------------------------------------------------------------------------ Count:1 Event#3.61982 2015-11-24 16:13:20 ET POLICY Reserved Internal IP Traffic 10.1.25.1 -> 10.1.25.119 IPVer=4 hlen=5 tos=192 dlen=335 ID=47286 flags=0 offset=0 ttl=64 chksum=31150 Protocol: 17 sport=67 -> dport=68 len=315 chksum=4530 ------------------------------------------------------------------------ Count:1 Event#3.61983 2015-11-24 16:13:23 SURICATA IPv4 padding required 10.1.25.119 -> 224.0.0.22 IPVer=4 hlen=6 tos=0 dlen=40 ID=3 flags=0 offset=0 ttl=1 chksum=8511 Protocol: 2 ------------------------------------------------------------------------ Count:1 Event#3.61984 2015-11-24 16:13:23 SURICATA IPv4 padding required 10.1.25.119 -> 224.0.0.22 IPVer=4 hlen=6 tos=0 dlen=40 ID=6 flags=0 offset=0 ttl=1 chksum=8508 Protocol: 2 ------------------------------------------------------------------------ Count:1 Event#3.61985 2015-11-24 16:13:24 SURICATA IPv4 padding required 10.1.25.119 -> 224.0.0.22 IPVer=4 hlen=6 tos=0 dlen=40 ID=8 flags=0 offset=0 ttl=1 chksum=8506 Protocol: 2 ------------------------------------------------------------------------ Count:1 Event#3.61986 2015-11-24 16:13:24 SURICATA IPv4 padding required 10.1.25.119 -> 224.0.0.22 IPVer=4 hlen=6 tos=0 dlen=40 ID=10 flags=0 offset=0 ttl=1 chksum=8504 Protocol: 2 ------------------------------------------------------------------------ Count:1 Event#3.61987 2015-11-24 16:13:23 ET POLICY Reserved Internal IP Traffic 10.1.25.119 -> 10.1.25.255 IPVer=4 hlen=5 tos=0 dlen=96 ID=4 flags=0 offset=0 ttl=128 chksum=62225 Protocol: 17 sport=137 -> dport=137 len=76 chksum=50445 ------------------------------------------------------------------------ Count:1 Event#3.61988 2015-11-24 16:13:24 SURICATA IPv4 padding required 10.1.25.119 -> 224.0.0.22 IPVer=4 hlen=6 tos=0 dlen=40 ID=13 flags=0 offset=0 ttl=1 chksum=8501 Protocol: 2 ------------------------------------------------------------------------ Count:1 Event#3.61989 2015-11-24 16:13:26 SURICATA IPv4 padding required 10.1.25.119 -> 224.0.0.22 IPVer=4 hlen=6 tos=0 dlen=40 ID=28 flags=0 offset=0 ttl=1 chksum=8486 Protocol: 2 ------------------------------------------------------------------------ Count:1 Event#3.61990 2015-11-24 16:13:26 SURICATA IPv4 padding required 10.1.25.119 -> 224.0.0.22 IPVer=4 hlen=6 tos=0 dlen=40 ID=30 flags=0 offset=0 ttl=1 chksum=8484 Protocol: 2 ------------------------------------------------------------------------ Count:1 Event#3.61991 2015-11-24 16:13:27 SURICATA IPv4 padding required 10.1.25.119 -> 224.0.0.22 IPVer=4 hlen=6 tos=0 dlen=40 ID=39 flags=0 offset=0 ttl=1 chksum=8475 Protocol: 2 ------------------------------------------------------------------------ Count:1 Event#3.61992 2015-11-24 16:14:00 SURICATA STREAM ESTABLISHED retransmission packet before last ack 191.234.5.80 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=8519 flags=2 offset=0 ttl=117 chksum=63061 Protocol: 6 sport=80 -> dport=49167 Seq=2064926392 Ack=1398114013 Off=5 Res=0 Flags=***A**** Win=513 urp=13558 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62006 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=61910 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62007 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=57429 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62008 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=4320 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62009 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=38226 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62010 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=21776 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62011 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=28814 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62012 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=64586 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62013 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=45541 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62014 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=24022 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62015 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=34897 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62016 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=17624 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62017 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=64884 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62018 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=112 ID=0 flags=0 offset=0 ttl=0 chksum=6281 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=54346 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62019 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=40154 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62020 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=49264 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62021 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=63520 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62022 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=31553 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62023 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=24234 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62024 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1034 ID=0 flags=0 offset=0 ttl=0 chksum=5359 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=28966 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62025 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=43490 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62026 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=10090 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62027 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=5792 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62028 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=35596 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62029 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=111 ID=0 flags=0 offset=0 ttl=0 chksum=6282 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=7074 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62030 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=38144 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62031 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=47444 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62032 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=26651 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62033 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=5281 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62034 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=575 ID=0 flags=0 offset=0 ttl=0 chksum=5818 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=34876 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62035 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=58080 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62036 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=35840 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62037 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=42646 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62038 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56191 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62039 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=371 ID=0 flags=0 offset=0 ttl=0 chksum=6022 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=8940 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62040 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=43484 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62041 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=6656 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62042 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=7828 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62043 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=444 ID=0 flags=0 offset=0 ttl=0 chksum=5949 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=33518 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62044 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=41447 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62045 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=17888 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62046 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49193 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=21218 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62047 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=26379 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62048 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1221 ID=0 flags=0 offset=0 ttl=0 chksum=5172 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=54854 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62049 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=57316 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62050 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=38759 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62051 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=57432 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62052 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=54014 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62053 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=154 ID=0 flags=0 offset=0 ttl=0 chksum=6239 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=60028 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62054 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56618 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62055 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49197 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=49345 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62056 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=40756 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62057 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1164 ID=0 flags=0 offset=0 ttl=0 chksum=5229 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=17646 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62058 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=59149 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62059 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=44579 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62060 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1006 ID=0 flags=0 offset=0 ttl=0 chksum=5387 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=44776 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62061 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=45192 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62062 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=27434 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62063 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=11681 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62064 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=408 ID=0 flags=0 offset=0 ttl=0 chksum=5985 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=25032 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62065 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=61921 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62066 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=23194 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62067 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=337 ID=0 flags=0 offset=0 ttl=0 chksum=6056 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=64194 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62068 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=49654 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62069 2015-11-24 16:14:13 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49194 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=62995 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62070 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49196 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=39046 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62071 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=31063 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62072 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=24917 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62073 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=52542 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62074 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=283 ID=0 flags=0 offset=0 ttl=0 chksum=6110 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=14673 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62075 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=31063 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62076 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=24917 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62077 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=52542 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62078 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=283 ID=0 flags=0 offset=0 ttl=0 chksum=6110 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=14673 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62079 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=50461 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62080 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49198 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=63647 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62081 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=4137 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62082 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=51 ID=0 flags=0 offset=0 ttl=0 chksum=6342 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=18064 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62083 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=61437 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62084 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=53396 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62085 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=628 ID=0 flags=0 offset=0 ttl=0 chksum=5765 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=42833 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62086 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49194 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=62995 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62087 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49194 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=50427 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62088 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=922 ID=0 flags=0 offset=0 ttl=0 chksum=5471 Protocol: 6 sport=80 -> dport=49194 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=3224 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62089 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49194 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=42290 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62090 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1318 ID=0 flags=0 offset=0 ttl=0 chksum=5075 Protocol: 6 sport=80 -> dport=49196 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=51155 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62091 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=43035 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62092 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1047 ID=0 flags=0 offset=0 ttl=0 chksum=5346 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=16511 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62093 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=57118 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62094 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49198 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=63647 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62095 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=832 ID=0 flags=0 offset=0 ttl=0 chksum=5561 Protocol: 6 sport=80 -> dport=49198 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=43151 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62096 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49198 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=40720 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62097 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=44395 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62098 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=49561 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62099 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=49101 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62100 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=693 ID=0 flags=0 offset=0 ttl=0 chksum=5700 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=19037 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62101 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=60167 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62102 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49194 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=42290 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62103 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=989 ID=0 flags=0 offset=0 ttl=0 chksum=5404 Protocol: 6 sport=80 -> dport=49194 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2899 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62104 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49196 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=52155 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62105 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=835 ID=0 flags=0 offset=0 ttl=0 chksum=5558 Protocol: 6 sport=80 -> dport=49196 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=45572 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62106 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49196 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=52155 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62107 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=835 ID=0 flags=0 offset=0 ttl=0 chksum=5558 Protocol: 6 sport=80 -> dport=49196 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=45572 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62108 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49193 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=21218 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62109 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49193 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=22133 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62110 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=820 ID=0 flags=0 offset=0 ttl=0 chksum=5573 Protocol: 6 sport=80 -> dport=49193 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=21513 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62111 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=10421 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62112 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=906 ID=0 flags=0 offset=0 ttl=0 chksum=5487 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=19292 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62113 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=5282 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62114 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=34830 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62115 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=29723 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62116 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=42231 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62117 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=26414 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62118 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1194 ID=0 flags=0 offset=0 ttl=0 chksum=5199 Protocol: 6 sport=80 -> dport=49198 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=59950 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62119 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=50421 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62120 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=55333 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62121 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=41877 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62122 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=55442 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62123 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=465 ID=0 flags=0 offset=0 ttl=0 chksum=5928 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=39415 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62124 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=43765 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62125 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=52976 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62126 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=7125 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62127 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=61838 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62128 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=49543 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62129 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1101 ID=0 flags=0 offset=0 ttl=0 chksum=5292 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=9859 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62130 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=7125 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62131 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=931 ID=0 flags=0 offset=0 ttl=0 chksum=5462 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=7837 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62132 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=48865 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62133 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=13135 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62134 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=911 ID=0 flags=0 offset=0 ttl=0 chksum=5482 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=58884 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62135 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=63902 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62136 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=38028 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62137 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=47020 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62138 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=32239 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62139 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=939 ID=0 flags=0 offset=0 ttl=0 chksum=5454 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=40870 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62140 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=38028 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62141 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=47020 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62142 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=32239 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62143 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=939 ID=0 flags=0 offset=0 ttl=0 chksum=5454 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=40870 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62144 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=58583 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62145 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=57805 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62146 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=40136 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62147 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=806 ID=0 flags=0 offset=0 ttl=0 chksum=5587 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20694 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62148 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=49106 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62149 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=40136 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62150 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=6473 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62151 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=386 ID=0 flags=0 offset=0 ttl=0 chksum=6007 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=32608 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62152 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=62460 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62153 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=34804 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62154 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=340 ID=0 flags=0 offset=0 ttl=0 chksum=6053 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=51013 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62155 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=10421 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62156 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1308 ID=0 flags=0 offset=0 ttl=0 chksum=5085 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=64072 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62157 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=52809 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62158 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=5139 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62159 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=50917 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62160 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1350 ID=0 flags=0 offset=0 ttl=0 chksum=5043 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=50070 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62161 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=31838 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62162 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1315 ID=0 flags=0 offset=0 ttl=0 chksum=5078 Protocol: 6 sport=80 -> dport=49184 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=35057 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62163 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=31682 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62164 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=26730 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62165 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=63004 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62166 2015-11-24 16:14:14 FILE tracking GIF (1x1 pixel) 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=323 ID=0 flags=0 offset=0 ttl=0 chksum=6070 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=42094 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62167 2015-11-24 16:14:14 FILE tracking GIF (1x1 pixel) 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=323 ID=0 flags=0 offset=0 ttl=0 chksum=6070 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=42094 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62168 2015-11-24 16:14:14 GPL WEB_CLIENT web bug 0x0 gif attempt 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=323 ID=0 flags=0 offset=0 ttl=0 chksum=6070 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=42094 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62169 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=57316 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62170 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20058 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62171 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=40130 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62172 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=500 ID=0 flags=0 offset=0 ttl=0 chksum=5893 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=65159 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62173 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=41211 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62174 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=11427 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62175 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49197 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=49345 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62176 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49197 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=150 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62177 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=51 ID=0 flags=0 offset=0 ttl=0 chksum=6342 Protocol: 6 sport=80 -> dport=49197 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=45321 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62178 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49197 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=4003 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62179 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1223 ID=0 flags=0 offset=0 ttl=0 chksum=5170 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=60806 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62180 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=58144 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62181 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=31801 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62182 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=31842 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62183 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=787 ID=0 flags=0 offset=0 ttl=0 chksum=5606 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=35590 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62184 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=23974 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62185 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49193 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56181 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62186 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=899 ID=0 flags=0 offset=0 ttl=0 chksum=5494 Protocol: 6 sport=80 -> dport=49193 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=58246 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62187 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49193 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56181 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62188 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=899 ID=0 flags=0 offset=0 ttl=0 chksum=5494 Protocol: 6 sport=80 -> dport=49193 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=58246 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62189 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49193 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=21604 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62190 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49193 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=58639 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62191 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49193 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=43637 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62192 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49193 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=28196 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62193 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49193 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=22598 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62194 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49193 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20210 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62195 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49193 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=1739 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62196 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1199 ID=0 flags=0 offset=0 ttl=0 chksum=5194 Protocol: 6 sport=80 -> dport=49197 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=46307 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62197 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=60539 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62198 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1078 ID=0 flags=0 offset=0 ttl=0 chksum=5315 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=32791 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62199 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=58144 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62200 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=62370 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62201 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=613 ID=0 flags=0 offset=0 ttl=0 chksum=5780 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=23635 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62202 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=52467 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62203 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=63390 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62204 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=5059 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62205 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=509 ID=0 flags=0 offset=0 ttl=0 chksum=5884 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=47936 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62206 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=44015 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62207 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49193 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=27638 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62208 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=551 ID=0 flags=0 offset=0 ttl=0 chksum=5842 Protocol: 6 sport=80 -> dport=49193 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=62435 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62209 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=57307 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62210 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=34634 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62211 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=60233 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62212 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=27047 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62213 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=19658 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62214 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=707 ID=0 flags=0 offset=0 ttl=0 chksum=5686 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=19740 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62215 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=57307 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62216 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=34634 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62217 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=60233 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62218 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=27047 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62219 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=19658 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62220 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=707 ID=0 flags=0 offset=0 ttl=0 chksum=5686 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=19740 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62221 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=41739 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62222 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=30637 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62223 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=26584 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62224 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=207 ID=0 flags=0 offset=0 ttl=0 chksum=6186 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=11145 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62225 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=42225 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62226 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=48214 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62227 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=479 ID=0 flags=0 offset=0 ttl=0 chksum=5914 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56812 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62228 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=64574 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62229 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=61161 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62230 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=26584 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62231 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=828 ID=0 flags=0 offset=0 ttl=0 chksum=5565 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=22486 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62232 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56292 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62233 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=23284 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62234 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=236 ID=0 flags=0 offset=0 ttl=0 chksum=6157 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=60067 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62235 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=36896 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62236 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1163 ID=0 flags=0 offset=0 ttl=0 chksum=5230 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=62292 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62237 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=42249 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62238 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=17620 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62240 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=57734 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62241 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=8621 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62242 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=697 ID=0 flags=0 offset=0 ttl=0 chksum=5696 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=19198 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62243 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=35771 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62245 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=39105 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62246 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=13691 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62247 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=194 ID=0 flags=0 offset=0 ttl=0 chksum=6199 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=57409 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62248 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=8139 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62249 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=21004 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62250 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=394 ID=0 flags=0 offset=0 ttl=0 chksum=5999 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=17015 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62251 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=22791 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62252 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=956 ID=0 flags=0 offset=0 ttl=0 chksum=5437 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=40154 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62253 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=961 ID=0 flags=0 offset=0 ttl=0 chksum=5432 Protocol: 6 sport=80 -> dport=49187 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=3758 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62254 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=12656 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62255 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=577 ID=0 flags=0 offset=0 ttl=0 chksum=5816 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=64007 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62256 2015-11-24 16:14:14 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=65279 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62257 2015-11-24 16:14:16 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=39165 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62258 2015-11-24 16:14:16 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=4633 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62259 2015-11-24 16:14:16 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=674 ID=0 flags=0 offset=0 ttl=0 chksum=5719 Protocol: 6 sport=80 -> dport=49183 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=19977 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62260 2015-11-24 16:14:16 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=39496 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62261 2015-11-24 16:14:16 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1339 ID=0 flags=0 offset=0 ttl=0 chksum=5054 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=65495 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62262 2015-11-24 16:14:17 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=6370 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62263 2015-11-24 16:14:18 FILE tracking GIF (1x1 pixel) 63.251.85.25 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=591 ID=0 flags=0 offset=0 ttl=0 chksum=30 Protocol: 6 sport=80 -> dport=49222 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=12364 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62264 2015-11-24 16:14:18 GPL WEB_CLIENT web bug 0x0 gif attempt 63.251.85.25 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=591 ID=0 flags=0 offset=0 ttl=0 chksum=30 Protocol: 6 sport=80 -> dport=49222 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=12364 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62265 2015-11-24 16:14:19 FILE tracking GIF (1x1 pixel) 162.248.16.24 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=907 ID=0 flags=0 offset=0 ttl=0 chksum=57573 Protocol: 6 sport=80 -> dport=49245 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=39991 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62266 2015-11-24 16:14:19 GPL WEB_CLIENT web bug 0x0 gif attempt 162.248.16.24 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=907 ID=0 flags=0 offset=0 ttl=0 chksum=57573 Protocol: 6 sport=80 -> dport=49245 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=39991 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62267 2015-11-24 16:14:21 FILE tracking GIF (1x1 pixel) 68.67.153.250 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=718 ID=0 flags=0 offset=0 ttl=0 chksum=46709 Protocol: 6 sport=80 -> dport=49255 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=54052 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62268 2015-11-24 16:14:21 FILE tracking GIF (1x1 pixel) 68.67.153.250 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=718 ID=0 flags=0 offset=0 ttl=0 chksum=46709 Protocol: 6 sport=80 -> dport=49255 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=54052 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62269 2015-11-24 16:14:21 GPL WEB_CLIENT web bug 0x0 gif attempt 68.67.153.250 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=718 ID=0 flags=0 offset=0 ttl=0 chksum=46709 Protocol: 6 sport=80 -> dport=49255 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=54052 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62270 2015-11-24 16:14:29 FILE tracking GIF (1x1 pixel) 205.180.86.169 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=267 ID=0 flags=0 offset=0 ttl=0 chksum=29208 Protocol: 6 sport=80 -> dport=49252 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=41993 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62271 2015-11-24 16:14:31 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=13325 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62272 2015-11-24 16:14:32 FILE tracking GIF (1x1 pixel) 63.251.85.25 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=591 ID=0 flags=0 offset=0 ttl=0 chksum=30 Protocol: 6 sport=80 -> dport=49221 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=29002 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62273 2015-11-24 16:14:32 GPL WEB_CLIENT web bug 0x0 gif attempt 63.251.85.25 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=591 ID=0 flags=0 offset=0 ttl=0 chksum=30 Protocol: 6 sport=80 -> dport=49221 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=29002 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62274 2015-11-24 16:14:33 FILE tracking GIF (1x1 pixel) 173.241.242.220 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=362 ID=0 flags=0 offset=0 ttl=0 chksum=62792 Protocol: 6 sport=80 -> dport=49305 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=59087 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62275 2015-11-24 16:14:33 GPL WEB_CLIENT web bug 0x0 gif attempt 173.241.242.220 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=362 ID=0 flags=0 offset=0 ttl=0 chksum=62792 Protocol: 6 sport=80 -> dport=49305 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=59087 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62276 2015-11-24 16:14:38 FILE tracking GIF (1x1 pixel) 64.12.20.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=385 ID=0 flags=0 offset=0 ttl=0 chksum=16691 Protocol: 6 sport=80 -> dport=49259 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=30683 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62277 2015-11-24 16:14:38 FILE tracking GIF (1x1 pixel) 64.12.20.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=83 ID=0 flags=0 offset=0 ttl=0 chksum=16993 Protocol: 6 sport=80 -> dport=49259 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=62014 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62278 2015-11-24 16:14:38 GPL WEB_CLIENT web bug 0x0 gif attempt 64.12.20.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=385 ID=0 flags=0 offset=0 ttl=0 chksum=16691 Protocol: 6 sport=80 -> dport=49259 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=30683 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62279 2015-11-24 16:14:38 GPL WEB_CLIENT web bug 0x0 gif attempt 64.12.20.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=83 ID=0 flags=0 offset=0 ttl=0 chksum=16993 Protocol: 6 sport=80 -> dport=49259 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=62014 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62280 2015-11-24 16:14:43 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=32444 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62281 2015-11-24 16:14:43 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=483 ID=0 flags=0 offset=0 ttl=0 chksum=5910 Protocol: 6 sport=80 -> dport=49186 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=65150 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62282 2015-11-24 16:14:43 FILE tracking GIF (1x1 pixel) 205.185.216.10 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=371 ID=0 flags=0 offset=0 ttl=0 chksum=61513 Protocol: 6 sport=80 -> dport=49312 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=28348 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62283 2015-11-24 16:14:43 FILE tracking GIF (1x1 pixel) 205.185.216.10 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=75 ID=0 flags=0 offset=0 ttl=0 chksum=61809 Protocol: 6 sport=80 -> dport=49312 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=39744 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62284 2015-11-24 16:14:43 GPL WEB_CLIENT web bug 0x0 gif attempt 205.185.216.10 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=371 ID=0 flags=0 offset=0 ttl=0 chksum=61513 Protocol: 6 sport=80 -> dport=49312 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=28348 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62285 2015-11-24 16:14:43 GPL WEB_CLIENT web bug 0x0 gif attempt 205.185.216.10 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=75 ID=0 flags=0 offset=0 ttl=0 chksum=61809 Protocol: 6 sport=80 -> dport=49312 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=39744 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62286 2015-11-24 16:14:44 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=6370 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62287 2015-11-24 16:14:44 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=753 ID=0 flags=0 offset=0 ttl=0 chksum=5640 Protocol: 6 sport=80 -> dport=49185 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=9691 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62288 2015-11-24 16:14:44 snort general alert 184.28.198.107 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=4984 Protocol: 6 sport=80 -> dport=49188 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=48923 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62289 2015-11-24 16:14:44 FILE tracking GIF (1x1 pixel) 74.125.226.168 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=426 ID=0 flags=0 offset=0 ttl=0 chksum=26801 Protocol: 6 sport=80 -> dport=49224 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=50199 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62290 2015-11-24 16:14:44 FILE tracking GIF (1x1 pixel) 74.125.226.168 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=426 ID=0 flags=0 offset=0 ttl=0 chksum=26801 Protocol: 6 sport=80 -> dport=49224 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=50199 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62291 2015-11-24 16:14:44 GPL WEB_CLIENT web bug 0x0 gif attempt 74.125.226.168 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=426 ID=0 flags=0 offset=0 ttl=0 chksum=26801 Protocol: 6 sport=80 -> dport=49224 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=50199 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62292 2015-11-24 16:14:45 FILE tracking GIF (1x1 pixel) 63.251.85.25 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=568 ID=0 flags=0 offset=0 ttl=0 chksum=53 Protocol: 6 sport=80 -> dport=49329 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=51719 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62293 2015-11-24 16:14:45 GPL WEB_CLIENT web bug 0x0 gif attempt 63.251.85.25 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=568 ID=0 flags=0 offset=0 ttl=0 chksum=53 Protocol: 6 sport=80 -> dport=49329 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=51719 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62295 2015-11-24 16:14:46 FILE tracking GIF (1x1 pixel) 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49340 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2853 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62296 2015-11-24 16:14:46 FILE tracking GIF (1x1 pixel) 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49340 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2853 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62297 2015-11-24 16:14:46 GPL WEB_CLIENT web bug 0x0 gif attempt 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49340 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2853 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62298 2015-11-24 16:14:46 FILE tracking GIF (1x1 pixel) 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49340 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2853 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62299 2015-11-24 16:14:46 FILE tracking GIF (1x1 pixel) 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49340 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2853 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62300 2015-11-24 16:14:46 GPL WEB_CLIENT web bug 0x0 gif attempt 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49340 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2853 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62301 2015-11-24 16:14:55 FILE tracking GIF (1x1 pixel) 63.251.85.25 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=591 ID=0 flags=0 offset=0 ttl=0 chksum=30 Protocol: 6 sport=80 -> dport=49328 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20929 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62302 2015-11-24 16:14:55 GPL WEB_CLIENT web bug 0x0 gif attempt 63.251.85.25 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=591 ID=0 flags=0 offset=0 ttl=0 chksum=30 Protocol: 6 sport=80 -> dport=49328 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20929 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62303 2015-11-24 16:14:55 FILE tracking GIF (1x1 pixel) 23.76.125.60 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=393 ID=0 flags=0 offset=0 ttl=0 chksum=368 Protocol: 6 sport=80 -> dport=49290 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=21093 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62304 2015-11-24 16:14:55 FILE tracking GIF (1x1 pixel) 23.76.125.60 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=393 ID=0 flags=0 offset=0 ttl=0 chksum=368 Protocol: 6 sport=80 -> dport=49290 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=21093 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62305 2015-11-24 16:14:55 GPL WEB_CLIENT web bug 0x0 gif attempt 23.76.125.60 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=393 ID=0 flags=0 offset=0 ttl=0 chksum=368 Protocol: 6 sport=80 -> dport=49290 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=21093 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62306 2015-11-24 16:14:56 FILE tracking GIF (1x1 pixel) 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49340 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2853 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62307 2015-11-24 16:14:56 FILE tracking GIF (1x1 pixel) 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49340 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2853 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62308 2015-11-24 16:14:56 GPL WEB_CLIENT web bug 0x0 gif attempt 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49340 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2853 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62309 2015-11-24 16:14:58 FILE tracking GIF (1x1 pixel) 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49340 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2343 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62310 2015-11-24 16:14:58 FILE tracking GIF (1x1 pixel) 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49340 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2343 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62311 2015-11-24 16:14:58 GPL WEB_CLIENT web bug 0x0 gif attempt 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49340 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2343 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62312 2015-11-24 16:15:04 FILE tracking GIF (1x1 pixel) 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49340 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2337 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62313 2015-11-24 16:15:04 FILE tracking GIF (1x1 pixel) 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49340 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2337 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62314 2015-11-24 16:15:04 GPL WEB_CLIENT web bug 0x0 gif attempt 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49340 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2337 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62315 2015-11-24 16:15:20 FILE tracking GIF (1x1 pixel) 52.20.176.43 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=401 ID=0 flags=0 offset=0 ttl=0 chksum=45488 Protocol: 6 sport=80 -> dport=49250 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=54703 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62316 2015-11-24 16:15:20 GPL WEB_CLIENT web bug 0x0 gif attempt 52.20.176.43 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=401 ID=0 flags=0 offset=0 ttl=0 chksum=45488 Protocol: 6 sport=80 -> dport=49250 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=54703 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62317 2015-11-24 16:15:21 FILE tracking GIF (1x1 pixel) 54.193.95.239 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=698 ID=0 flags=0 offset=0 ttl=0 chksum=65046 Protocol: 6 sport=80 -> dport=49261 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=53980 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62318 2015-11-24 16:15:21 GPL WEB_CLIENT web bug 0x0 gif attempt 54.193.95.239 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=698 ID=0 flags=0 offset=0 ttl=0 chksum=65046 Protocol: 6 sport=80 -> dport=49261 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=53980 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62319 2015-11-24 16:15:38 FILE tracking GIF (1x1 pixel) 31.13.74.36 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=519 ID=0 flags=0 offset=0 ttl=0 chksum=11337 Protocol: 6 sport=80 -> dport=49302 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=46117 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62320 2015-11-24 16:15:38 FILE tracking GIF (1x1 pixel) 31.13.74.36 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=60 ID=0 flags=0 offset=0 ttl=0 chksum=11796 Protocol: 6 sport=80 -> dport=49302 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=27093 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62321 2015-11-24 16:15:44 snort general alert 64.34.173.208 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=41997 Protocol: 6 sport=80 -> dport=49373 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=13018 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62322 2015-11-24 16:15:47 FILE tracking GIF (1x1 pixel) 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49343 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2850 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62323 2015-11-24 16:15:47 GPL WEB_CLIENT web bug 0x0 gif attempt 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49343 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2850 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62324 2015-11-24 16:15:47 FILE tracking GIF (1x1 pixel) 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49345 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2848 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62325 2015-11-24 16:15:47 GPL WEB_CLIENT web bug 0x0 gif attempt 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49345 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2848 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62326 2015-11-24 16:15:47 FILE tracking GIF (1x1 pixel) 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49346 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2847 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62327 2015-11-24 16:15:47 GPL WEB_CLIENT web bug 0x0 gif attempt 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49346 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2847 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62328 2015-11-24 16:15:47 FILE tracking GIF (1x1 pixel) 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49344 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2849 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62329 2015-11-24 16:15:47 GPL WEB_CLIENT web bug 0x0 gif attempt 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49344 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2849 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62330 2015-11-24 16:15:51 FILE tracking GIF (1x1 pixel) 130.211.114.37 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=458 ID=0 flags=0 offset=0 ttl=0 chksum=41150 Protocol: 6 sport=80 -> dport=49348 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=351 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62331 2015-11-24 16:15:53 FILE tracking GIF (1x1 pixel) 8.43.72.21 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=887 ID=0 flags=0 offset=0 ttl=0 chksum=17354 Protocol: 6 sport=80 -> dport=49243 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=9579 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62332 2015-11-24 16:15:53 GPL WEB_CLIENT web bug 0x0 gif attempt 8.43.72.21 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=887 ID=0 flags=0 offset=0 ttl=0 chksum=17354 Protocol: 6 sport=80 -> dport=49243 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=9579 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62333 2015-11-24 16:15:53 FILE tracking GIF (1x1 pixel) 74.125.226.187 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=432 ID=0 flags=0 offset=0 ttl=0 chksum=26776 Protocol: 6 sport=80 -> dport=49225 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=23113 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62334 2015-11-24 16:15:53 GPL WEB_CLIENT web bug 0x0 gif attempt 74.125.226.187 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=432 ID=0 flags=0 offset=0 ttl=0 chksum=26776 Protocol: 6 sport=80 -> dport=49225 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=23113 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62335 2015-11-24 16:15:53 FILE tracking GIF (1x1 pixel) 74.125.226.168 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=426 ID=0 flags=0 offset=0 ttl=0 chksum=26801 Protocol: 6 sport=80 -> dport=49224 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=49686 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62336 2015-11-24 16:15:53 GPL WEB_CLIENT web bug 0x0 gif attempt 74.125.226.168 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=426 ID=0 flags=0 offset=0 ttl=0 chksum=26801 Protocol: 6 sport=80 -> dport=49224 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=49686 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62337 2015-11-24 16:15:53 FILE tracking GIF (1x1 pixel) 8.30.11.13 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=217 ID=0 flags=0 offset=0 ttl=0 chksum=33661 Protocol: 6 sport=80 -> dport=49300 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=8475 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62338 2015-11-24 16:15:53 FILE tracking GIF (1x1 pixel) 23.76.125.60 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=393 ID=0 flags=0 offset=0 ttl=0 chksum=368 Protocol: 6 sport=80 -> dport=49291 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20318 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62339 2015-11-24 16:15:53 GPL WEB_CLIENT web bug 0x0 gif attempt 23.76.125.60 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=393 ID=0 flags=0 offset=0 ttl=0 chksum=368 Protocol: 6 sport=80 -> dport=49291 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20318 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62340 2015-11-24 16:15:53 FILE tracking GIF (1x1 pixel) 23.76.125.60 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=393 ID=0 flags=0 offset=0 ttl=0 chksum=368 Protocol: 6 sport=80 -> dport=49321 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=22593 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62341 2015-11-24 16:15:53 GPL WEB_CLIENT web bug 0x0 gif attempt 23.76.125.60 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=393 ID=0 flags=0 offset=0 ttl=0 chksum=368 Protocol: 6 sport=80 -> dport=49321 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=22593 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62342 2015-11-24 16:15:53 FILE tracking GIF (1x1 pixel) 23.33.105.222 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=974 ID=0 flags=0 offset=0 ttl=0 chksum=4788 Protocol: 6 sport=80 -> dport=49253 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=47318 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62343 2015-11-24 16:15:53 GPL WEB_CLIENT web bug 0x0 gif attempt 23.33.105.222 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=974 ID=0 flags=0 offset=0 ttl=0 chksum=4788 Protocol: 6 sport=80 -> dport=49253 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=47318 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62344 2015-11-24 16:15:53 FILE tracking GIF (1x1 pixel) 23.235.40.166 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=872 ID=0 flags=0 offset=0 ttl=0 chksum=21384 Protocol: 6 sport=80 -> dport=49247 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=37035 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62345 2015-11-24 16:15:53 FILE tracking GIF (1x1 pixel) 23.235.40.166 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=95 ID=0 flags=0 offset=0 ttl=0 chksum=22161 Protocol: 6 sport=80 -> dport=49247 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=44061 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62346 2015-11-24 16:15:53 FILE tracking GIF (1x1 pixel) 23.235.40.166 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=45 ID=0 flags=0 offset=0 ttl=0 chksum=22211 Protocol: 6 sport=80 -> dport=49247 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=18189 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62347 2015-11-24 16:15:53 GPL WEB_CLIENT web bug 0x0 gif attempt 23.235.40.166 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=872 ID=0 flags=0 offset=0 ttl=0 chksum=21384 Protocol: 6 sport=80 -> dport=49247 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=37035 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62348 2015-11-24 16:15:53 GPL WEB_CLIENT web bug 0x0 gif attempt 23.235.40.166 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=95 ID=0 flags=0 offset=0 ttl=0 chksum=22161 Protocol: 6 sport=80 -> dport=49247 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=44061 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62349 2015-11-24 16:15:53 GPL WEB_CLIENT web bug 0x0 gif attempt 23.235.40.166 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=45 ID=0 flags=0 offset=0 ttl=0 chksum=22211 Protocol: 6 sport=80 -> dport=49247 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=18189 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62350 2015-11-24 16:15:53 FILE tracking GIF (1x1 pixel) 74.125.226.168 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=426 ID=0 flags=0 offset=0 ttl=0 chksum=26801 Protocol: 6 sport=80 -> dport=49223 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=49951 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62351 2015-11-24 16:15:53 GPL WEB_CLIENT web bug 0x0 gif attempt 74.125.226.168 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=426 ID=0 flags=0 offset=0 ttl=0 chksum=26801 Protocol: 6 sport=80 -> dport=49223 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=49951 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62352 2015-11-24 16:15:54 FILE tracking GIF (1x1 pixel) 216.58.216.230 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=379 ID=0 flags=0 offset=0 ttl=0 chksum=58596 Protocol: 6 sport=80 -> dport=49382 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=44377 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62353 2015-11-24 16:15:54 FILE tracking GIF (1x1 pixel) 216.58.216.230 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=379 ID=0 flags=0 offset=0 ttl=0 chksum=58596 Protocol: 6 sport=80 -> dport=49382 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=44377 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62354 2015-11-24 16:15:54 GPL WEB_CLIENT web bug 0x0 gif attempt 216.58.216.230 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=379 ID=0 flags=0 offset=0 ttl=0 chksum=58596 Protocol: 6 sport=80 -> dport=49382 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=44377 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62357 2015-11-24 16:15:55 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=992 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62358 2015-11-24 16:15:55 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=992 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62359 2015-11-24 16:15:55 GPL WEB_CLIENT web bug 0x0 gif attempt 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=992 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62360 2015-11-24 16:15:55 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=736 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62361 2015-11-24 16:15:55 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=736 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62362 2015-11-24 16:15:55 GPL WEB_CLIENT web bug 0x0 gif attempt 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=736 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62363 2015-11-24 16:15:55 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=736 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62364 2015-11-24 16:15:55 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=736 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62365 2015-11-24 16:15:55 GPL WEB_CLIENT web bug 0x0 gif attempt 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=736 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62366 2015-11-24 16:15:56 FILE tracking GIF (1x1 pixel) 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49347 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2336 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62367 2015-11-24 16:15:56 GPL WEB_CLIENT web bug 0x0 gif attempt 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49347 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2336 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62368 2015-11-24 16:15:58 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=736 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62369 2015-11-24 16:15:58 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=736 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62370 2015-11-24 16:15:58 GPL WEB_CLIENT web bug 0x0 gif attempt 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=736 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62371 2015-11-24 16:16:04 FILE tracking GIF (1x1 pixel) 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49340 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=1833 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62372 2015-11-24 16:16:04 GPL WEB_CLIENT web bug 0x0 gif attempt 23.23.118.204 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=1995 Protocol: 6 sport=80 -> dport=49340 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=1833 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62376 2015-11-24 16:16:06 FILE tracking GIF (1x1 pixel) 198.8.70.212 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1206 ID=0 flags=0 offset=0 ttl=0 chksum=34286 Protocol: 6 sport=80 -> dport=49413 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=11969 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62377 2015-11-24 16:16:06 GPL WEB_CLIENT web bug 0x0 gif attempt 198.8.70.212 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1206 ID=0 flags=0 offset=0 ttl=0 chksum=34286 Protocol: 6 sport=80 -> dport=49413 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=11969 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62385 2015-11-24 16:16:09 FILE tracking GIF (1x1 pixel) 54.227.244.225 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=430 ID=0 flags=0 offset=0 ttl=0 chksum=27150 Protocol: 6 sport=80 -> dport=49443 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=35496 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62386 2015-11-24 16:16:09 GPL WEB_CLIENT web bug 0x0 gif attempt 54.227.244.225 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=430 ID=0 flags=0 offset=0 ttl=0 chksum=27150 Protocol: 6 sport=80 -> dport=49443 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=35496 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62388 2015-11-24 16:16:09 FILE tracking GIF (1x1 pixel) 54.227.244.225 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=430 ID=0 flags=0 offset=0 ttl=0 chksum=27150 Protocol: 6 sport=80 -> dport=49444 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=41793 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62389 2015-11-24 16:16:09 GPL WEB_CLIENT web bug 0x0 gif attempt 54.227.244.225 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=430 ID=0 flags=0 offset=0 ttl=0 chksum=27150 Protocol: 6 sport=80 -> dport=49444 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=41793 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62391 2015-11-24 16:16:18 ET TROJAN Possible Bedep Connectivity Check 10.1.25.119 -> 23.76.141.34 IPVer=4 hlen=5 tos=0 dlen=410 ID=0 flags=0 offset=0 ttl=0 chksum=61816 Protocol: 6 sport=49450 -> dport=80 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=11488 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62392 2015-11-24 16:16:19 FILE tracking GIF (1x1 pixel) 64.34.173.208 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=495 ID=0 flags=0 offset=0 ttl=0 chksum=42911 Protocol: 6 sport=80 -> dport=49424 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=45212 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62393 2015-11-24 16:16:19 GPL WEB_CLIENT web bug 0x0 gif attempt 64.34.173.208 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=495 ID=0 flags=0 offset=0 ttl=0 chksum=42911 Protocol: 6 sport=80 -> dport=49424 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=45212 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62394 2015-11-24 16:16:21 ET TROJAN Bedep HTTP POST CnC Beacon 10.1.25.119 -> 166.78.145.90 IPVer=4 hlen=5 tos=0 dlen=308 ID=0 flags=0 offset=0 ttl=0 chksum=24228 Protocol: 6 sport=49453 -> dport=80 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=37126 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62395 2015-11-24 16:16:21 ET TROJAN Bedep HTTP POST CnC Beacon 10.1.25.119 -> 166.78.145.90 IPVer=4 hlen=5 tos=0 dlen=303 ID=0 flags=0 offset=0 ttl=0 chksum=24233 Protocol: 6 sport=49453 -> dport=80 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=15864 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62396 2015-11-24 16:16:22 ET TROJAN Bedep HTTP POST CnC Beacon 10.1.25.119 -> 95.211.205.229 IPVer=4 hlen=5 tos=0 dlen=312 ID=0 flags=0 offset=0 ttl=0 chksum=26768 Protocol: 6 sport=49454 -> dport=80 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=21822 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62397 2015-11-24 16:16:22 ET TROJAN Bedep HTTP POST CnC Beacon 10.1.25.119 -> 95.211.205.229 IPVer=4 hlen=5 tos=0 dlen=317 ID=0 flags=0 offset=0 ttl=0 chksum=26763 Protocol: 6 sport=49454 -> dport=80 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=32116 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62398 2015-11-24 16:16:22 ET TROJAN Known Sinkhole Response Header 166.78.145.90 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=310 ID=0 flags=0 offset=0 ttl=0 chksum=24226 Protocol: 6 sport=80 -> dport=49453 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=31879 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62399 2015-11-24 16:16:23 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=224 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62400 2015-11-24 16:16:23 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=224 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62401 2015-11-24 16:16:23 GPL WEB_CLIENT web bug 0x0 gif attempt 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=224 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62402 2015-11-24 16:16:23 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=1245 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62403 2015-11-24 16:16:23 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=1245 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62404 2015-11-24 16:16:23 GPL WEB_CLIENT web bug 0x0 gif attempt 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=1245 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62405 2015-11-24 16:16:24 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=1245 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62406 2015-11-24 16:16:24 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=1245 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62407 2015-11-24 16:16:24 GPL WEB_CLIENT web bug 0x0 gif attempt 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=1245 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62408 2015-11-24 16:16:24 ET TROJAN Bedep HTTP POST CnC Beacon 10.1.25.119 -> 95.211.205.229 IPVer=4 hlen=5 tos=0 dlen=347 ID=0 flags=0 offset=0 ttl=0 chksum=26733 Protocol: 6 sport=49454 -> dport=80 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=31434 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62409 2015-11-24 16:16:24 ET TROJAN Bedep HTTP POST CnC Beacon 10.1.25.119 -> 95.211.205.229 IPVer=4 hlen=5 tos=0 dlen=254 ID=0 flags=0 offset=0 ttl=0 chksum=26826 Protocol: 6 sport=49454 -> dport=80 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=30964 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62410 2015-11-24 16:16:26 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=989 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62411 2015-11-24 16:16:26 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=989 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62412 2015-11-24 16:16:26 GPL WEB_CLIENT web bug 0x0 gif attempt 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=989 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62413 2015-11-24 16:16:34 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=733 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62414 2015-11-24 16:16:34 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=733 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62415 2015-11-24 16:16:34 GPL WEB_CLIENT web bug 0x0 gif attempt 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=733 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62416 2015-11-24 16:16:37 ET TROJAN Fareit/Pony Downloader Checkin 2 10.1.25.119 -> 151.80.126.226 IPVer=4 hlen=5 tos=0 dlen=445 ID=0 flags=0 offset=0 ttl=0 chksum=32657 Protocol: 6 sport=49458 -> dport=80 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=15632 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62417 2015-11-24 16:16:37 ET TROJAN Fareit/Pony Downloader Checkin 2 10.1.25.119 -> 151.80.126.226 IPVer=4 hlen=5 tos=0 dlen=745 ID=0 flags=0 offset=0 ttl=0 chksum=32357 Protocol: 6 sport=49458 -> dport=80 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=24642 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62418 2015-11-24 16:16:42 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=988 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62419 2015-11-24 16:16:42 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=988 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62420 2015-11-24 16:16:42 GPL WEB_CLIENT web bug 0x0 gif attempt 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=988 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62421 2015-11-24 16:16:48 ET TROJAN Bedep HTTP POST CnC Beacon 10.1.25.119 -> 95.211.205.229 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=26613 Protocol: 6 sport=49454 -> dport=80 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=47709 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62422 2015-11-24 16:16:48 ET TROJAN Bedep HTTP POST CnC Beacon 10.1.25.119 -> 95.211.205.229 IPVer=4 hlen=5 tos=0 dlen=1036 ID=0 flags=0 offset=0 ttl=0 chksum=26044 Protocol: 6 sport=49454 -> dport=80 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=60180 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62423 2015-11-24 16:16:48 ET TROJAN Bedep HTTP POST CnC Beacon 2 10.1.25.119 -> 95.211.205.229 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=26613 Protocol: 6 sport=49454 -> dport=80 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=47709 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62424 2015-11-24 16:16:48 ET TROJAN Bedep HTTP POST CnC Beacon 2 10.1.25.119 -> 95.211.205.229 IPVer=4 hlen=5 tos=0 dlen=1036 ID=0 flags=0 offset=0 ttl=0 chksum=26044 Protocol: 6 sport=49454 -> dport=80 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=60180 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62425 2015-11-24 16:16:56 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=1760 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62426 2015-11-24 16:16:56 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=1760 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62427 2015-11-24 16:16:56 GPL WEB_CLIENT web bug 0x0 gif attempt 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=1760 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62428 2015-11-24 16:16:57 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=735 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62429 2015-11-24 16:16:57 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=735 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62430 2015-11-24 16:16:57 GPL WEB_CLIENT web bug 0x0 gif attempt 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=735 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62431 2015-11-24 16:17:04 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=479 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62432 2015-11-24 16:17:04 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=479 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62433 2015-11-24 16:17:04 GPL WEB_CLIENT web bug 0x0 gif attempt 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=479 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62434 2015-11-24 16:17:33 FILE tracking GIF (1x1 pixel) 74.125.226.90 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=510 ID=0 flags=0 offset=0 ttl=0 chksum=26795 Protocol: 6 sport=80 -> dport=49392 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=58337 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62435 2015-11-24 16:17:33 FILE tracking GIF (1x1 pixel) 74.125.226.90 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=510 ID=0 flags=0 offset=0 ttl=0 chksum=26795 Protocol: 6 sport=80 -> dport=49392 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=58337 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62436 2015-11-24 16:17:33 GPL WEB_CLIENT web bug 0x0 gif attempt 74.125.226.90 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=510 ID=0 flags=0 offset=0 ttl=0 chksum=26795 Protocol: 6 sport=80 -> dport=49392 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=58337 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62437 2015-11-24 16:17:35 FILE tracking GIF (1x1 pixel) 23.62.6.40 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=349 ID=0 flags=0 offset=0 ttl=0 chksum=30910 Protocol: 6 sport=80 -> dport=49498 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20042 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62438 2015-11-24 16:17:35 FILE tracking GIF (1x1 pixel) 23.62.6.40 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=349 ID=0 flags=0 offset=0 ttl=0 chksum=30910 Protocol: 6 sport=80 -> dport=49498 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20042 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62439 2015-11-24 16:17:35 GPL WEB_CLIENT web bug 0x0 gif attempt 23.62.6.40 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=349 ID=0 flags=0 offset=0 ttl=0 chksum=30910 Protocol: 6 sport=80 -> dport=49498 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20042 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62440 2015-11-24 16:17:35 FILE tracking GIF (1x1 pixel) 23.62.6.40 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=349 ID=0 flags=0 offset=0 ttl=0 chksum=30910 Protocol: 6 sport=80 -> dport=49498 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20042 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62441 2015-11-24 16:17:35 FILE tracking GIF (1x1 pixel) 23.62.6.40 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=349 ID=0 flags=0 offset=0 ttl=0 chksum=30910 Protocol: 6 sport=80 -> dport=49498 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20042 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62442 2015-11-24 16:17:35 GPL WEB_CLIENT web bug 0x0 gif attempt 23.62.6.40 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=349 ID=0 flags=0 offset=0 ttl=0 chksum=30910 Protocol: 6 sport=80 -> dport=49498 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20042 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62443 2015-11-24 16:17:36 snort general alert 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=11786 Protocol: 6 sport=80 -> dport=49521 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=53279 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62444 2015-11-24 16:17:36 snort general alert 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=20820 Protocol: 6 sport=80 -> dport=49515 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=30269 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62445 2015-11-24 16:17:36 snort general alert 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=20820 Protocol: 6 sport=80 -> dport=49515 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=41748 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62446 2015-11-24 16:17:36 snort general alert 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=20820 Protocol: 6 sport=80 -> dport=49515 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=33710 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62447 2015-11-24 16:17:36 snort general alert 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=20820 Protocol: 6 sport=80 -> dport=49515 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=39683 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62448 2015-11-24 16:17:36 snort general alert 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=20820 Protocol: 6 sport=80 -> dport=49515 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=272 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62449 2015-11-24 16:17:36 snort general alert 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=20820 Protocol: 6 sport=80 -> dport=49515 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=60750 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62450 2015-11-24 16:17:36 snort general alert 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=20820 Protocol: 6 sport=80 -> dport=49515 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=55991 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62451 2015-11-24 16:17:36 snort general alert 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=20820 Protocol: 6 sport=80 -> dport=49515 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=29822 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62452 2015-11-24 16:17:36 snort general alert 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=11786 Protocol: 6 sport=80 -> dport=49522 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=54670 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62453 2015-11-24 16:17:36 snort general alert 54.231.16.209 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1400 ID=0 flags=0 offset=0 ttl=0 chksum=19025 Protocol: 6 sport=80 -> dport=49519 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=34178 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62454 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43458 flags=2 offset=0 ttl=54 chksum=3583 Protocol: 6 sport=80 -> dport=49522 Seq=3414939960 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=24112 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62455 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43459 flags=2 offset=0 ttl=54 chksum=3582 Protocol: 6 sport=80 -> dport=49522 Seq=3414941329 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=44838 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62456 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43460 flags=2 offset=0 ttl=54 chksum=3581 Protocol: 6 sport=80 -> dport=49522 Seq=3414942698 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=42666 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62457 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43461 flags=2 offset=0 ttl=54 chksum=3580 Protocol: 6 sport=80 -> dport=49522 Seq=3414944067 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=61623 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62458 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43462 flags=2 offset=0 ttl=54 chksum=3579 Protocol: 6 sport=80 -> dport=49522 Seq=3414945436 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=60223 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62459 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43463 flags=2 offset=0 ttl=54 chksum=3578 Protocol: 6 sport=80 -> dport=49522 Seq=3414946805 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=1318 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62460 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43464 flags=2 offset=0 ttl=54 chksum=3577 Protocol: 6 sport=80 -> dport=49522 Seq=3414948174 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=40665 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62461 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43465 flags=2 offset=0 ttl=54 chksum=3576 Protocol: 6 sport=80 -> dport=49522 Seq=3414949543 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=993 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62462 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43466 flags=2 offset=0 ttl=54 chksum=3575 Protocol: 6 sport=80 -> dport=49522 Seq=3414950912 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=37534 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62463 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43467 flags=2 offset=0 ttl=54 chksum=3574 Protocol: 6 sport=80 -> dport=49522 Seq=3414952281 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=58318 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62464 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43468 flags=2 offset=0 ttl=54 chksum=3573 Protocol: 6 sport=80 -> dport=49522 Seq=3414953650 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=36044 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62465 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43469 flags=2 offset=0 ttl=54 chksum=3572 Protocol: 6 sport=80 -> dport=49522 Seq=3414955019 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=14532 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62466 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43470 flags=2 offset=0 ttl=54 chksum=3571 Protocol: 6 sport=80 -> dport=49522 Seq=3414956388 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=52577 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62467 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43471 flags=2 offset=0 ttl=54 chksum=3570 Protocol: 6 sport=80 -> dport=49522 Seq=3414957757 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=15851 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62468 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33152 flags=2 offset=0 ttl=57 chksum=22187 Protocol: 6 sport=80 -> dport=49516 Seq=1382521962 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=48315 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62469 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33153 flags=2 offset=0 ttl=57 chksum=22186 Protocol: 6 sport=80 -> dport=49516 Seq=1382523331 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=12712 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62470 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33154 flags=2 offset=0 ttl=57 chksum=22185 Protocol: 6 sport=80 -> dport=49516 Seq=1382524700 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=35482 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62471 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33155 flags=2 offset=0 ttl=57 chksum=22184 Protocol: 6 sport=80 -> dport=49516 Seq=1382526069 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=51877 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62472 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33156 flags=2 offset=0 ttl=57 chksum=22183 Protocol: 6 sport=80 -> dport=49516 Seq=1382527438 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=273 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62473 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33157 flags=2 offset=0 ttl=57 chksum=22182 Protocol: 6 sport=80 -> dport=49516 Seq=1382528807 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=17039 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62474 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33158 flags=2 offset=0 ttl=57 chksum=22181 Protocol: 6 sport=80 -> dport=49516 Seq=1382530176 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=42180 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62475 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33159 flags=2 offset=0 ttl=57 chksum=22180 Protocol: 6 sport=80 -> dport=49516 Seq=1382531545 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=17551 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62476 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33160 flags=2 offset=0 ttl=57 chksum=22179 Protocol: 6 sport=80 -> dport=49516 Seq=1382532914 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=29629 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62477 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33161 flags=2 offset=0 ttl=57 chksum=22178 Protocol: 6 sport=80 -> dport=49516 Seq=1382534283 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=35235 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62478 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33162 flags=2 offset=0 ttl=57 chksum=22177 Protocol: 6 sport=80 -> dport=49516 Seq=1382535652 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=32928 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62479 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33163 flags=2 offset=0 ttl=57 chksum=22176 Protocol: 6 sport=80 -> dport=49516 Seq=1382537021 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=58151 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62480 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33164 flags=2 offset=0 ttl=57 chksum=22175 Protocol: 6 sport=80 -> dport=49516 Seq=1382538390 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=42714 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62481 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33165 flags=2 offset=0 ttl=57 chksum=22174 Protocol: 6 sport=80 -> dport=49516 Seq=1382539759 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=26014 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62482 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33166 flags=2 offset=0 ttl=57 chksum=22173 Protocol: 6 sport=80 -> dport=49516 Seq=1382541128 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=47519 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62483 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33167 flags=2 offset=0 ttl=57 chksum=22172 Protocol: 6 sport=80 -> dport=49516 Seq=1382542497 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=16346 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62484 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43472 flags=2 offset=0 ttl=54 chksum=3569 Protocol: 6 sport=80 -> dport=49522 Seq=3414959126 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=32454 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62485 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43473 flags=2 offset=0 ttl=54 chksum=3568 Protocol: 6 sport=80 -> dport=49522 Seq=3414960495 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=30588 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62486 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43474 flags=2 offset=0 ttl=54 chksum=3567 Protocol: 6 sport=80 -> dport=49522 Seq=3414961864 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=5731 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62487 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43475 flags=2 offset=0 ttl=54 chksum=3566 Protocol: 6 sport=80 -> dport=49522 Seq=3414963233 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=8115 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62488 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43476 flags=2 offset=0 ttl=54 chksum=3565 Protocol: 6 sport=80 -> dport=49522 Seq=3414964602 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=14773 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62489 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43477 flags=2 offset=0 ttl=54 chksum=3564 Protocol: 6 sport=80 -> dport=49522 Seq=3414965971 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=38645 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62490 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43478 flags=2 offset=0 ttl=54 chksum=3563 Protocol: 6 sport=80 -> dport=49522 Seq=3414967340 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=45413 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62491 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43479 flags=2 offset=0 ttl=54 chksum=3562 Protocol: 6 sport=80 -> dport=49522 Seq=3414968709 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=28575 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62492 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43480 flags=2 offset=0 ttl=54 chksum=3561 Protocol: 6 sport=80 -> dport=49522 Seq=3414970078 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=63405 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62493 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43481 flags=2 offset=0 ttl=54 chksum=3560 Protocol: 6 sport=80 -> dport=49522 Seq=3414971447 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=31226 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62494 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 192.229.163.16 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=43482 flags=2 offset=0 ttl=54 chksum=3559 Protocol: 6 sport=80 -> dport=49522 Seq=3414972816 Ack=3674915479 Off=5 Res=0 Flags=***A**** Win=288 urp=58490 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62495 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=37658 flags=2 offset=0 ttl=57 chksum=17681 Protocol: 6 sport=80 -> dport=49515 Seq=4229209409 Ack=3580355205 Off=5 Res=0 Flags=***A**** Win=60 urp=8724 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62496 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=37659 flags=2 offset=0 ttl=57 chksum=17680 Protocol: 6 sport=80 -> dport=49515 Seq=4229210778 Ack=3580355205 Off=5 Res=0 Flags=***A**** Win=60 urp=22739 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62497 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=37660 flags=2 offset=0 ttl=57 chksum=17679 Protocol: 6 sport=80 -> dport=49515 Seq=4229212147 Ack=3580355205 Off=5 Res=0 Flags=***A**** Win=60 urp=65380 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62498 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=37661 flags=2 offset=0 ttl=57 chksum=17678 Protocol: 6 sport=80 -> dport=49515 Seq=4229213516 Ack=3580355205 Off=5 Res=0 Flags=***A**** Win=60 urp=56596 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62499 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=37662 flags=2 offset=0 ttl=57 chksum=17677 Protocol: 6 sport=80 -> dport=49515 Seq=4229214885 Ack=3580355205 Off=5 Res=0 Flags=***A**** Win=60 urp=51343 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62500 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=37663 flags=2 offset=0 ttl=57 chksum=17676 Protocol: 6 sport=80 -> dport=49515 Seq=4229216254 Ack=3580355205 Off=5 Res=0 Flags=***A**** Win=60 urp=6148 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62501 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=37664 flags=2 offset=0 ttl=57 chksum=17675 Protocol: 6 sport=80 -> dport=49515 Seq=4229217623 Ack=3580355205 Off=5 Res=0 Flags=***A**** Win=60 urp=2124 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62502 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 98.136.171.208 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=19448 flags=2 offset=0 ttl=44 chksum=52070 Protocol: 6 sport=443 -> dport=49517 Seq=4090282669 Ack=1964397209 Off=5 Res=0 Flags=***A**** Win=23 urp=43977 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62503 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33168 flags=2 offset=0 ttl=57 chksum=22171 Protocol: 6 sport=80 -> dport=49516 Seq=1382543866 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=20098 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62504 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33169 flags=2 offset=0 ttl=57 chksum=22170 Protocol: 6 sport=80 -> dport=49516 Seq=1382545235 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=41900 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62505 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33170 flags=2 offset=0 ttl=57 chksum=22169 Protocol: 6 sport=80 -> dport=49516 Seq=1382546604 Ack=3986083597 Off=5 Res=0 Flags=***AP*** Win=60 urp=37743 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62506 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33171 flags=2 offset=0 ttl=57 chksum=22168 Protocol: 6 sport=80 -> dport=49516 Seq=1382547973 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=22330 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62507 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33172 flags=2 offset=0 ttl=57 chksum=22167 Protocol: 6 sport=80 -> dport=49516 Seq=1382549342 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=11413 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62508 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33173 flags=2 offset=0 ttl=57 chksum=22166 Protocol: 6 sport=80 -> dport=49516 Seq=1382550711 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=61949 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62509 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33174 flags=2 offset=0 ttl=57 chksum=22165 Protocol: 6 sport=80 -> dport=49516 Seq=1382552080 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=48307 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62510 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33175 flags=2 offset=0 ttl=57 chksum=22164 Protocol: 6 sport=80 -> dport=49516 Seq=1382553449 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=60120 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62511 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33176 flags=2 offset=0 ttl=57 chksum=22163 Protocol: 6 sport=80 -> dport=49516 Seq=1382554818 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=36242 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62512 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33177 flags=2 offset=0 ttl=57 chksum=22162 Protocol: 6 sport=80 -> dport=49516 Seq=1382556187 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=52908 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62513 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33178 flags=2 offset=0 ttl=57 chksum=22161 Protocol: 6 sport=80 -> dport=49516 Seq=1382557556 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=9553 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62514 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33179 flags=2 offset=0 ttl=57 chksum=22160 Protocol: 6 sport=80 -> dport=49516 Seq=1382558925 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=5505 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62515 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33180 flags=2 offset=0 ttl=57 chksum=22159 Protocol: 6 sport=80 -> dport=49516 Seq=1382560294 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=36794 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62516 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33181 flags=2 offset=0 ttl=57 chksum=22158 Protocol: 6 sport=80 -> dport=49516 Seq=1382561663 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=13054 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62517 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33182 flags=2 offset=0 ttl=57 chksum=22157 Protocol: 6 sport=80 -> dport=49516 Seq=1382563032 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=36373 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62518 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33183 flags=2 offset=0 ttl=57 chksum=22156 Protocol: 6 sport=80 -> dport=49516 Seq=1382564401 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=63731 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62519 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33184 flags=2 offset=0 ttl=57 chksum=22155 Protocol: 6 sport=80 -> dport=49516 Seq=1382565770 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=56379 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62520 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33185 flags=2 offset=0 ttl=57 chksum=22154 Protocol: 6 sport=80 -> dport=49516 Seq=1382567139 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=20994 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62521 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33186 flags=2 offset=0 ttl=57 chksum=22153 Protocol: 6 sport=80 -> dport=49516 Seq=1382568508 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=106 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62522 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33187 flags=2 offset=0 ttl=57 chksum=22152 Protocol: 6 sport=80 -> dport=49516 Seq=1382569877 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=49856 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62523 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33188 flags=2 offset=0 ttl=57 chksum=22151 Protocol: 6 sport=80 -> dport=49516 Seq=1382571246 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=12351 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62524 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 23.235.40.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=40 dlen=1409 ID=33189 flags=2 offset=0 ttl=57 chksum=22150 Protocol: 6 sport=80 -> dport=49516 Seq=1382572615 Ack=3986083597 Off=5 Res=0 Flags=***A**** Win=60 urp=11421 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62525 2015-11-24 16:17:37 SURICATA STREAM ESTABLISHED retransmission packet before last ack 98.136.171.208 -> 10.1.25.119 IPVer=4 hlen=5 tos=72 dlen=1409 ID=19449 flags=2 offset=0 ttl=44 chksum=52069 Protocol: 6 sport=443 -> dport=49517 Seq=4090284038 Ack=1964397209 Off=5 Res=0 Flags=***A**** Win=23 urp=36424 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62526 2015-11-24 16:17:37 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=990 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62527 2015-11-24 16:17:37 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=990 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62528 2015-11-24 16:17:37 GPL WEB_CLIENT web bug 0x0 gif attempt 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=990 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62529 2015-11-24 16:17:37 FILE tracking GIF (1x1 pixel) 74.125.226.90 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=510 ID=0 flags=0 offset=0 ttl=0 chksum=26795 Protocol: 6 sport=80 -> dport=49392 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=58086 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62530 2015-11-24 16:17:37 FILE tracking GIF (1x1 pixel) 74.125.226.90 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=510 ID=0 flags=0 offset=0 ttl=0 chksum=26795 Protocol: 6 sport=80 -> dport=49392 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=58086 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62531 2015-11-24 16:17:37 GPL WEB_CLIENT web bug 0x0 gif attempt 74.125.226.90 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=510 ID=0 flags=0 offset=0 ttl=0 chksum=26795 Protocol: 6 sport=80 -> dport=49392 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=58086 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62532 2015-11-24 16:17:40 FILE tracking GIF (1x1 pixel) 23.76.125.60 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=393 ID=0 flags=0 offset=0 ttl=0 chksum=368 Protocol: 6 sport=80 -> dport=49290 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20063 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62533 2015-11-24 16:17:40 GPL WEB_CLIENT web bug 0x0 gif attempt 23.76.125.60 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=393 ID=0 flags=0 offset=0 ttl=0 chksum=368 Protocol: 6 sport=80 -> dport=49290 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20063 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62534 2015-11-24 16:17:44 snort general alert 64.34.173.208 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=41997 Protocol: 6 sport=80 -> dport=49527 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2997 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62535 2015-11-24 16:17:47 snort general alert 64.34.173.208 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=41997 Protocol: 6 sport=80 -> dport=49525 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=25707 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62538 2015-11-24 16:18:25 SURICATA IPv4 padding required 10.1.25.119 -> 224.0.0.22 IPVer=4 hlen=6 tos=0 dlen=40 ID=7 flags=0 offset=0 ttl=1 chksum=8507 Protocol: 2 ------------------------------------------------------------------------ Count:1 Event#3.62539 2015-11-24 16:18:25 SURICATA IPv4 padding required 10.1.25.119 -> 224.0.0.22 IPVer=4 hlen=6 tos=0 dlen=40 ID=8 flags=0 offset=0 ttl=1 chksum=8506 Protocol: 2 ------------------------------------------------------------------------ Count:1 Event#3.62540 2015-11-24 16:18:25 SURICATA IPv4 padding required 10.1.25.119 -> 224.0.0.22 IPVer=4 hlen=6 tos=0 dlen=40 ID=11 flags=0 offset=0 ttl=1 chksum=8503 Protocol: 2 ------------------------------------------------------------------------ Count:1 Event#3.62541 2015-11-24 16:18:28 SURICATA IPv4 padding required 10.1.25.119 -> 224.0.0.22 IPVer=4 hlen=6 tos=0 dlen=40 ID=30 flags=0 offset=0 ttl=1 chksum=8484 Protocol: 2 ------------------------------------------------------------------------ Count:1 Event#3.62542 2015-11-24 16:18:28 SURICATA IPv4 padding required 10.1.25.119 -> 224.0.0.22 IPVer=4 hlen=6 tos=0 dlen=40 ID=31 flags=0 offset=0 ttl=1 chksum=8483 Protocol: 2 ------------------------------------------------------------------------ Count:1 Event#3.62543 2015-11-24 16:18:28 SURICATA IPv4 padding required 10.1.25.119 -> 224.0.0.22 IPVer=4 hlen=6 tos=0 dlen=40 ID=34 flags=0 offset=0 ttl=1 chksum=8480 Protocol: 2 ------------------------------------------------------------------------ Count:1 Event#3.62544 2015-11-24 16:18:42 FILE tracking GIF (1x1 pixel) 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=475 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62545 2015-11-24 16:18:42 GPL WEB_CLIENT web bug 0x0 gif attempt 52.7.205.103 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=38066 Protocol: 6 sport=80 -> dport=49408 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=475 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62546 2015-11-24 16:19:08 FILE tracking GIF (1x1 pixel) 23.62.6.40 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=349 ID=0 flags=0 offset=0 ttl=0 chksum=30910 Protocol: 6 sport=80 -> dport=49398 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20142 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62547 2015-11-24 16:19:08 GPL WEB_CLIENT web bug 0x0 gif attempt 23.62.6.40 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=349 ID=0 flags=0 offset=0 ttl=0 chksum=30910 Protocol: 6 sport=80 -> dport=49398 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20142 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62548 2015-11-24 16:19:08 FILE tracking GIF (1x1 pixel) 23.62.6.40 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=349 ID=0 flags=0 offset=0 ttl=0 chksum=30910 Protocol: 6 sport=80 -> dport=49498 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=19786 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62549 2015-11-24 16:19:08 GPL WEB_CLIENT web bug 0x0 gif attempt 23.62.6.40 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=349 ID=0 flags=0 offset=0 ttl=0 chksum=30910 Protocol: 6 sport=80 -> dport=49498 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=19786 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62550 2015-11-24 16:19:12 SURICATA STREAM SYN resend 96.6.151.147 -> 10.1.25.119 IPVer=4 hlen=5 tos=8 dlen=52 ID=0 flags=2 offset=0 ttl=58 chksum=9643 Protocol: 6 sport=80 -> dport=49161 Seq=136832118 Ack=2460217094 Off=8 Res=0 Flags=***A**S* Win=28480 urp=46698 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62551 2015-11-24 16:19:58 ET POLICY Reserved Internal IP Traffic 10.1.25.1 -> 10.1.25.119 IPVer=4 hlen=5 tos=192 dlen=328 ID=7553 flags=0 offset=0 ttl=64 chksum=5355 Protocol: 17 sport=67 -> dport=68 len=308 chksum=42209 ------------------------------------------------------------------------ Count:1 Event#3.62552 2015-11-24 16:19:59 ET POLICY Reserved Internal IP Traffic 10.1.25.119 -> 10.1.25.255 IPVer=4 hlen=5 tos=0 dlen=78 ID=325 flags=0 offset=0 ttl=128 chksum=61922 Protocol: 17 sport=137 -> dport=137 len=58 chksum=61300 ------------------------------------------------------------------------ Count:1 Event#3.62553 2015-11-24 16:20:06 SURICATA STREAM reassembly sequence GAP -- missing packet(s) 10.1.25.119 -> 74.125.226.177 IPVer=4 hlen=5 tos=0 dlen=40 ID=558 flags=2 offset=0 ttl=128 chksum=43003 Protocol: 6 sport=49185 -> dport=443 Seq=4195515818 Ack=1975432883 Off=5 Res=0 Flags=***A**** Win=251 urp=63526 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62556 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49208 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=60027 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62557 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49208 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=7461 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62558 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49208 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=61295 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62559 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=40153 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62560 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=3939 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62561 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=796 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62562 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=23 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62563 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=30352 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62564 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56750 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62565 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=39001 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62566 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=25365 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62567 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=4461 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62568 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=49285 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62569 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=12136 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62570 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=974 ID=0 flags=0 offset=0 ttl=0 chksum=5647 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=8885 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62571 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=40153 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62572 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=3939 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62573 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=796 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62574 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=23 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62575 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=30352 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62576 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56750 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62577 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=39001 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62578 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=25365 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62579 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=4461 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62580 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=49285 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62581 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=12136 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62582 2015-11-24 16:20:24 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=974 ID=0 flags=0 offset=0 ttl=0 chksum=5647 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=8885 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62583 2015-11-24 16:20:26 ET SHELLCODE UTF-8/16 Encoded Shellcode 23.21.60.77 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=16030 Protocol: 6 sport=80 -> dport=49253 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=37104 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62584 2015-11-24 16:20:26 ET SHELLCODE UTF-8/16 Encoded Shellcode 23.21.60.77 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=16030 Protocol: 6 sport=80 -> dport=49253 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=63174 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62585 2015-11-24 16:20:29 FILE tracking GIF (1x1 pixel) 173.194.123.26 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=510 ID=0 flags=0 offset=0 ttl=0 chksum=27814 Protocol: 6 sport=80 -> dport=49265 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=61275 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62586 2015-11-24 16:20:29 FILE tracking GIF (1x1 pixel) 173.194.123.26 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=510 ID=0 flags=0 offset=0 ttl=0 chksum=27814 Protocol: 6 sport=80 -> dport=49265 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=61275 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62587 2015-11-24 16:20:29 GPL WEB_CLIENT web bug 0x0 gif attempt 173.194.123.26 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=510 ID=0 flags=0 offset=0 ttl=0 chksum=27814 Protocol: 6 sport=80 -> dport=49265 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=61275 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62588 2015-11-24 16:20:29 FILE tracking GIF (1x1 pixel) 173.194.123.26 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=510 ID=0 flags=0 offset=0 ttl=0 chksum=27814 Protocol: 6 sport=80 -> dport=49266 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=61274 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62589 2015-11-24 16:20:29 FILE tracking GIF (1x1 pixel) 173.194.123.26 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=510 ID=0 flags=0 offset=0 ttl=0 chksum=27814 Protocol: 6 sport=80 -> dport=49266 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=61274 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62590 2015-11-24 16:20:29 GPL WEB_CLIENT web bug 0x0 gif attempt 173.194.123.26 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=510 ID=0 flags=0 offset=0 ttl=0 chksum=27814 Protocol: 6 sport=80 -> dport=49266 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=61274 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62591 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=33865 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62592 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=61779 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62593 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=58855 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62594 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=33417 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62595 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=64970 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62596 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=45483 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62597 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=16450 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62598 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=64536 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62599 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=29885 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62600 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=614 ID=0 flags=0 offset=0 ttl=0 chksum=6007 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=1516 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62601 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=33865 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62602 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=61779 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62603 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=58855 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62604 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=33417 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62605 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=64970 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62606 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=45483 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62607 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=16450 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62608 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=64536 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62609 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=29885 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62610 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=614 ID=0 flags=0 offset=0 ttl=0 chksum=6007 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=1516 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62611 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=62005 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62612 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=9114 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62613 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=565 ID=0 flags=0 offset=0 ttl=0 chksum=6056 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=23946 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62614 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=62005 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62615 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=9114 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62616 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=565 ID=0 flags=0 offset=0 ttl=0 chksum=6056 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=23946 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62617 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=45036 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62618 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=65042 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62619 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1244 ID=0 flags=0 offset=0 ttl=0 chksum=5377 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=48434 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62620 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=45036 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62621 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=65042 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62622 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1244 ID=0 flags=0 offset=0 ttl=0 chksum=5377 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=48434 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62623 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49208 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=51213 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62624 2015-11-24 16:20:31 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1078 ID=0 flags=0 offset=0 ttl=0 chksum=5543 Protocol: 6 sport=80 -> dport=49208 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=38024 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62625 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49208 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=37216 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62626 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49208 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=1870 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62627 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1075 ID=0 flags=0 offset=0 ttl=0 chksum=5546 Protocol: 6 sport=80 -> dport=49208 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=46051 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62628 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49208 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=37216 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62629 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49208 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=1870 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62630 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1075 ID=0 flags=0 offset=0 ttl=0 chksum=5546 Protocol: 6 sport=80 -> dport=49208 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=46051 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62631 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=16987 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62632 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=26823 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62633 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=895 ID=0 flags=0 offset=0 ttl=0 chksum=5726 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20356 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62634 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=16987 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62635 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=26823 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62636 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=895 ID=0 flags=0 offset=0 ttl=0 chksum=5726 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20356 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62637 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=13784 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62638 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=410 ID=0 flags=0 offset=0 ttl=0 chksum=6211 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20049 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62639 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=13784 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62640 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=410 ID=0 flags=0 offset=0 ttl=0 chksum=6211 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=20049 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62641 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=34472 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62642 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=9970 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62643 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=14219 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62644 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=44 ID=0 flags=0 offset=0 ttl=0 chksum=6577 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=26913 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62645 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=34472 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62646 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=9970 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62647 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=14219 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62648 2015-11-24 16:20:33 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=44 ID=0 flags=0 offset=0 ttl=0 chksum=6577 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=26913 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62649 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=43145 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62650 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=14058 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62651 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=836 ID=0 flags=0 offset=0 ttl=0 chksum=5785 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=18684 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62652 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=43145 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62653 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=14058 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62654 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=836 ID=0 flags=0 offset=0 ttl=0 chksum=5785 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=18684 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62655 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=40935 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62656 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=1147 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62657 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=14880 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62658 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=3736 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62659 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=25212 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62660 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=55621 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62661 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=697 ID=0 flags=0 offset=0 ttl=0 chksum=5924 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=31927 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62662 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=3736 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62663 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=25212 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62664 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=55621 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62665 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=697 ID=0 flags=0 offset=0 ttl=0 chksum=5924 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=31927 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62666 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1006 ID=0 flags=0 offset=0 ttl=0 chksum=5615 Protocol: 6 sport=80 -> dport=49209 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=63781 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62667 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1006 ID=0 flags=0 offset=0 ttl=0 chksum=5615 Protocol: 6 sport=80 -> dport=49209 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=63781 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62668 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49207 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=746 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62669 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49207 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=30616 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62670 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49207 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=42922 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62671 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49207 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=16291 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62672 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49207 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=39217 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62673 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=694 ID=0 flags=0 offset=0 ttl=0 chksum=5927 Protocol: 6 sport=80 -> dport=49207 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=50351 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62674 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49207 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=746 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62675 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49207 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=30616 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62676 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49207 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=42922 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62677 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49207 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=16291 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62678 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49207 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=39217 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62679 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=694 ID=0 flags=0 offset=0 ttl=0 chksum=5927 Protocol: 6 sport=80 -> dport=49207 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=50351 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62680 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=33562 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62681 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=24436 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62682 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=493 ID=0 flags=0 offset=0 ttl=0 chksum=6128 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=12363 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62683 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=33558 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62684 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1401 ID=0 flags=0 offset=0 ttl=0 chksum=5220 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=11150 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62685 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=33558 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62686 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1401 ID=0 flags=0 offset=0 ttl=0 chksum=5220 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=11150 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62687 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1218 ID=0 flags=0 offset=0 ttl=0 chksum=5403 Protocol: 6 sport=80 -> dport=49208 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=13997 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62688 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1218 ID=0 flags=0 offset=0 ttl=0 chksum=5403 Protocol: 6 sport=80 -> dport=49208 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=13997 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62689 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=32214 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62690 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=872 ID=0 flags=0 offset=0 ttl=0 chksum=5749 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=6378 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62691 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=32214 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62692 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=872 ID=0 flags=0 offset=0 ttl=0 chksum=5749 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=6378 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62693 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1216 ID=0 flags=0 offset=0 ttl=0 chksum=5405 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=53862 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62694 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1216 ID=0 flags=0 offset=0 ttl=0 chksum=5405 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=53862 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62695 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=63354 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62696 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49206 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=34628 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62697 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49208 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=7382 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62698 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=279 ID=0 flags=0 offset=0 ttl=0 chksum=6342 Protocol: 6 sport=80 -> dport=49208 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=59704 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62699 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49208 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=7382 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62700 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=279 ID=0 flags=0 offset=0 ttl=0 chksum=6342 Protocol: 6 sport=80 -> dport=49208 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=59704 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62701 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=27533 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62702 2015-11-24 16:20:46 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49210 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=1795 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62703 2015-11-24 16:20:46 snort general alert 23.62.6.43 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=29847 Protocol: 6 sport=80 -> dport=49216 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=16482 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62704 2015-11-24 16:20:46 snort general alert 23.62.6.49 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=29841 Protocol: 6 sport=80 -> dport=49204 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=50662 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62705 2015-11-24 16:20:46 snort general alert 23.62.6.49 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=29841 Protocol: 6 sport=80 -> dport=49203 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=17252 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62706 2015-11-24 16:20:46 snort general alert 23.62.6.49 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=29841 Protocol: 6 sport=80 -> dport=49203 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=6548 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62707 2015-11-24 16:20:46 snort general alert 23.62.6.49 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=29841 Protocol: 6 sport=80 -> dport=49203 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=44266 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62708 2015-11-24 16:20:46 snort general alert 23.62.6.43 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=29847 Protocol: 6 sport=80 -> dport=49212 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=62405 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62709 2015-11-24 16:20:46 snort general alert 23.62.6.43 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=29847 Protocol: 6 sport=80 -> dport=49212 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=33890 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62710 2015-11-24 16:20:46 snort general alert 23.62.6.43 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=29847 Protocol: 6 sport=80 -> dport=49212 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=2279 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62711 2015-11-24 16:20:47 FILE tracking GIF (1x1 pixel) 173.194.123.77 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1170 ID=0 flags=0 offset=0 ttl=0 chksum=27103 Protocol: 6 sport=80 -> dport=49247 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=35693 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62712 2015-11-24 16:20:47 FILE tracking GIF (1x1 pixel) 173.194.123.77 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1170 ID=0 flags=0 offset=0 ttl=0 chksum=27103 Protocol: 6 sport=80 -> dport=49247 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=35693 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62713 2015-11-24 16:20:47 GPL WEB_CLIENT web bug 0x0 gif attempt 173.194.123.77 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1170 ID=0 flags=0 offset=0 ttl=0 chksum=27103 Protocol: 6 sport=80 -> dport=49247 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=35693 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62714 2015-11-24 16:20:47 FILE tracking GIF (1x1 pixel) 173.194.123.77 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=740 ID=0 flags=0 offset=0 ttl=0 chksum=27533 Protocol: 6 sport=80 -> dport=49246 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=17999 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62715 2015-11-24 16:20:47 FILE tracking GIF (1x1 pixel) 173.194.123.77 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=740 ID=0 flags=0 offset=0 ttl=0 chksum=27533 Protocol: 6 sport=80 -> dport=49246 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=17999 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62716 2015-11-24 16:20:47 GPL WEB_CLIENT web bug 0x0 gif attempt 173.194.123.77 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=740 ID=0 flags=0 offset=0 ttl=0 chksum=27533 Protocol: 6 sport=80 -> dport=49246 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=17999 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62717 2015-11-24 16:20:47 FILE tracking GIF (1x1 pixel) 74.125.226.164 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=413 ID=0 flags=0 offset=0 ttl=0 chksum=26818 Protocol: 6 sport=80 -> dport=49239 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=57023 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62718 2015-11-24 16:20:47 FILE tracking GIF (1x1 pixel) 74.125.226.164 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=413 ID=0 flags=0 offset=0 ttl=0 chksum=26818 Protocol: 6 sport=80 -> dport=49239 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=57023 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62719 2015-11-24 16:20:47 GPL WEB_CLIENT web bug 0x0 gif attempt 74.125.226.164 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=413 ID=0 flags=0 offset=0 ttl=0 chksum=26818 Protocol: 6 sport=80 -> dport=49239 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=57023 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62720 2015-11-24 16:20:47 FILE tracking GIF (1x1 pixel) 74.125.226.177 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=383 ID=0 flags=0 offset=0 ttl=0 chksum=26835 Protocol: 6 sport=80 -> dport=49258 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=27316 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62721 2015-11-24 16:20:47 FILE tracking GIF (1x1 pixel) 74.125.226.177 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=383 ID=0 flags=0 offset=0 ttl=0 chksum=26835 Protocol: 6 sport=80 -> dport=49258 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=27316 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62722 2015-11-24 16:20:47 GPL WEB_CLIENT web bug 0x0 gif attempt 74.125.226.177 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=383 ID=0 flags=0 offset=0 ttl=0 chksum=26835 Protocol: 6 sport=80 -> dport=49258 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=27316 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62723 2015-11-24 16:20:47 FILE tracking GIF (1x1 pixel) 74.125.226.177 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=383 ID=0 flags=0 offset=0 ttl=0 chksum=26835 Protocol: 6 sport=80 -> dport=49180 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=27394 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62724 2015-11-24 16:20:47 FILE tracking GIF (1x1 pixel) 74.125.226.177 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=383 ID=0 flags=0 offset=0 ttl=0 chksum=26835 Protocol: 6 sport=80 -> dport=49180 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=27394 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62725 2015-11-24 16:20:47 GPL WEB_CLIENT web bug 0x0 gif attempt 74.125.226.177 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=383 ID=0 flags=0 offset=0 ttl=0 chksum=26835 Protocol: 6 sport=80 -> dport=49180 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=27394 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62726 2015-11-24 16:20:47 FILE tracking GIF (1x1 pixel) 74.125.141.154 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=426 ID=0 flags=0 offset=0 ttl=0 chksum=48575 Protocol: 6 sport=80 -> dport=49250 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=63025 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62727 2015-11-24 16:20:47 FILE tracking GIF (1x1 pixel) 74.125.141.154 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=426 ID=0 flags=0 offset=0 ttl=0 chksum=48575 Protocol: 6 sport=80 -> dport=49250 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=63025 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62728 2015-11-24 16:20:47 GPL WEB_CLIENT web bug 0x0 gif attempt 74.125.141.154 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=426 ID=0 flags=0 offset=0 ttl=0 chksum=48575 Protocol: 6 sport=80 -> dport=49250 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=63025 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62729 2015-11-24 16:20:47 FILE tracking GIF (1x1 pixel) 74.125.226.186 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=644 ID=0 flags=0 offset=0 ttl=0 chksum=26565 Protocol: 6 sport=80 -> dport=49254 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=9265 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62730 2015-11-24 16:20:47 FILE tracking GIF (1x1 pixel) 74.125.226.186 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=644 ID=0 flags=0 offset=0 ttl=0 chksum=26565 Protocol: 6 sport=80 -> dport=49254 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=9265 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62731 2015-11-24 16:20:47 GPL WEB_CLIENT web bug 0x0 gif attempt 74.125.226.186 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=644 ID=0 flags=0 offset=0 ttl=0 chksum=26565 Protocol: 6 sport=80 -> dport=49254 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=9265 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62732 2015-11-24 16:20:48 FILE tracking GIF (1x1 pixel) 50.17.225.145 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=321 ID=0 flags=0 offset=0 ttl=0 chksum=33437 Protocol: 6 sport=80 -> dport=49263 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=22560 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62733 2015-11-24 16:20:48 FILE tracking GIF (1x1 pixel) 50.17.225.145 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=321 ID=0 flags=0 offset=0 ttl=0 chksum=33437 Protocol: 6 sport=80 -> dport=49263 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=22560 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62734 2015-11-24 16:20:48 GPL WEB_CLIENT web bug 0x0 gif attempt 50.17.225.145 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=321 ID=0 flags=0 offset=0 ttl=0 chksum=33437 Protocol: 6 sport=80 -> dport=49263 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=22560 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62735 2015-11-24 16:20:51 FILE tracking GIF (1x1 pixel) 184.73.196.115 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=6385 Protocol: 6 sport=80 -> dport=49316 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56763 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62736 2015-11-24 16:20:51 FILE tracking GIF (1x1 pixel) 184.73.196.115 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=6385 Protocol: 6 sport=80 -> dport=49316 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56763 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62737 2015-11-24 16:20:51 GPL WEB_CLIENT web bug 0x0 gif attempt 184.73.196.115 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=6385 Protocol: 6 sport=80 -> dport=49316 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56763 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62738 2015-11-24 16:20:51 FILE tracking GIF (1x1 pixel) 184.73.196.115 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=6385 Protocol: 6 sport=80 -> dport=49316 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56763 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62739 2015-11-24 16:20:51 FILE tracking GIF (1x1 pixel) 184.73.196.115 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=6385 Protocol: 6 sport=80 -> dport=49316 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56763 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62740 2015-11-24 16:20:51 GPL WEB_CLIENT web bug 0x0 gif attempt 184.73.196.115 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=6385 Protocol: 6 sport=80 -> dport=49316 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56763 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62741 2015-11-24 16:20:53 FILE tracking GIF (1x1 pixel) 204.2.197.201 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1341 ID=0 flags=0 offset=0 ttl=0 chksum=120 Protocol: 6 sport=80 -> dport=49341 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=57071 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62742 2015-11-24 16:20:53 GPL WEB_CLIENT web bug 0x0 gif attempt 204.2.197.201 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1341 ID=0 flags=0 offset=0 ttl=0 chksum=120 Protocol: 6 sport=80 -> dport=49341 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=57071 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62743 2015-11-24 16:21:03 FILE tracking GIF (1x1 pixel) 199.38.164.54 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1269 ID=0 flags=0 offset=0 ttl=0 chksum=10031 Protocol: 6 sport=80 -> dport=49331 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=59349 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62744 2015-11-24 16:21:03 GPL WEB_CLIENT web bug 0x0 gif attempt 199.38.164.54 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1269 ID=0 flags=0 offset=0 ttl=0 chksum=10031 Protocol: 6 sport=80 -> dport=49331 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=59349 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62745 2015-11-24 16:21:04 FILE tracking GIF (1x1 pixel) 74.125.226.177 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=383 ID=0 flags=0 offset=0 ttl=0 chksum=26835 Protocol: 6 sport=80 -> dport=49180 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=27141 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62746 2015-11-24 16:21:04 GPL WEB_CLIENT web bug 0x0 gif attempt 74.125.226.177 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=383 ID=0 flags=0 offset=0 ttl=0 chksum=26835 Protocol: 6 sport=80 -> dport=49180 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=27141 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62747 2015-11-24 16:21:04 FILE tracking GIF (1x1 pixel) 74.125.226.177 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=383 ID=0 flags=0 offset=0 ttl=0 chksum=26835 Protocol: 6 sport=80 -> dport=49258 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=27063 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62748 2015-11-24 16:21:04 GPL WEB_CLIENT web bug 0x0 gif attempt 74.125.226.177 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=383 ID=0 flags=0 offset=0 ttl=0 chksum=26835 Protocol: 6 sport=80 -> dport=49258 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=27063 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62749 2015-11-24 16:21:04 snort general alert 23.62.6.49 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=29841 Protocol: 6 sport=80 -> dport=49202 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=63437 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62750 2015-11-24 16:21:04 snort general alert 23.62.6.49 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=29841 Protocol: 6 sport=80 -> dport=49202 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=62819 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62751 2015-11-24 16:21:04 snort general alert 23.62.6.49 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=29841 Protocol: 6 sport=80 -> dport=49202 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=47166 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62752 2015-11-24 16:21:04 snort general alert 23.62.6.49 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=306 ID=0 flags=0 offset=0 ttl=0 chksum=30944 Protocol: 6 sport=80 -> dport=49202 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=48035 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62753 2015-11-24 16:21:04 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1267 ID=0 flags=0 offset=0 ttl=0 chksum=5354 Protocol: 6 sport=80 -> dport=49208 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=40050 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62754 2015-11-24 16:21:04 FILE tracking PNG (1x1 pixel) (1) 184.84.243.193 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=352 ID=0 flags=0 offset=0 ttl=0 chksum=59914 Protocol: 6 sport=80 -> dport=49242 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=28179 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62755 2015-11-24 16:21:04 FILE tracking GIF (1x1 pixel) 74.125.226.164 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=426 ID=0 flags=0 offset=0 ttl=0 chksum=26805 Protocol: 6 sport=80 -> dport=49239 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=48662 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62756 2015-11-24 16:21:04 GPL WEB_CLIENT web bug 0x0 gif attempt 74.125.226.164 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=426 ID=0 flags=0 offset=0 ttl=0 chksum=26805 Protocol: 6 sport=80 -> dport=49239 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=48662 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62757 2015-11-24 16:21:04 FILE tracking GIF (1x1 pixel) 173.194.123.77 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=826 ID=0 flags=0 offset=0 ttl=0 chksum=27447 Protocol: 6 sport=80 -> dport=49246 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=22855 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62758 2015-11-24 16:21:04 GPL WEB_CLIENT web bug 0x0 gif attempt 173.194.123.77 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=826 ID=0 flags=0 offset=0 ttl=0 chksum=27447 Protocol: 6 sport=80 -> dport=49246 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=22855 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62759 2015-11-24 16:21:04 FILE tracking GIF (1x1 pixel) 184.73.196.115 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=6385 Protocol: 6 sport=80 -> dport=49316 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56763 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62760 2015-11-24 16:21:04 GPL WEB_CLIENT web bug 0x0 gif attempt 184.73.196.115 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=6385 Protocol: 6 sport=80 -> dport=49316 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56763 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62761 2015-11-24 16:21:04 FILE tracking GIF (1x1 pixel) 173.194.123.26 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=510 ID=0 flags=0 offset=0 ttl=0 chksum=27814 Protocol: 6 sport=80 -> dport=49265 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=61275 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62762 2015-11-24 16:21:04 GPL WEB_CLIENT web bug 0x0 gif attempt 173.194.123.26 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=510 ID=0 flags=0 offset=0 ttl=0 chksum=27814 Protocol: 6 sport=80 -> dport=49265 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=61275 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62763 2015-11-24 16:21:04 FILE tracking GIF (1x1 pixel) 54.86.229.18 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=588 ID=0 flags=0 offset=0 ttl=0 chksum=31180 Protocol: 6 sport=80 -> dport=49339 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=25089 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62764 2015-11-24 16:21:04 GPL WEB_CLIENT web bug 0x0 gif attempt 54.86.229.18 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=588 ID=0 flags=0 offset=0 ttl=0 chksum=31180 Protocol: 6 sport=80 -> dport=49339 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=25089 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62765 2015-11-24 16:21:04 FILE tracking GIF (1x1 pixel) 54.191.8.37 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=711 ID=0 flags=0 offset=0 ttl=0 chksum=21974 Protocol: 6 sport=80 -> dport=49350 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=21206 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62766 2015-11-24 16:21:04 GPL WEB_CLIENT web bug 0x0 gif attempt 54.191.8.37 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=711 ID=0 flags=0 offset=0 ttl=0 chksum=21974 Protocol: 6 sport=80 -> dport=49350 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=21206 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62767 2015-11-24 16:21:04 FILE tracking GIF (1x1 pixel) 54.191.215.15 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=588 ID=0 flags=0 offset=0 ttl=0 chksum=34662 Protocol: 6 sport=80 -> dport=49348 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=28562 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62768 2015-11-24 16:21:04 GPL WEB_CLIENT web bug 0x0 gif attempt 54.191.215.15 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=588 ID=0 flags=0 offset=0 ttl=0 chksum=34662 Protocol: 6 sport=80 -> dport=49348 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=28562 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62769 2015-11-24 16:21:04 snort general alert 23.62.6.49 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=692 ID=0 flags=0 offset=0 ttl=0 chksum=30558 Protocol: 6 sport=80 -> dport=49201 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=3819 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62770 2015-11-24 16:21:04 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49207 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=33 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62771 2015-11-24 16:21:04 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49207 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=54757 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62772 2015-11-24 16:21:04 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=863 ID=0 flags=0 offset=0 ttl=0 chksum=5758 Protocol: 6 sport=80 -> dport=49207 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=53304 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62773 2015-11-24 16:21:04 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49209 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=887 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62774 2015-11-24 16:21:04 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1090 ID=0 flags=0 offset=0 ttl=0 chksum=5531 Protocol: 6 sport=80 -> dport=49209 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=35215 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62775 2015-11-24 16:21:04 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=8582 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62776 2015-11-24 16:21:04 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=10753 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62777 2015-11-24 16:21:04 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1409 ID=0 flags=0 offset=0 ttl=0 chksum=5212 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=7101 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62778 2015-11-24 16:21:04 snort general alert 23.9.102.155 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=634 ID=0 flags=0 offset=0 ttl=0 chksum=5987 Protocol: 6 sport=80 -> dport=49211 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=50805 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62779 2015-11-24 16:21:04 FILE tracking GIF (1x1 pixel) 108.168.240.194 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=573 ID=0 flags=0 offset=0 ttl=0 chksum=14297 Protocol: 6 sport=80 -> dport=49338 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=63762 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62780 2015-11-24 16:21:04 GPL WEB_CLIENT web bug 0x0 gif attempt 108.168.240.194 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=573 ID=0 flags=0 offset=0 ttl=0 chksum=14297 Protocol: 6 sport=80 -> dport=49338 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=63762 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62781 2015-11-24 16:21:04 FILE tracking GIF (1x1 pixel) 74.125.226.164 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=426 ID=0 flags=0 offset=0 ttl=0 chksum=26805 Protocol: 6 sport=80 -> dport=49238 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=50193 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62782 2015-11-24 16:21:04 GPL WEB_CLIENT web bug 0x0 gif attempt 74.125.226.164 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=426 ID=0 flags=0 offset=0 ttl=0 chksum=26805 Protocol: 6 sport=80 -> dport=49238 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=50193 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62783 2015-11-24 16:21:04 FILE tracking GIF (1x1 pixel) 173.194.123.77 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1115 ID=0 flags=0 offset=0 ttl=0 chksum=27158 Protocol: 6 sport=80 -> dport=49247 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=21094 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62784 2015-11-24 16:21:04 GPL WEB_CLIENT web bug 0x0 gif attempt 173.194.123.77 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=1115 ID=0 flags=0 offset=0 ttl=0 chksum=27158 Protocol: 6 sport=80 -> dport=49247 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=21094 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62785 2015-11-24 16:21:04 FILE tracking GIF (1x1 pixel) 74.125.141.154 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=426 ID=0 flags=0 offset=0 ttl=0 chksum=48575 Protocol: 6 sport=80 -> dport=49250 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=65070 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62786 2015-11-24 16:21:04 GPL WEB_CLIENT web bug 0x0 gif attempt 74.125.141.154 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=426 ID=0 flags=0 offset=0 ttl=0 chksum=48575 Protocol: 6 sport=80 -> dport=49250 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=65070 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62787 2015-11-24 16:21:04 FILE tracking GIF (1x1 pixel) 74.125.226.186 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=528 ID=0 flags=0 offset=0 ttl=0 chksum=26681 Protocol: 6 sport=80 -> dport=49254 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=27383 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62788 2015-11-24 16:21:04 GPL WEB_CLIENT web bug 0x0 gif attempt 74.125.226.186 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=528 ID=0 flags=0 offset=0 ttl=0 chksum=26681 Protocol: 6 sport=80 -> dport=49254 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=27383 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62789 2015-11-24 16:21:04 FILE tracking GIF (1x1 pixel) 50.17.225.145 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=321 ID=0 flags=0 offset=0 ttl=0 chksum=33437 Protocol: 6 sport=80 -> dport=49263 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=22307 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62790 2015-11-24 16:21:04 GPL WEB_CLIENT web bug 0x0 gif attempt 50.17.225.145 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=321 ID=0 flags=0 offset=0 ttl=0 chksum=33437 Protocol: 6 sport=80 -> dport=49263 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=22307 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62791 2015-11-24 16:21:04 FILE tracking GIF (1x1 pixel) 173.194.123.26 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=510 ID=0 flags=0 offset=0 ttl=0 chksum=27814 Protocol: 6 sport=80 -> dport=49266 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=61274 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62792 2015-11-24 16:21:04 GPL WEB_CLIENT web bug 0x0 gif attempt 173.194.123.26 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=510 ID=0 flags=0 offset=0 ttl=0 chksum=27814 Protocol: 6 sport=80 -> dport=49266 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=61274 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62793 2015-11-24 16:21:04 FILE tracking GIF (1x1 pixel) 184.73.196.115 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=6385 Protocol: 6 sport=80 -> dport=49319 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56760 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62794 2015-11-24 16:21:04 GPL WEB_CLIENT web bug 0x0 gif attempt 184.73.196.115 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=6385 Protocol: 6 sport=80 -> dport=49319 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56760 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62795 2015-11-24 16:21:04 FILE tracking GIF (1x1 pixel) 184.73.196.115 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=6385 Protocol: 6 sport=80 -> dport=49321 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56758 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62796 2015-11-24 16:21:04 GPL WEB_CLIENT web bug 0x0 gif attempt 184.73.196.115 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=467 ID=0 flags=0 offset=0 ttl=0 chksum=6385 Protocol: 6 sport=80 -> dport=49321 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=56758 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62797 2015-11-24 16:21:38 FILE tracking GIF (1x1 pixel) 74.125.226.90 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=510 ID=0 flags=0 offset=0 ttl=0 chksum=26795 Protocol: 6 sport=80 -> dport=49392 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=58083 chksum=0 ------------------------------------------------------------------------ Count:1 Event#3.62798 2015-11-24 16:21:38 GPL WEB_CLIENT web bug 0x0 gif attempt 74.125.226.90 -> 10.1.25.119 IPVer=4 hlen=5 tos=0 dlen=510 ID=0 flags=0 offset=0 ttl=0 chksum=26795 Protocol: 6 sport=80 -> dport=49392 Seq=0 Ack=0 Off=5 Res=0 Flags=******** Win=0 urp=58083 chksum=0 ------------------------------------------------------------------------ Count:1 Event#4.160 2015-11-24 16:13:30 PADS New Asset - http Microsoft NCSI 10.1.25.119 -> 165.254.155.43 IPVer=0 hlen=0 tos=0 dlen=0 ID=0 flags=0 offset=0 ttl=0 chksum=0 Protocol: 6 sport=49157 -> dport=80 Seq= Ack= Off= Res= Flags=........ Win= urp= chksum= ------------------------------------------------------------------------ Count:1 Event#4.161 2015-11-24 16:14:02 PADS New Asset - unknown @https 10.1.25.119 -> 74.125.226.180 IPVer=0 hlen=0 tos=0 dlen=0 ID=0 flags=0 offset=0 ttl=0 chksum=0 Protocol: 6 sport=49172 -> dport=443 Seq= Ack= Off= Res= Flags=........ Win= urp= chksum= ------------------------------------------------------------------------ Count:1 Event#4.162 2015-11-24 16:16:38 PADS New Asset - http Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko 10.1.25.119 -> 74.125.226.161 IPVer=0 hlen=0 tos=0 dlen=0 ID=0 flags=0 offset=0 ttl=0 chksum=0 Protocol: 6 sport=49469 -> dport=80 Seq= Ack= Off= Res= Flags=........ Win= urp= chksum=