Suricata Alerts

Timestamp Source IP Source Port Destination IP Destination Port Protocol GID SID REV Signature Category Severity
2020-05-23 00:42:37.820 192.168.1.9 [VT] 59225 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:42:38.807 192.168.1.9 [VT] 59225 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:42:39.806 192.168.1.9 [VT] 59225 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:42:41.808 192.168.1.9 [VT] 59225 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:42:41.808 192.168.1.9 [VT] 59225 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:42:45.806 192.168.1.9 [VT] 59225 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:42:45.806 192.168.1.9 [VT] 59225 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:42:58.056 192.168.1.9 [VT] 54609 1.1.1.1 [VT] 53 UDP 1 2023883 3 ET DNS Query to a *.top domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:43:16.314 192.168.1.9 [VT] 55319 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:43:17.307 192.168.1.9 [VT] 55319 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:43:18.309 192.168.1.9 [VT] 55319 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:43:20.306 192.168.1.9 [VT] 55319 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:43:20.306 192.168.1.9 [VT] 55319 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:43:24.306 192.168.1.9 [VT] 55319 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:43:24.306 192.168.1.9 [VT] 55319 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:43:35.560 192.168.1.9 [VT] 51751 8.8.8.8 [VT] 53 UDP 1 2023883 3 ET DNS Query to a *.top domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:43:54.811 192.168.1.9 [VT] 63630 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:43:55.806 192.168.1.9 [VT] 63630 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:43:56.806 192.168.1.9 [VT] 63630 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:43:58.806 192.168.1.9 [VT] 63630 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:43:58.806 192.168.1.9 [VT] 63630 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:44:02.806 192.168.1.9 [VT] 63630 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:44:02.807 192.168.1.9 [VT] 63630 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:44:33.310 192.168.1.9 [VT] 62770 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:44:34.306 192.168.1.9 [VT] 62770 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:44:35.306 192.168.1.9 [VT] 62770 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:44:37.306 192.168.1.9 [VT] 62770 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:44:37.306 192.168.1.9 [VT] 62770 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:44:41.306 192.168.1.9 [VT] 62770 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:44:41.306 192.168.1.9 [VT] 62770 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:44:52.560 192.168.1.9 [VT] 49929 8.8.8.8 [VT] 53 UDP 1 2023883 3 ET DNS Query to a *.top domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:45:11.809 192.168.1.9 [VT] 62673 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:45:12.806 192.168.1.9 [VT] 62673 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:45:13.806 192.168.1.9 [VT] 62673 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:45:15.807 192.168.1.9 [VT] 62673 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:45:15.808 192.168.1.9 [VT] 62673 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:45:19.812 192.168.1.9 [VT] 62673 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:45:19.813 192.168.1.9 [VT] 62673 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:45:31.063 192.168.1.9 [VT] 57353 8.8.8.8 [VT] 53 UDP 1 2023883 3 ET DNS Query to a *.top domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:45:50.309 192.168.1.9 [VT] 57511 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:45:51.306 192.168.1.9 [VT] 57511 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:45:52.306 192.168.1.9 [VT] 57511 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:45:54.306 192.168.1.9 [VT] 57511 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:45:54.307 192.168.1.9 [VT] 57511 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:45:58.306 192.168.1.9 [VT] 57511 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:45:58.307 192.168.1.9 [VT] 57511 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2