Suricata Alerts

Timestamp Source IP Source Port Destination IP Destination Port Protocol GID SID REV Signature Category Severity
2020-05-23 00:47:12.190 192.168.1.9 [VT] 59225 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:47:13.176 192.168.1.9 [VT] 59225 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:47:14.176 192.168.1.9 [VT] 59225 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:47:16.176 192.168.1.9 [VT] 59225 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:47:16.176 192.168.1.9 [VT] 59225 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:47:20.175 192.168.1.9 [VT] 59225 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:47:20.176 192.168.1.9 [VT] 59225 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:47:31.431 192.168.1.9 [VT] 54609 8.8.8.8 [VT] 53 UDP 1 2023883 3 ET DNS Query to a *.top domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:47:42.681 192.168.1.9 [VT] 55319 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:47:42.681 192.168.1.9 [VT] 55319 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:47:42.682 192.168.1.9 [VT] 55319 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:47:42.683 192.168.1.9 [VT] 55319 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:47:42.684 192.168.1.9 [VT] 55319 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:47:42.684 192.168.1.9 [VT] 55319 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:47:42.685 192.168.1.9 [VT] 55319 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:05.186 192.168.1.9 [VT] 63630 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:05.187 192.168.1.9 [VT] 63630 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:05.187 192.168.1.9 [VT] 63630 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:05.188 192.168.1.9 [VT] 63630 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:05.189 192.168.1.9 [VT] 63630 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:05.189 192.168.1.9 [VT] 63630 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:05.190 192.168.1.9 [VT] 63630 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:16.442 192.168.1.9 [VT] 54190 8.8.8.8 [VT] 53 UDP 1 2023883 3 ET DNS Query to a *.top domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:27.699 192.168.1.9 [VT] 57309 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:27.700 192.168.1.9 [VT] 57309 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:27.701 192.168.1.9 [VT] 57309 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:27.702 192.168.1.9 [VT] 57309 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:27.702 192.168.1.9 [VT] 57309 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:27.703 192.168.1.9 [VT] 57309 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:27.703 192.168.1.9 [VT] 57309 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:50.212 192.168.1.9 [VT] 64185 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:50.213 192.168.1.9 [VT] 64185 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:50.214 192.168.1.9 [VT] 64185 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:50.215 192.168.1.9 [VT] 64185 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:50.215 192.168.1.9 [VT] 64185 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:50.216 192.168.1.9 [VT] 64185 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:48:50.217 192.168.1.9 [VT] 64185 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:49:12.709 192.168.1.9 [VT] 57511 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:49:13.707 192.168.1.9 [VT] 57511 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:49:13.708 192.168.1.9 [VT] 57511 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:49:15.707 192.168.1.9 [VT] 57511 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:49:15.708 192.168.1.9 [VT] 57511 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:49:15.709 192.168.1.9 [VT] 57511 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:49:15.709 192.168.1.9 [VT] 57511 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:49:26.965 192.168.1.9 [VT] 49327 1.1.1.1 [VT] 53 UDP 1 2023883 3 ET DNS Query to a *.top domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:49:38.213 192.168.1.9 [VT] 57024 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:49:38.216 192.168.1.9 [VT] 57024 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:49:38.216 192.168.1.9 [VT] 57024 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:49:38.217 192.168.1.9 [VT] 57024 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:49:38.217 192.168.1.9 [VT] 57024 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:49:38.218 192.168.1.9 [VT] 57024 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:49:38.218 192.168.1.9 [VT] 57024 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:50:00.710 192.168.1.9 [VT] 63034 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:50:00.711 192.168.1.9 [VT] 63034 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:50:00.712 192.168.1.9 [VT] 63034 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:50:00.712 192.168.1.9 [VT] 63034 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:50:00.713 192.168.1.9 [VT] 63034 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:50:00.714 192.168.1.9 [VT] 63034 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:50:00.714 192.168.1.9 [VT] 63034 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:50:11.960 192.168.1.9 [VT] 52107 8.8.8.8 [VT] 53 UDP 1 2023883 3 ET DNS Query to a *.top domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:50:23.214 192.168.1.9 [VT] 52387 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:50:23.214 192.168.1.9 [VT] 52387 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:50:23.215 192.168.1.9 [VT] 52387 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:50:23.216 192.168.1.9 [VT] 52387 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:50:23.216 192.168.1.9 [VT] 52387 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:50:23.217 192.168.1.9 [VT] 52387 1.1.1.1 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2
2020-05-23 00:50:23.218 192.168.1.9 [VT] 52387 8.8.8.8 [VT] 53 UDP 1 2016778 6 ET DNS Query to a *.pw domain - Likely Hostile Potentially Bad Traffic 2