Alert Table for wwb001-skyhigh.pcapng

Relative Time	Packet	Source	Source Port	Destination	Dest Port	Category	Rule Set	Signature	Severity
51.0	272	192.168.1.74	60242	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
52.0	277	192.168.1.74	49786	192.168.1.254	53	Misc activity	ET INFO	DNS Query for Suspicious .ga Domain	3
58.0	315	192.168.1.74	60243	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
58.0	368	66.84.12.75	80	192.168.1.74	60243	Possible Social Engineering Attempted	ET WEB_CLIENT	Generic Fake Support Phone Scam Mar 9 M3	2
58.0	368	66.84.12.75	80	192.168.1.74	60243	Possible Social Engineering Attempted	ET WEB_CLIENT	Tech Support Phone Scam Landing (err.mp3) 2016-08-12	2
58.0	574	192.168.1.74	60246	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
58.0	582	192.168.1.74	60247	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	1002	192.168.1.74	60258	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	1019	192.168.1.74	60259	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	1105	192.168.1.74	60260	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	1199	192.168.1.74	60261	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	1313	192.168.1.74	60263	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	1318	192.168.1.74	60264	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	1328	192.168.1.74	60265	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	1409	192.168.1.74	60262	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	1505	192.168.1.74	60266	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	1543	66.84.12.75	80	192.168.1.74	60262	Possible Social Engineering Attempted	ET WEB_CLIENT	Tech Support Phone Scam Landing M1 Jan 20 2017	2
59.0	1610	192.168.1.74	60267	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	1618	192.168.1.74	60268	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	674	192.168.1.74	60249	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	675	192.168.1.74	60250	66.84.12.75	80	Generic Protocol Command Decode		SURICATA Applayer Detect protocol only one direction	3
59.0	675	192.168.1.74	60250	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	676	192.168.1.74	60252	66.84.12.75	80	Generic Protocol Command Decode		SURICATA Applayer Detect protocol only one direction	3
59.0	676	192.168.1.74	60252	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	677	192.168.1.74	60251	66.84.12.75	80	Generic Protocol Command Decode		SURICATA Applayer Detect protocol only one direction	3
59.0	677	192.168.1.74	60251	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	688	192.168.1.74	60253	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	692	192.168.1.74	60254	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	774	192.168.1.74	60256	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	777	192.168.1.74	60255	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2
59.0	993	66.84.12.75	80	192.168.1.74	60256	Possible Social Engineering Attempted	ET WEB_CLIENT	Generic Fake Support Phone Scam Mar 8	2
59.0	993	66.84.12.75	80	192.168.1.74	60256	Possible Social Engineering Attempted	ET WEB_CLIENT	Tech Support Phone Scam Landing (err.mp3) 2016-08-12	2
59.0	999	192.168.1.74	60257	66.84.12.75	80	Potentially Bad Traffic	ET INFO	HTTP Request to a *.ga domain	2

Open in new window Done