.1.40:53
10.41.100.1:65231 10.10.1.40:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:31 Permit 10.41.1.66:50750 104.103.70.8:80
1.9.140.18:61772 104.103.70.8:80 4 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:17:31 Permit 10.41.1.107:51951 104.103.70.10:80
1.9.140.18:18844 104.103.70.10:80 4 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:17:31 Permit 10.41.100.1:65254 10.10.1.40:53
10.41.100.1:65254 10.10.1.40:53 71 sec 171 0
DNS Close - AGE OUT
2018-12-10 10:17:31 Permit 10.41.100.1:65282 10.10.1.24:53
10.41.100.1:65282 10.10.1.24:53 60 sec 85 0
DNS Close - AGE OUT
2018-12-10 10:17:31 Permit 10.41.1.55:52419 23.94.187.84:443
1.9.140.18:11273 23.94.187.84:443 4 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:17:31 Permit 10.41.200.58:58396 52.205.85.60:443
1.9.140.18:14625 52.205.85.60:443 67 sec 2624 1008
HTTPS Close - TCP RST
2018-12-10 10:17:31 Permit 10.41.0.131:49295 8.8.8.8:53
1.9.140.18:23264 8.8.8.8:53 4 sec 90 159
DNS Close - RESP
2018-12-10 10:17:31 Permit 10.41.200.2:49154 10.41.100.1:53
10.41.200.2:49154 10.41.100.1:53 13 sec 76 76
DNS Close - RESP
2018-12-10 10:17:31 Permit 10.41.1.51:53251 10.41.100.7:60313
10.41.1.51:53251 10.41.100.7:60313 3 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:17:31 Permit 10.41.0.131:33548 10.41.100.1:49154
10.41.0.131:33548 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:31 Permit 10.41.200.9:49154 10.41.100.1:53
10.41.200.9:49154 10.41.100.1:53 13 sec 76 76
DNS Close - RESP
2018-12-10 10:17:31 Permit 10.41.0.131:33545 10.41.100.1:49154
10.41.0.131:33545 10.41.100.1:49154 5 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:31 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 325 176
DNS Close - RESP
2018-12-10 10:17:31 Permit 10.41.0.131:53985 10.41.100.1:135
10.41.0.131:53985 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:31 Permit 10.41.0.131:53986 10.41.100.1:135
10.41.0.131:53986 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:31 Permit 10.41.1.57:62133 10.41.100.7:60313
10.41.1.57:62133 10.41.100.7:60313 4 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:17:30 Permit 10.41.100.1:50112 10.10.1.40:53
10.41.100.1:50112 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.2.74:49314 10.41.100.1:53
10.41.2.74:49314 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.2.74:63154 10.41.100.1:53
10.41.2.74:63154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.100.1:50706 10.10.1.40:53
10.41.100.1:50706 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.2.74:62025 10.41.100.1:53
10.41.2.74:62025 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.2.74:56295 172.217.166.130:443
1.9.140.18:47570 172.217.166.130:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:30 Permit 10.41.2.74:56294 172.217.166.130:443
1.9.140.18:7236 172.217.166.130:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:30 Permit 10.41.100.1:49317 10.10.1.40:53
10.41.100.1:49317 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.2.74:53770 10.41.100.1:53
10.41.2.74:53770 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.100.1:49836 10.10.1.40:53
10.41.100.1:49836 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.2.74:50608 10.41.100.1:53
10.41.2.74:50608 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.100.1:65113 10.10.1.40:53
10.41.100.1:65113 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.1.66:58415 10.41.100.1:53
10.41.1.66:58415 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.0.131:33555 10.41.100.1:49154
10.41.0.131:33555 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:30 Permit 10.41.0.131:53993 10.41.100.1:135
10.41.0.131:53993 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:30 Permit 10.41.0.131:53992 10.41.100.1:135
10.41.0.131:53992 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:30 Permit 10.41.100.1:50409 10.10.1.40:53
10.41.100.1:50409 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.200.60:52667 10.41.100.1:53
10.41.200.60:52667 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.100.1:50387 10.10.1.24:53
10.41.100.1:50387 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.100.1:49609 10.10.1.24:53
10.41.100.1:49609 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.100.1:65378 10.10.1.24:53
10.41.100.1:65378 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.100.1:49442 10.10.1.24:53
10.41.100.1:49442 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.100.1:65013 10.10.1.4:53
10.41.100.1:65013 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.100.1:49741 10.10.1.4:53
10.41.100.1:49741 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.100.1:49396 10.10.1.4:53
10.41.100.1:49396 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.100.1:65399 10.10.1.4:53
10.41.100.1:65399 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.100.1:49712 10.10.1.4:53
10.41.100.1:49712 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.100.1:50703 10.10.1.4:53
10.41.100.1:50703 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.41.100.1:65277 10.10.1.4:53
10.41.100.1:65277 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:30 Permit 10.62.1.54:123 10.41.100.1:123
10.62.1.54:123 10.41.100.1:123 0 sec 0 0
NETWORK TIME Creation
2018-12-10 10:17:29 Permit 10.41.1.107:51953 104.103.70.10:80
1.9.140.18:63644 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:29 Permit 10.41.200.80:61060 10.41.100.1:88
10.41.200.80:61060 10.41.100.1:88 0 sec 0 0
TCP PORT 88 Creation
2018-12-10 10:17:29 Permit 10.41.1.66:50752 104.103.70.8:80
1.9.140.18:45489 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:29 Permit 10.41.200.80:60264 10.41.100.1:389
10.41.200.80:60264 10.41.100.1:389 0 sec 0 0
UDP PORT 389 Creation
2018-12-10 10:17:29 Permit 10.41.200.80:61059 10.41.100.1:445
10.41.200.80:61059 10.41.100.1:445 0 sec 0 0
TCP PORT 445 Creation
2018-12-10 10:17:29 Permit 10.41.0.131:33552 10.41.100.1:49154
10.41.0.131:33552 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:29 Permit 10.41.0.131:53990 10.41.100.1:135
10.41.0.131:53990 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:29 Permit 10.41.0.131:53989 10.41.100.1:135
10.41.0.131:53989 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:29 Permit 10.41.100.1:49992 10.10.1.24:53
10.41.100.1:49992 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:29 Permit 10.41.100.1:50335 10.10.1.4:53
10.41.100.1:50335 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:29 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:29 Permit 10.41.100.1:49548 10.10.1.4:53
10.41.100.1:49548 10.10.1.4:53 60 sec 77 0
DNS Close - AGE OUT
2018-12-10 10:17:29 Permit 10.41.200.80:60966 172.217.31.97:443
1.9.140.18:58103 172.217.31.97:443 243 sec 4481 21511
HTTPS Close - TCP FIN
2018-12-10 10:17:29 Permit 10.41.5.80:61022 104.103.70.10:80
1.9.140.18:37876 104.103.70.10:80 5 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:17:29 Permit 10.41.200.80:60988 106.10.193.33:443
1.9.140.18:8223 106.10.193.33:443 181 sec 5026 9009
HTTPS Close - TCP FIN
2018-12-10 10:17:29 Permit 10.41.100.1:64979 10.10.1.24:53
10.41.100.1:64979 10.10.1.24:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:17:29 Permit 10.41.100.1:49340 10.10.1.4:53
10.41.100.1:49340 10.10.1.4:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:29 Permit 10.41.100.1:50131 10.10.1.24:53
10.41.100.1:50131 10.10.1.24:53 60 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:17:29 Permit 10.41.100.1:64999 10.10.1.4:53
10.41.100.1:64999 10.10.1.4:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:29 Permit 10.41.100.1:65048 10.10.1.4:53
10.41.100.1:65048 10.10.1.4:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:17:29 Permit 10.41.100.1:49513 10.10.1.40:53
10.41.100.1:49513 10.10.1.40:53 118 sec 181 0
DNS Close - AGE OUT
2018-12-10 10:17:29 Permit 10.41.100.1:49675 10.10.1.24:53
10.41.100.1:49675 10.10.1.24:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:29 Permit 10.41.5.82:61359 10.41.100.1:389
10.41.5.82:61359 10.41.100.1:389 61 sec 252 207
UDP PORT 389 Close - AGE OUT
2018-12-10 10:17:29 Permit 10.41.1.107:57419 10.41.100.1:53
10.41.1.107:57419 10.41.100.1:53 15 sec 92 92
DNS Close - RESP
2018-12-10 10:17:29 Permit 10.41.5.80:52429 10.41.100.1:53
10.41.5.80:52429 10.41.100.1:53 16 sec 91 91
DNS Close - RESP
2018-12-10 10:17:29 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 8 sec 489 81
DNS Close - RESP
2018-12-10 10:17:29 Permit 10.41.0.131:53979 10.41.100.1:135
10.41.0.131:53979 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:29 Permit 10.41.0.131:53978 10.41.100.1:135
10.41.0.131:53978 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:29 Permit 10.41.5.82:61360 10.41.100.1:389
10.41.5.82:61360 10.41.100.1:389 61 sec 251 207
UDP PORT 389 Close - AGE OUT
2018-12-10 10:17:29 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 3 sec 87 162
DNS Close - RESP
2018-12-10 10:17:29 Permit 10.41.200.55:61683 10.41.100.2:445
10.41.200.55:61683 10.41.100.2:445 4834 sec 512730 2348606
TCP PORT 445 Close - TCP RST
2018-12-10 10:17:29 Permit 10.41.200.74:59100 10.41.100.1:445
10.41.200.74:59100 10.41.100.1:445 17 sec 5017 2458
TCP PORT 445 Close - TCP RST
2018-12-10 10:17:29 Permit 10.41.0.131:53982 10.41.100.1:135
10.41.0.131:53982 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:29 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 3 sec 87 162
DNS Close - RESP
2018-12-10 10:17:29 Permit 10.41.0.131:53983 10.41.100.1:135
10.41.0.131:53983 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:29 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 3 sec 86 151
DNS Close - RESP
2018-12-10 10:17:29 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 3 sec 87 162
DNS Close - RESP
2018-12-10 10:17:29 Permit 10.41.1.66:50391 10.41.100.1:53
10.41.1.66:50391 10.41.100.1:53 14 sec 92 92
DNS Close - RESP
2018-12-10 10:17:29 Permit 10.41.0.131:33541 10.41.100.1:49154
10.41.0.131:33541 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:28 Permit 10.41.2.74:56293 54.214.40.57:443
1.9.140.18:20979 54.214.40.57:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:28 Permit 10.41.1.51:53251 10.41.100.7:60313
10.41.1.51:53251 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:17:28 Permit 10.41.2.74:56292 54.214.40.57:443
1.9.140.18:14733 54.214.40.57:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:28 Permit 10.41.100.1:65320 10.10.1.24:53
10.41.100.1:65320 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:28 Permit 10.41.100.1:50540 10.10.1.24:53
10.41.100.1:50540 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:28 Permit 10.41.100.1:65390 10.10.1.4:53
10.41.100.1:65390 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:28 Permit 10.41.100.1:49435 10.10.1.4:53
10.41.100.1:49435 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:28 Permit 10.41.100.1:50308 10.10.1.40:53
10.41.100.1:50308 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:28 Permit 10.41.2.74:62259 10.41.100.1:53
10.41.2.74:62259 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:28 Permit 10.41.0.131:33548 10.41.100.1:49154
10.41.0.131:33548 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:28 Permit 10.41.0.131:53986 10.41.100.1:135
10.41.0.131:53986 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:28 Permit 10.41.0.131:53985 10.41.100.1:135
10.41.0.131:53985 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:27 Permit 10.41.0.131:41910 10.41.100.1:53
10.41.0.131:41910 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:27 Permit 10.41.0.131:49295 8.8.8.8:53
1.9.140.18:23264 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:27 Permit 10.41.100.1:49235 10.10.1.40:53
10.41.100.1:49235 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:27 Permit 10.41.2.74:52667 10.41.100.1:53
10.41.2.74:52667 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:27 Permit 10.41.1.107:51951 104.103.70.10:80
1.9.140.18:18844 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:27 Permit 10.41.1.66:50750 104.103.70.8:80
1.9.140.18:61772 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:27 Permit 10.41.1.55:52419 23.94.187.84:443
1.9.140.18:11273 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:27 Permit 10.41.100.1:50121 10.10.1.4:53
10.41.100.1:50121 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:27 Permit 10.41.100.1:49905 10.10.1.4:53
10.41.100.1:49905 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:27 Permit 10.41.100.1:53 10.41.200.2:49154
10.41.100.1:53 10.41.200.2:49154 0 sec 0 0
UDP PORT 49154 Creation
2018-12-10 10:17:27 Permit 10.41.100.1:53 10.41.200.9:49154
10.41.100.1:53 10.41.200.9:49154 0 sec 0 0
UDP PORT 49154 Creation
2018-12-10 10:17:27 Permit 10.41.1.57:62133 10.41.100.7:60313
10.41.1.57:62133 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:17:27 Permit 10.41.100.1:50387 10.10.1.40:53
10.41.100.1:50387 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:27 Permit 10.41.100.1:49609 10.10.1.40:53
10.41.100.1:49609 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:27 Permit 10.41.5.80:61024 104.103.70.10:80
1.9.140.18:20443 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:27 Permit 10.41.2.74:56290 157.240.10.35:443
1.9.140.18:36722 157.240.10.35:443 1 sec 595 74
HTTPS Close - AGE OUT
2018-12-10 10:17:27 Permit 10.41.100.2:53187 23.45.232.164:53
1.9.140.18:52895 23.45.232.164:53 2 sec 86 106
DNS Close - RESP
2018-12-10 10:17:27 Permit 10.41.200.54:55219 172.217.166.142:443
1.9.140.18:28788 172.217.166.142:443 8 sec 2371 1364
HTTPS Close - TCP FIN
2018-12-10 10:17:27 Permit 10.41.200.60:65193 210.187.22.204:80
1.9.140.18:1458 210.187.22.204:80 2 sec 1062 18406
HTTP Close - TCP RST
2018-12-10 10:17:27 Permit 10.41.2.74:56289 157.240.10.35:443
1.9.140.18:31063 157.240.10.35:443 1 sec 595 74
HTTPS Close - AGE OUT
2018-12-10 10:17:27 Permit 10.41.2.74:56288 157.240.10.35:443
1.9.140.18:34116 157.240.10.35:443 1 sec 901 74
HTTPS Close - AGE OUT
2018-12-10 10:17:27 Permit 10.41.2.74:56287 157.240.10.35:443
1.9.140.18:35095 157.240.10.35:443 1 sec 901 74
HTTPS Close - AGE OUT
2018-12-10 10:17:27 Permit 10.41.2.74:56283 157.240.10.35:443
1.9.140.18:59355 157.240.10.35:443 1 sec 901 74
HTTPS Close - AGE OUT
2018-12-10 10:17:27 Permit 10.41.1.65:64145 52.21.218.245:80
1.9.140.18:41012 52.21.218.245:80 35 sec 2228 1868
HTTP Close - TCP FIN
2018-12-10 10:17:27 Permit 10.41.2.74:56285 157.240.10.35:443
1.9.140.18:26898 157.240.10.35:443 1 sec 595 74
HTTPS Close - AGE OUT
2018-12-10 10:17:27 Permit 10.41.2.74:56284 157.240.10.35:443
1.9.140.18:51113 157.240.10.35:443 1 sec 595 74
HTTPS Close - AGE OUT
2018-12-10 10:17:27 Permit 10.41.100.1:49675 10.10.1.40:53
10.41.100.1:49675 10.10.1.40:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:27 Permit 10.41.100.1:65282 10.10.1.40:53
10.41.100.1:65282 10.10.1.40:53 60 sec 85 0
DNS Close - AGE OUT
2018-12-10 10:17:27 Permit 10.41.1.65:63972 54.251.187.212:443
1.9.140.18:36664 54.251.187.212:443 116 sec 11105 11340
HTTPS Close - TCP RST
2018-12-10 10:17:27 Permit 10.41.100.1:50266 10.10.1.40:53
10.41.100.1:50266 10.10.1.40:53 60 sec 78 0
DNS Close - AGE OUT
2018-12-10 10:17:27 Permit 10.41.1.65:63767 172.217.26.138:80
1.9.140.18:57730 172.217.26.138:80 259 sec 5563 85570
HTTP Close - TCP RST
2018-12-10 10:17:27 Permit 10.41.1.65:64075 195.201.56.60:443
1.9.140.18:43093 195.201.56.60:443 84 sec 2388 1034
HTTPS Close - TCP RST
2018-12-10 10:17:27 Permit 10.41.1.65:64092 52.77.105.165:443
1.9.140.18:12113 52.77.105.165:443 83 sec 3069 4595
HTTPS Close - TCP RST
2018-12-10 10:17:27 Permit 10.41.200.80:61058 104.103.70.10:80
1.9.140.18:10885 104.103.70.10:80 4 sec 804 18783
HTTP Close - TCP RST
2018-12-10 10:17:27 Permit 10.41.200.54:55220 172.217.166.142:443
1.9.140.18:56071 172.217.166.142:443 8 sec 3711 1706
HTTPS Close - TCP FIN
2018-12-10 10:17:27 Permit 10.41.100.1:49784 10.10.1.40:53
10.41.100.1:49784 10.10.1.40:53 60 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:17:27 Permit 10.41.200.74:58493 1.9.8.41:443
1.9.140.18:12633 1.9.8.41:443 3 sec 1263 2270
HTTPS Close - TCP FIN
2018-12-10 10:17:27 Permit 10.41.2.74:56282 157.240.10.35:443
1.9.140.18:61345 157.240.10.35:443 1 sec 901 74
HTTPS Close - AGE OUT
2018-12-10 10:17:27 Permit 10.41.1.65:64151 210.176.156.48:80
1.9.140.18:49956 210.176.156.48:80 3 sec 5425 1562
HTTP Close - TCP FIN
2018-12-10 10:17:27 Permit 10.41.1.65:64081 54.164.24.12:443
1.9.140.18:5616 54.164.24.12:443 84 sec 2719 4788
HTTPS Close - TCP RST
2018-12-10 10:17:27 Permit 10.41.3.74:57126 52.230.84.0:443
1.9.140.18:46933 52.230.84.0:443 238 sec 3170 5141
HTTPS Close - TCP RST
2018-12-10 10:17:27 Permit 10.41.1.65:64074 13.228.68.6:443
1.9.140.18:7420 13.228.68.6:443 84 sec 6553 9121
HTTPS Close - TCP RST
2018-12-10 10:17:27 Permit 10.41.1.65:64031 18.136.68.96:443
1.9.140.18:27652 18.136.68.96:443 86 sec 2661 4821
HTTPS Close - TCP RST
2018-12-10 10:17:27 Permit 10.41.1.65:64029 202.58.9.200:443
1.9.140.18:61613 202.58.9.200:443 86 sec 3616 6800
HTTPS Close - TCP RST
2018-12-10 10:17:27 Permit 10.41.100.2:55954 104.103.70.183:53
1.9.140.18:15639 104.103.70.183:53 2 sec 86 106
DNS Close - RESP
2018-12-10 10:17:27 Permit 10.41.100.1:65319 10.10.1.24:53
10.41.100.1:65319 10.10.1.24:53 60 sec 87 0
DNS Close - AGE OUT
2018-12-10 10:17:27 Permit 10.41.200.74:62155 10.41.100.1:53
10.41.200.74:62155 10.41.100.1:53 15 sec 78 78
DNS Close - RESP
2018-12-10 10:17:27 Permit 10.41.0.131:45980 10.41.100.1:53
10.41.0.131:45980 10.41.100.1:53 10 sec 79 79
DNS Close - RESP
2018-12-10 10:17:27 Permit 10.41.1.51:53250 10.41.100.7:60313
10.41.1.51:53250 10.41.100.7:60313 4 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:17:27 Permit 10.41.1.50:55178 10.41.100.1:53
10.41.1.50:55178 10.41.100.1:53 10 sec 78 78
DNS Close - RESP
2018-12-10 10:17:27 Permit 10.41.1.65:55110 10.41.100.1:53
10.41.1.65:55110 10.41.100.1:53 15 sec 81 81
DNS Close - RESP
2018-12-10 10:17:27 Permit 10.41.0.131:53976 10.41.100.1:135
10.41.0.131:53976 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:27 Permit 10.41.0.131:53975 10.41.100.1:135
10.41.0.131:53975 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:27 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 404 257
DNS Close - RESP
2018-12-10 10:17:27 Permit 10.41.0.131:33538 10.41.100.1:49154
10.41.0.131:33538 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:27 Permit 10.41.0.131:33534 10.41.100.1:49154
10.41.0.131:33534 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:27 Permit 10.41.200.72:60757 10.41.100.1:53
10.41.200.72:60757 10.41.100.1:53 15 sec 88 88
DNS Close - RESP
2018-12-10 10:17:27 Permit 10.41.0.131:40607 10.41.100.1:53
10.41.0.131:40607 10.41.100.1:53 15 sec 79 79
DNS Close - RESP
2018-12-10 10:17:27 Permit 10.41.0.131:53971 10.41.100.1:135
10.41.0.131:53971 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:27 Permit 10.41.200.74:61518 10.41.100.1:53
10.41.200.74:61518 10.41.100.1:53 15 sec 78 78
DNS Close - RESP
2018-12-10 10:17:27 Permit 10.41.0.131:53972 10.41.100.1:135
10.41.0.131:53972 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:26 Permit 10.41.5.81:63170 172.217.26.133:443
1.9.140.18:23023 172.217.26.133:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:26 Permit 10.41.0.131:33545 10.41.100.1:49154
10.41.0.131:33545 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:26 Permit 10.41.0.131:53983 10.41.100.1:135
10.41.0.131:53983 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:26 Permit 10.41.0.131:53982 10.41.100.1:135
10.41.0.131:53982 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:26 Permit 10.41.5.81:57075 10.41.100.1:53
10.41.5.81:57075 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.2.74:56291 52.218.96.131:443
1.9.140.18:29930 52.218.96.131:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:26 Permit 10.41.2.74:56290 157.240.10.35:443
1.9.140.18:36722 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:26 Permit 10.41.2.74:56289 157.240.10.35:443
1.9.140.18:31063 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:26 Permit 10.41.2.74:56288 157.240.10.35:443
1.9.140.18:34116 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:26 Permit 10.41.2.74:56287 157.240.10.35:443
1.9.140.18:35095 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:26 Permit 10.41.2.74:56286 52.218.96.131:443
1.9.140.18:53644 52.218.96.131:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:26 Permit 10.41.100.1:65378 10.10.1.40:53
10.41.100.1:65378 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.2.74:60807 10.41.100.1:53
10.41.2.74:60807 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.2.74:56285 157.240.10.35:443
1.9.140.18:26898 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:26 Permit 10.41.2.74:56284 157.240.10.35:443
1.9.140.18:51113 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:26 Permit 10.41.2.74:56283 157.240.10.35:443
1.9.140.18:59355 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:26 Permit 10.41.2.74:56282 157.240.10.35:443
1.9.140.18:61345 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:26 Permit 10.41.2.74:56281 172.217.166.130:443
1.9.140.18:63049 172.217.166.130:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:26 Permit 10.41.100.1:49442 10.10.1.40:53
10.41.100.1:49442 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.2.74:53579 10.41.100.1:53
10.41.2.74:53579 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.100.1:65013 10.10.1.24:53
10.41.100.1:65013 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.100.1:49741 10.10.1.24:53
10.41.100.1:49741 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.100.1:49396 10.10.1.24:53
10.41.100.1:49396 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.100.1:65399 10.10.1.24:53
10.41.100.1:65399 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.100.1:49712 10.10.1.24:53
10.41.100.1:49712 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.100.1:50703 10.10.1.24:53
10.41.100.1:50703 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.100.1:65277 10.10.1.24:53
10.41.100.1:65277 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.100.1:49992 10.10.1.40:53
10.41.100.1:49992 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.200.74:58498 1.9.8.41:80
1.9.140.18:14173 1.9.8.41:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:26 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.200.3:49154 10.41.100.1:53
10.41.200.3:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.200.7:49154 10.41.100.1:53
10.41.200.7:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.200.10:49154 10.41.100.1:53
10.41.200.10:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:26 Permit 10.41.200.8:49154 10.41.100.1:53
10.41.200.8:49154 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:25 Permit 10.41.1.65:64156 103.243.221.17:80
1.9.140.18:45289 103.243.221.17:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:25 Permit 10.41.0.131:33541 10.41.100.1:49154
10.41.0.131:33541 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:25 Permit 10.41.0.131:53979 10.41.100.1:135
10.41.0.131:53979 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:25 Permit 10.41.0.131:53978 10.41.100.1:135
10.41.0.131:53978 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:25 Permit 10.41.200.60:65193 210.187.22.204:80
1.9.140.18:1458 210.187.22.204:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:25 Permit 10.41.200.60:65192 172.217.31.78:80
1.9.140.18:34206 172.217.31.78:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:25 Permit 10.41.100.1:50335 10.10.1.24:53
10.41.100.1:50335 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:25 Permit 10.41.100.1:49163 10.10.1.4:53
10.41.100.1:49163 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:25 Permit 10.41.100.2:53187 23.45.232.164:53
1.9.140.18:52895 23.45.232.164:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:25 Permit 10.41.100.2:55954 104.103.70.183:53
1.9.140.18:15639 104.103.70.183:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:25 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:25 Permit 10.41.100.1:65407 10.10.1.4:53
10.41.100.1:65407 10.10.1.4:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:17:25 Permit 10.41.100.1:53 10.41.200.3:49154
10.41.100.1:53 10.41.200.3:49154 59 sec 76 0
UDP PORT 49154 Close - AGE OUT
2018-12-10 10:17:25 Permit 10.41.1.65:64150 72.34.250.78:443
1.9.140.18:39669 72.34.250.78:443 30 sec 332 284
HTTPS Close - TCP RST
2018-12-10 10:17:25 Permit 10.41.1.107:51950 104.103.70.10:80
1.9.140.18:1078 104.103.70.10:80 2 sec 804 36670
HTTP Close - TCP RST
2018-12-10 10:17:25 Permit 10.41.1.66:50749 104.103.70.8:80
1.9.140.18:31067 104.103.70.8:80 2 sec 804 36670
HTTP Close - TCP RST
2018-12-10 10:17:25 Permit 10.41.200.60:65189 172.217.31.78:80
1.9.140.18:35480 172.217.31.78:80 7 sec 976 1208
HTTP Close - TCP RST
2018-12-10 10:17:25 Permit 10.41.1.65:64148 103.243.221.46:80
1.9.140.18:46112 103.243.221.46:80 30 sec 6238 1385
HTTP Close - TCP RST
2018-12-10 10:17:25 Permit 10.41.1.107:51923 23.15.25.156:80
1.9.140.18:55113 23.15.25.156:80 114 sec 868 1984
HTTP Close - TCP FIN
2018-12-10 10:17:25 Permit 10.41.100.1:49548 10.10.1.24:53
10.41.100.1:49548 10.10.1.24:53 60 sec 77 0
DNS Close - AGE OUT
2018-12-10 10:17:25 Permit 10.41.100.1:64999 10.10.1.24:53
10.41.100.1:64999 10.10.1.24:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:25 Permit 10.41.1.65:64116 172.217.31.99:80
1.9.140.18:6041 172.217.31.99:80 423 sec 6024 2578
HTTP Close - TCP FIN
2018-12-10 10:17:25 Permit 10.41.1.65:64032 52.6.229.221:443
1.9.140.18:25134 52.6.229.221:443 84 sec 2739 4352
HTTPS Close - TCP RST
2018-12-10 10:17:25 Permit 10.41.1.65:64086 52.74.46.218:443
1.9.140.18:2237 52.74.46.218:443 82 sec 2715 6450
HTTPS Close - TCP RST
2018-12-10 10:17:25 Permit 10.41.100.1:50039 10.10.1.4:53
10.41.100.1:50039 10.10.1.4:53 59 sec 95 0
DNS Close - AGE OUT
2018-12-10 10:17:25 Permit 10.41.1.65:64149 72.34.250.78:443
1.9.140.18:20356 72.34.250.78:443 30 sec 2641 1602
HTTPS Close - TCP RST
2018-12-10 10:17:25 Permit 10.41.200.80:61056 104.103.70.10:80
1.9.140.18:26924 104.103.70.10:80 4 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:17:25 Permit 10.41.1.55:52415 23.94.187.84:443
1.9.140.18:52338 23.94.187.84:443 4 sec 198 74
HTTPS Close - TCP RST
2018-12-10 10:17:25 Permit 10.41.100.1:64908 10.10.1.4:53
10.41.100.1:64908 10.10.1.4:53 60 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:17:25 Permit 10.41.100.1:65048 10.10.1.24:53
10.41.100.1:65048 10.10.1.24:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:17:25 Permit 10.41.100.1:53 10.41.200.7:49154
10.41.100.1:53 10.41.200.7:49154 59 sec 76 0
UDP PORT 49154 Close - AGE OUT
2018-12-10 10:17:25 Permit 10.41.1.65:63669 104.103.53.120:80
1.9.140.18:59786 104.103.53.120:80 320 sec 1817 1202
HTTP Close - TCP FIN
2018-12-10 10:17:25 Permit 10.41.100.1:50860 10.10.1.4:53
10.41.100.1:50860 10.10.1.4:53 73 sec 156 0
DNS Close - AGE OUT
2018-12-10 10:17:25 Permit 10.41.1.65:64146 52.21.218.245:80
1.9.140.18:59873 52.21.218.245:80 33 sec 262 210
HTTP Close - TCP FIN
2018-12-10 10:17:25 Permit 10.41.100.1:53 10.41.200.10:49154
10.41.100.1:53 10.41.200.10:49154 59 sec 76 0
UDP PORT 49154 Close - AGE OUT
2018-12-10 10:17:25 Permit 10.41.1.107:51924 104.103.70.26:80
1.9.140.18:34136 104.103.70.26:80 114 sec 888 837
HTTP Close - TCP FIN
2018-12-10 10:17:25 Permit 10.41.200.55:51332 172.217.166.138:443
1.9.140.18:49618 172.217.166.138:443 59 sec 321 210
HTTPS Close - TCP RST
2018-12-10 10:17:25 Permit 10.41.1.107:51948 104.103.70.10:80
1.9.140.18:16354 104.103.70.10:80 4 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:17:25 Permit 10.41.100.1:64979 10.10.1.40:53
10.41.100.1:64979 10.10.1.40:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:17:25 Permit 10.41.100.1:50131 10.10.1.40:53
10.41.100.1:50131 10.10.1.40:53 59 sec 79 0
DNS Close - AGE OUT
2018-12-10 10:17:25 Permit 10.41.1.107:51921 104.103.42.96:80
1.9.140.18:59490 104.103.42.96:80 114 sec 1364 3533
HTTP Close - TCP FIN
2018-12-10 10:17:25 Permit 10.41.100.1:49340 10.10.1.24:53
10.41.100.1:49340 10.10.1.24:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:25 Permit 10.41.1.65:64147 103.243.221.46:80
1.9.140.18:34428 103.243.221.46:80 30 sec 6302 6044
HTTP Close - TCP RST
2018-12-10 10:17:25 Permit 10.41.2.74:56267 157.240.10.35:443
1.9.140.18:43201 157.240.10.35:443 4 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:17:25 Permit 10.41.200.72:64103 10.41.100.11:2967
10.41.200.72:64103 10.41.100.11:2967 21 sec 136 0
TCP PORT 2967 Close - AGE OUT
2018-12-10 10:17:25 Permit 10.41.5.72:63312 10.41.100.1:49155
10.41.5.72:63312 10.41.100.1:49155 34 sec 3590 1730
TCP PORT 49155 Close - TCP FIN
2018-12-10 10:17:25 Permit 10.41.0.131:33531 10.41.100.1:49154
10.41.0.131:33531 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:25 Permit 10.41.200.74:59891 10.41.100.1:53
10.41.200.74:59891 10.41.100.1:53 16 sec 86 86
DNS Close - RESP
2018-12-10 10:17:25 Permit 10.41.1.57:62132 10.41.100.7:60313
10.41.1.57:62132 10.41.100.7:60313 3 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:17:25 Permit 10.41.0.131:53969 10.41.100.1:135
10.41.0.131:53969 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:25 Permit 10.41.0.131:53968 10.41.100.1:135
10.41.0.131:53968 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:25 Permit 10.41.200.59:56595 10.41.100.1:53
10.41.200.59:56595 10.41.100.1:53 16 sec 92 92
DNS Close - RESP
2018-12-10 10:17:24 Permit 10.41.5.80:61022 104.103.70.10:80
1.9.140.18:37876 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:24 Permit 10.41.1.65:64155 72.34.250.78:443
1.9.140.18:41102 72.34.250.78:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:24 Permit 10.41.1.65:64154 72.34.250.78:443
1.9.140.18:15559 72.34.250.78:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:24 Permit 10.41.1.65:64153 103.243.220.231:80
1.9.140.18:4555 103.243.220.231:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:24 Permit 10.41.1.65:64152 103.243.220.231:80
1.9.140.18:30422 103.243.220.231:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:24 Permit 10.41.5.70:51508 10.41.100.1:53
10.41.5.70:51508 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:24 Permit 10.41.100.1:65320 10.10.1.40:53
10.41.100.1:65320 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:24 Permit 10.41.1.65:64151 210.176.156.48:80
1.9.140.18:49956 210.176.156.48:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:24 Permit 10.41.1.65:50232 10.41.100.1:53
10.41.1.65:50232 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:24 Permit 10.41.100.1:50540 10.10.1.40:53
10.41.100.1:50540 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:24 Permit 10.41.1.65:63023 10.41.100.1:53
10.41.1.65:63023 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:24 Permit 10.41.3.72:50570 52.230.84.0:443
1.9.140.18:60206 52.230.84.0:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:24 Permit 10.41.0.131:33538 10.41.100.1:49154
10.41.0.131:33538 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:24 Permit 10.41.0.131:53976 10.41.100.1:135
10.41.0.131:53976 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:24 Permit 10.41.0.131:53975 10.41.100.1:135
10.41.0.131:53975 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:24 Permit 10.41.100.1:65390 10.10.1.24:53
10.41.100.1:65390 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:24 Permit 10.41.100.1:49435 10.10.1.24:53
10.41.100.1:49435 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:24 Permit 10.41.100.1:50642 10.10.1.4:53
10.41.100.1:50642 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:24 Permit 10.41.200.74:58493 1.9.8.41:443
1.9.140.18:12633 1.9.8.41:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:23 Permit 10.41.3.74:57135 172.217.26.133:443
1.9.140.18:29753 172.217.26.133:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:23 Permit 10.41.3.74:57225 10.41.100.1:53
10.41.3.74:57225 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:23 Permit 10.41.1.107:51950 104.103.70.10:80
1.9.140.18:1078 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:23 Permit 10.41.1.66:50749 104.103.70.8:80
1.9.140.18:31067 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:23 Permit 10.41.1.51:53250 10.41.100.7:60313
10.41.1.51:53250 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:17:23 Permit 10.41.200.80:61058 104.103.70.10:80
1.9.140.18:10885 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:23 Permit 10.41.100.1:50121 10.10.1.24:53
10.41.100.1:50121 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:23 Permit 10.41.100.1:49905 10.10.1.24:53
10.41.100.1:49905 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:23 Permit 10.41.100.1:50674 10.10.1.4:53
10.41.100.1:50674 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:23 Permit 10.41.0.131:33534 10.41.100.1:49154
10.41.0.131:33534 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:23 Permit 10.41.0.131:53972 10.41.100.1:135
10.41.0.131:53972 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:23 Permit 10.41.0.131:53971 10.41.100.1:135
10.41.0.131:53971 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:23 Permit 10.41.1.107:51922 104.103.42.96:80
1.9.140.18:45522 104.103.42.96:80 112 sec 774 1986
HTTP Close - TCP FIN
2018-12-10 10:17:23 Permit 10.41.1.66:50747 104.103.70.8:80
1.9.140.18:44348 104.103.70.8:80 2 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:17:23 Permit 10.41.2.74:56266 157.240.10.35:443
1.9.140.18:17642 157.240.10.35:443 2 sec 965 74
HTTPS Close - AGE OUT
2018-12-10 10:17:23 Permit 10.41.100.1:49246 10.10.1.4:53
10.41.100.1:49246 10.10.1.4:53 59 sec 72 0
DNS Close - AGE OUT
2018-12-10 10:17:23 Permit 10.41.2.74:56269 157.240.10.35:443
1.9.140.18:28521 157.240.10.35:443 2 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:17:23 Permit 10.41.2.74:56275 157.240.10.35:443
1.9.140.18:20206 157.240.10.35:443 1 sec 595 74
HTTPS Close - AGE OUT
2018-12-10 10:17:23 Permit 10.41.1.65:63855 74.125.24.156:443
1.9.140.18:1712 74.125.24.156:443 571 sec 29671 94219
HTTPS Close - TCP FIN
2018-12-10 10:17:23 Permit 10.41.200.74:58489 23.51.41.13:80
1.9.140.18:9019 23.51.41.13:80 2 sec 326 74
HTTP Close - TCP RST
2018-12-10 10:17:23 Permit 10.41.0.131:40079 8.8.8.8:53
1.9.140.18:8868 8.8.8.8:53 1 sec 79 148
DNS Close - RESP
2018-12-10 10:17:23 Permit 10.41.2.74:56272 157.240.10.35:443
1.9.140.18:59337 157.240.10.35:443 1 sec 901 74
HTTPS Close - AGE OUT
2018-12-10 10:17:23 Permit 10.41.5.80:61021 104.103.70.10:80
1.9.140.18:43537 104.103.70.10:80 3 sec 804 17541
HTTP Close - TCP RST
2018-12-10 10:17:23 Permit 10.41.2.74:56268 157.240.10.35:443
1.9.140.18:38158 157.240.10.35:443 2 sec 659 74
HTTPS Close - AGE OUT
2018-12-10 10:17:23 Permit 10.41.2.74:55977 13.108.235.135:443
1.9.140.18:42924 13.108.235.135:443 310 sec 4077 49688
HTTPS Close - TCP RST
2018-12-10 10:17:23 Permit 10.41.100.1:65526 10.10.1.4:53
10.41.100.1:65526 10.10.1.4:53 59 sec 73 0
DNS Close - AGE OUT
2018-12-10 10:17:23 Permit 10.41.2.74:56274 157.240.10.35:443
1.9.140.18:24645 157.240.10.35:443 1 sec 595 74
HTTPS Close - AGE OUT
2018-12-10 10:17:23 Permit 10.41.100.1:65051 10.10.1.4:53
10.41.100.1:65051 10.10.1.4:53 59 sec 91 0
DNS Close - AGE OUT
2018-12-10 10:17:23 Permit 10.41.2.74:56273 157.240.10.35:443
1.9.140.18:2305 157.240.10.35:443 1 sec 901 74
HTTPS Close - AGE OUT
2018-12-10 10:17:23 Permit 10.41.100.1:49662 10.10.1.4:53
10.41.100.1:49662 10.10.1.4:53 60 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:17:23 Permit 10.41.100.1:65319 10.10.1.40:53
10.41.100.1:65319 10.10.1.40:53 60 sec 87 0
DNS Close - AGE OUT
2018-12-10 10:17:23 Permit 10.41.200.74:54950 10.41.100.1:53
10.41.200.74:54950 10.41.100.1:53 16 sec 96 96
DNS Close - RESP
2018-12-10 10:17:23 Permit 10.41.200.74:58482 10.41.100.1:88
10.41.200.74:58482 10.41.100.1:88 4 sec 611 2067
TCP PORT 88 Close - TCP RST
2018-12-10 10:17:23 Permit 10.41.200.74:58483 10.41.100.1:88
10.41.200.74:58483 10.41.100.1:88 4 sec 2061 2082
TCP PORT 88 Close - TCP RST
2018-12-10 10:17:23 Permit 10.41.200.74:58479 10.41.100.1:88
10.41.200.74:58479 10.41.100.1:88 4 sec 467 424
TCP PORT 88 Close - TCP RST
2018-12-10 10:17:23 Permit 10.41.200.74:56328 10.41.100.1:53
10.41.200.74:56328 10.41.100.1:53 16 sec 79 79
DNS Close - RESP
2018-12-10 10:17:23 Permit 10.41.200.74:64062 10.41.100.1:53
10.41.200.74:64062 10.41.100.1:53 16 sec 86 86
DNS Close - RESP
2018-12-10 10:17:23 Permit 10.41.200.74:57661 10.41.100.1:53
10.41.200.74:57661 10.41.100.1:53 16 sec 95 95
DNS Close - RESP
2018-12-10 10:17:23 Permit 10.41.0.131:33524 10.41.100.1:49154
10.41.0.131:33524 10.41.100.1:49154 4 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:23 Permit 10.41.200.74:58484 10.41.100.1:88
10.41.200.74:58484 10.41.100.1:88 4 sec 479 436
TCP PORT 88 Close - TCP RST
2018-12-10 10:17:23 Permit 10.41.200.74:57045 10.41.100.1:53
10.41.200.74:57045 10.41.100.1:53 15 sec 166 83
DNS Close - RESP
2018-12-10 10:17:23 Permit 10.41.200.59:64584 10.41.100.1:53
10.41.200.59:64584 10.41.100.1:53 14 sec 83 83
DNS Close - RESP
2018-12-10 10:17:23 Permit 10.41.0.131:53961 10.41.100.1:135
10.41.0.131:53961 10.41.100.1:135 4 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:23 Permit 10.41.200.74:55725 10.41.100.1:53
10.41.200.74:55725 10.41.100.1:53 16 sec 81 81
DNS Close - RESP
2018-12-10 10:17:23 Permit 10.41.200.74:58485 10.41.100.1:88
10.41.200.74:58485 10.41.100.1:88 4 sec 623 2067
TCP PORT 88 Close - TCP RST
2018-12-10 10:17:23 Permit 10.41.0.131:33528 10.41.100.1:49154
10.41.0.131:33528 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:23 Permit 10.41.0.131:53962 10.41.100.1:135
10.41.0.131:53962 10.41.100.1:135 4 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:23 Permit 10.41.200.74:54608 10.41.100.1:53
10.41.200.74:54608 10.41.100.1:53 15 sec 83 83
DNS Close - RESP
2018-12-10 10:17:23 Permit 10.41.0.131:53966 10.41.100.1:135
10.41.0.131:53966 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:23 Permit 10.41.0.131:53965 10.41.100.1:135
10.41.0.131:53965 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:23 Permit 10.41.200.74:52792 10.41.100.1:53
10.41.200.74:52792 10.41.100.1:53 16 sec 80 80
DNS Close - RESP
2018-12-10 10:17:22 Permit 10.41.100.1:65013 10.10.1.40:53
10.41.100.1:65013 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:22 Permit 10.41.0.131:39222 10.41.100.1:53
10.41.0.131:39222 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:22 Permit 10.41.0.131:40079 8.8.8.8:53
1.9.140.18:8868 8.8.8.8:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:22 Permit 10.41.1.112:55263 104.103.70.16:80
1.9.140.18:25580 104.103.70.16:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:22 Permit 10.41.100.1:49741 10.10.1.40:53
10.41.100.1:49741 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:22 Permit 10.41.1.112:52611 10.41.100.1:53
10.41.1.112:52611 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:22 Permit 10.41.1.112:55262 104.103.42.96:80
1.9.140.18:57676 104.103.42.96:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:22 Permit 10.41.1.112:55261 104.103.42.96:80
1.9.140.18:1858 104.103.42.96:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:22 Permit 10.41.1.112:55260 104.103.42.96:80
1.9.140.18:47157 104.103.42.96:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:22 Permit 10.41.2.74:56280 172.217.166.130:443
1.9.140.18:55929 172.217.166.130:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:22 Permit 10.41.100.1:49396 10.10.1.40:53
10.41.100.1:49396 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:22 Permit 10.41.2.74:63999 10.41.100.1:53
10.41.2.74:63999 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:22 Permit 10.41.1.55:52417 172.217.26.133:443
1.9.140.18:18374 172.217.26.133:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:22 Permit 10.41.2.74:56279 172.217.31.68:443
1.9.140.18:10684 172.217.31.68:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:22 Permit 10.41.100.1:65399 10.10.1.40:53
10.41.100.1:65399 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:22 Permit 10.41.2.74:52788 10.41.100.1:53
10.41.2.74:52788 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:22 Permit 10.41.2.74:56278 172.217.26.134:443
1.9.140.18:41632 172.217.26.134:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:22 Permit 10.41.2.74:56277 74.125.24.155:443
1.9.140.18:50861 74.125.24.155:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:22 Permit 10.41.2.74:56276 172.217.26.142:443
1.9.140.18:4673 172.217.26.142:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:22 Permit 10.41.2.74:56275 157.240.10.35:443
1.9.140.18:20206 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:22 Permit 10.41.2.74:56274 157.240.10.35:443
1.9.140.18:24645 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:22 Permit 10.41.2.74:56273 157.240.10.35:443
1.9.140.18:2305 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:22 Permit 10.41.100.1:49712 10.10.1.40:53
10.41.100.1:49712 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:22 Permit 10.41.2.74:50164 10.41.100.1:53
10.41.2.74:50164 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:22 Permit 10.41.2.74:56272 157.240.10.35:443
1.9.140.18:59337 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:22 Permit 10.41.100.1:50703 10.10.1.40:53
10.41.100.1:50703 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:22 Permit 10.41.2.74:61167 10.41.100.1:53
10.41.2.74:61167 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:22 Permit 10.41.100.1:65277 10.10.1.40:53
10.41.100.1:65277 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:22 Permit 10.41.2.74:65472 10.41.100.1:53
10.41.2.74:65472 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:22 Permit 10.41.100.1:50184 10.10.1.4:53
10.41.100.1:50184 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:22 Permit 10.41.1.57:62132 10.41.100.7:60313
10.41.1.57:62132 10.41.100.7:60313 0 sec 0 0
TCP PORT 60313 Creation
2018-12-10 10:17:21 Permit 10.41.0.131:33531 10.41.100.1:49154
10.41.0.131:33531 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:21 Permit 10.41.0.131:53969 10.41.100.1:135
10.41.0.131:53969 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:21 Permit 10.41.0.131:53968 10.41.100.1:135
10.41.0.131:53968 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:21 Permit 10.41.200.74:58489 23.51.41.13:80
1.9.140.18:9019 23.51.41.13:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:21 Permit 10.41.1.107:51948 104.103.70.10:80
1.9.140.18:16354 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:21 Permit 10.41.1.55:52415 23.94.187.84:443
1.9.140.18:52338 23.94.187.84:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:21 Permit 10.41.1.66:50747 104.103.70.8:80
1.9.140.18:44348 104.103.70.8:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:21 Permit 10.41.2.74:56271 52.51.230.32:443
1.9.140.18:62067 52.51.230.32:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:21 Permit 10.41.100.1:50335 10.10.1.40:53
10.41.100.1:50335 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:21 Permit 10.41.0.19:50733 10.41.100.1:53
10.41.0.19:50733 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:21 Permit 10.41.2.74:56270 52.51.230.32:443
1.9.140.18:3917 52.51.230.32:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:21 Permit 10.41.200.80:61056 104.103.70.10:80
1.9.140.18:26924 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:21 Permit 10.41.100.1:49163 10.10.1.24:53
10.41.100.1:49163 10.10.1.24:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:21 Permit 10.41.100.1:65478 10.10.1.4:53
10.41.100.1:65478 10.10.1.4:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:21 Permit 10.41.2.74:56269 157.240.10.35:443
1.9.140.18:28521 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:21 Permit 10.41.2.74:56268 157.240.10.35:443
1.9.140.18:38158 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:21 Permit 10.41.2.74:56267 157.240.10.35:443
1.9.140.18:43201 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:21 Permit 10.41.2.74:56266 157.240.10.35:443
1.9.140.18:17642 157.240.10.35:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:21 Permit 10.41.100.1:65390 10.10.1.40:53
10.41.100.1:65390 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:21 Permit 10.41.2.74:62266 10.41.100.1:53
10.41.2.74:62266 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:21 Permit 10.41.100.1:49435 10.10.1.40:53
10.41.100.1:49435 10.10.1.40:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:21 Permit 10.41.2.74:49511 10.41.100.1:53
10.41.2.74:49511 10.41.100.1:53 0 sec 0 0
DNS Creation
2018-12-10 10:17:21 Permit 10.41.100.1:50039 10.10.1.24:53
10.41.100.1:50039 10.10.1.24:53 59 sec 95 0
DNS Close - AGE OUT
2018-12-10 10:17:21 Permit 10.41.1.50:53439 112.215.126.241:443
1.9.140.18:45920 112.215.126.241:443 1029 sec 21265 14883
HTTPS Close - TCP FIN
2018-12-10 10:17:21 Permit 10.41.100.1:65048 10.10.1.40:53
10.41.100.1:65048 10.10.1.40:53 60 sec 84 0
DNS Close - AGE OUT
2018-12-10 10:17:21 Permit 10.41.100.1:49548 10.10.1.40:53
10.41.100.1:49548 10.10.1.40:53 59 sec 77 0
DNS Close - AGE OUT
2018-12-10 10:17:21 Permit 10.41.200.51:52680 172.217.166.131:443
1.9.140.18:51626 172.217.166.131:443 5 sec 2631 1355
HTTPS Close - TCP FIN
2018-12-10 10:17:21 Permit 10.41.100.1:50860 10.10.1.24:53
10.41.100.1:50860 10.10.1.24:53 73 sec 156 0
DNS Close - AGE OUT
2018-12-10 10:17:21 Permit 10.41.5.80:61019 104.103.70.10:80
1.9.140.18:39194 104.103.70.10:80 6 sec 934 551
HTTP Close - TCP RST
2018-12-10 10:17:21 Permit 10.41.2.74:55968 172.217.166.142:443
1.9.140.18:12772 172.217.166.142:443 309 sec 19757 16112
HTTPS Close - TCP FIN
2018-12-10 10:17:21 Permit 10.41.100.1:64999 10.10.1.40:53
10.41.100.1:64999 10.10.1.40:53 59 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:21 Permit 10.41.1.65:63766 172.217.26.138:443
1.9.140.18:5715 172.217.26.138:443 253 sec 3193 1732
HTTPS Close - TCP FIN
2018-12-10 10:17:21 Permit 10.41.2.74:56043 172.217.31.70:443
1.9.140.18:4026 172.217.31.70:443 301 sec 44648 1155060
HTTPS Close - TCP FIN
2018-12-10 10:17:21 Permit 10.41.2.74:55986 172.217.166.134:443
1.9.140.18:29604 172.217.166.134:443 308 sec 23619 44551
HTTPS Close - TCP FIN
2018-12-10 10:17:21 Permit 10.41.1.66:50746 104.103.70.8:80
1.9.140.18:63321 104.103.70.8:80 4 sec 804 38192
HTTP Close - TCP RST
2018-12-10 10:17:21 Permit 10.41.2.74:56034 172.217.31.98:443
1.9.140.18:6641 172.217.31.98:443 302 sec 18937 16081
HTTPS Close - TCP FIN
2018-12-10 10:17:21 Permit 10.41.2.74:55991 172.217.31.98:443
1.9.140.18:41551 172.217.31.98:443 307 sec 17305 53827
HTTPS Close - TCP FIN
2018-12-10 10:17:21 Permit 10.41.100.1:50903 10.10.1.4:53
10.41.100.1:50903 10.10.1.4:53 59 sec 76 0
DNS Close - AGE OUT
2018-12-10 10:17:21 Permit 10.41.2.74:55934 216.58.199.196:443
1.9.140.18:18556 216.58.199.196:443 328 sec 23594 224402
HTTPS Close - TCP FIN
2018-12-10 10:17:21 Permit 10.41.200.51:52679 172.217.166.142:443
1.9.140.18:40432 172.217.166.142:443 12 sec 4153 2034
HTTPS Close - TCP FIN
2018-12-10 10:17:21 Permit 10.41.100.1:49919 10.10.1.4:53
10.41.100.1:49919 10.10.1.4:53 59 sec 81 0
DNS Close - AGE OUT
2018-12-10 10:17:21 Permit 10.41.100.1:50597 10.10.1.4:53
10.41.100.1:50597 10.10.1.4:53 59 sec 95 0
DNS Close - AGE OUT
2018-12-10 10:17:21 Permit 10.41.100.1:49340 10.10.1.40:53
10.41.100.1:49340 10.10.1.40:53 60 sec 80 0
DNS Close - AGE OUT
2018-12-10 10:17:21 Permit 10.41.100.1:65407 10.10.1.24:53
10.41.100.1:65407 10.10.1.24:53 59 sec 92 0
DNS Close - AGE OUT
2018-12-10 10:17:21 Permit 10.41.0.131:39205 8.8.8.8:53
1.9.140.18:17077 8.8.8.8:53 4 sec 79 148
DNS Close - RESP
2018-12-10 10:17:21 Permit 10.41.100.1:50240 10.10.1.4:53
10.41.100.1:50240 10.10.1.4:53 59 sec 83 0
DNS Close - AGE OUT
2018-12-10 10:17:21 Permit 10.41.100.1:64908 10.10.1.24:53
10.41.100.1:64908 10.10.1.24:53 60 sec 93 0
DNS Close - AGE OUT
2018-12-10 10:17:21 Permit 10.41.200.2:49154 10.41.100.1:53
10.41.200.2:49154 10.41.100.1:53 5 sec 76 76
DNS Close - RESP
2018-12-10 10:17:21 Permit 10.41.200.2:49154 10.41.100.1:53
10.41.200.2:49154 10.41.100.1:53 3 sec 86 151
DNS Close - RESP
2018-12-10 10:17:21 Permit 10.41.200.59:62941 10.41.100.1:53
10.41.200.59:62941 10.41.100.1:53 14 sec 83 83
DNS Close - RESP
2018-12-10 10:17:21 Permit 10.41.200.74:59300 10.41.100.1:53
10.41.200.74:59300 10.41.100.1:53 14 sec 80 80
DNS Close - RESP
2018-12-10 10:17:21 Permit 10.41.200.59:54880 10.41.100.1:53
10.41.200.59:54880 10.41.100.1:53 7 sec 93 93
DNS Close - RESP
2018-12-10 10:17:21 Permit 10.41.200.72:56563 10.41.100.1:53
10.41.200.72:56563 10.41.100.1:53 16 sec 93 93
DNS Close - RESP
2018-12-10 10:17:21 Permit 10.41.0.131:33521 10.41.100.1:49154
10.41.0.131:33521 10.41.100.1:49154 3 sec 3512 4184
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:21 Permit 10.41.1.58:64114 10.41.100.1:49155
10.41.1.58:64114 10.41.100.1:49155 35 sec 3446 1634
TCP PORT 49155 Close - TCP FIN
2018-12-10 10:17:21 Permit 10.41.0.131:33517 10.41.100.1:49154
10.41.0.131:33517 10.41.100.1:49154 5 sec 3808 4196
TCP PORT 49154 Close - TCP FIN
2018-12-10 10:17:21 Permit 10.41.200.9:49154 10.41.100.1:53
10.41.200.9:49154 10.41.100.1:53 5 sec 76 76
DNS Close - RESP
2018-12-10 10:17:21 Permit 10.41.200.9:49154 10.41.100.1:53
10.41.200.9:49154 10.41.100.1:53 3 sec 87 162
DNS Close - RESP
2018-12-10 10:17:21 Permit 10.41.0.19:58888 10.41.100.2:53
10.41.0.19:58888 10.41.100.2:53 2 sec 245 176
DNS Close - RESP
2018-12-10 10:17:21 Permit 10.41.200.59:49576 10.41.100.1:53
10.41.200.59:49576 10.41.100.1:53 14 sec 83 83
DNS Close - RESP
2018-12-10 10:17:21 Permit 10.41.1.51:53243 10.41.100.7:60313
10.41.1.51:53243 10.41.100.7:60313 3 sec 1351 1663
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:17:21 Permit 10.41.1.57:62131 10.41.100.7:60313
10.41.1.57:62131 10.41.100.7:60313 4 sec 1363 1667
TCP PORT 60313 Close - TCP FIN
2018-12-10 10:17:21 Permit 10.41.0.131:53958 10.41.100.1:135
10.41.0.131:53958 10.41.100.1:135 3 sec 594 446
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:21 Permit 10.41.200.59:51880 10.41.100.1:53
10.41.200.59:51880 10.41.100.1:53 15 sec 95 95
DNS Close - RESP
2018-12-10 10:17:21 Permit 10.41.0.131:53959 10.41.100.1:135
10.41.0.131:53959 10.41.100.1:135 3 sec 1186 1536
MSRPC ENDPOINT MAPPER(TCP) Close - TCP FIN
2018-12-10 10:17:20 Permit 10.41.5.80:61021 104.103.70.10:80
1.9.140.18:43537 104.103.70.10:80 0 sec 0 0
HTTP Creation
2018-12-10 10:17:20 Permit 10.41.0.131:33528 10.41.100.1:49154
10.41.0.131:33528 10.41.100.1:49154 0 sec 0 0
TCP PORT 49154 Creation
2018-12-10 10:17:20 Permit 10.41.0.131:53966 10.41.100.1:135
10.41.0.131:53966 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:20 Permit 10.41.0.131:53965 10.41.100.1:135
10.41.0.131:53965 10.41.100.1:135 0 sec 0 0
MSRPC ENDPOINT MAPPER(TCP) Creation
2018-12-10 10:17:20 Permit 10.41.1.50:53554 172.217.31.68:443
1.9.140.18:16687 172.217.31.68:443 0 sec 0 0
HTTPS Creation
2018-12-10 10:17:20 Permit 10.41.100.1:50642 10.10.1.24:53
10.41.100.1:50642 10.10.1.24:53 0 sec 0 0
DNS Creation
===================================================================================
======================================
End of Traffic Log
===================================================================================
======================================
You might also like
- Online Account Opening Instructions For SBINo ratings yetOnline Account Opening Instructions For SBI9 pages
- 3.3.11 Lab - Using Windows PowerShell - TRINIDADNo ratings yet3.3.11 Lab - Using Windows PowerShell - TRINIDAD18 pages
- System and Network Administration (SNA) - Assignment: December 2017No ratings yetSystem and Network Administration (SNA) - Assignment: December 201799 pages
- How Computing Is Changing Who We Are & Other Ict Related IssuesNo ratings yetHow Computing Is Changing Who We Are & Other Ict Related Issues23 pages
- Utouch Joomla! Theme: Posted by GanjaparkerNo ratings yetUtouch Joomla! Theme: Posted by Ganjaparker16 pages
- CIS VMware ESXi 6.5 Benchmark v1.0.0 PDFNo ratings yetCIS VMware ESXi 6.5 Benchmark v1.0.0 PDF195 pages
- Rajkiya Engineering College Kannauj: Practical FileNo ratings yetRajkiya Engineering College Kannauj: Practical File17 pages
- ICON+ HUAWEI S5700 Basic Configuration Template With Best Practice Regi...No ratings yetICON+ HUAWEI S5700 Basic Configuration Template With Best Practice Regi...6 pages
- Digital Marketing Survey For Startups - Google FormsNo ratings yetDigital Marketing Survey For Startups - Google Forms4 pages
- Deparment of Environment (DOE) Has Improved The Calculation of Air Pollutant Index (API) by Using PM2.5 Starting Early Mid Year 2018No ratings yetDeparment of Environment (DOE) Has Improved The Calculation of Air Pollutant Index (API) by Using PM2.5 Starting Early Mid Year 20183 pages
- Modes of Correspondence, Email Vs LetterNo ratings yetModes of Correspondence, Email Vs Letter2 pages
- Vulnerability Penetration Report Summary Salesforce Services - 2024 12 26No ratings yetVulnerability Penetration Report Summary Salesforce Services - 2024 12 264 pages
- OSPF Part of The CCIE EI Workbook Orhan Ergun100% (1)OSPF Part of The CCIE EI Workbook Orhan Ergun123 pages
- Host Name Nic-ppoiso1a-Ar Nic-ppoiso1b-Ar Ar Ar WRNo ratings yetHost Name Nic-ppoiso1a-Ar Nic-ppoiso1b-Ar Ar Ar WR6 pages
- WebRTC: APIs and RTCWEB Protocols of the HTML5 Real-Time Web, Third EditionFrom EverandWebRTC: APIs and RTCWEB Protocols of the HTML5 Real-Time Web, Third Edition5/5 (1)
- Deploying and Managing a Cloud Infrastructure: Real-World Skills for the CompTIA Cloud+ Certification and Beyond: Exam CV0-001From EverandDeploying and Managing a Cloud Infrastructure: Real-World Skills for the CompTIA Cloud+ Certification and Beyond: Exam CV0-001No ratings yet
- Network Security All-in-one: ASA Firepower WSA Umbrella VPN ISE Layer 2 SecurityFrom EverandNetwork Security All-in-one: ASA Firepower WSA Umbrella VPN ISE Layer 2 SecurityNo ratings yet
- Network with Practical Labs Configuration: Step by Step configuration of Router and Switch configurationFrom EverandNetwork with Practical Labs Configuration: Step by Step configuration of Router and Switch configurationNo ratings yet