Edit tour
Linux
Analysis Report
5OGAx17mRN.elf
Overview
General Information
Detection
Mirai
Score: | 72 |
Range: | 0 - 100 |
Whitelisted: | false |
Signatures
Malicious sample detected (through community Yara rule)
Yara detected Mirai
Multi AV Scanner detection for submitted file
Sample is packed with UPX
Uses known network protocols on non-standard ports
Sample contains only a LOAD segment without any section mappings
Yara signature match
Uses the "uname" system call to query kernel version information (possible evasion)
Detected TCP or UDP traffic on non-standard ports
Sample listens on a socket
ELF contains segments with high entropy indicating compressed/encrypted content
Classification
Analysis Advice
Static ELF header machine description suggests that the sample might not execute correctly on this machine. |
Static ELF header machine description suggests that the sample might only run correctly on MIPS or ARM architectures. |
Joe Sandbox Version: | 38.0.0 Ammolite |
Analysis ID: | 1345559 |
Start date and time: | 2023-11-21 03:14:05 +01:00 |
Joe Sandbox Product: | CloudBasic |
Overall analysis duration: | 0h 7m 46s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | defaultlinuxfilecookbook.jbs |
Analysis system description: | Ubuntu Linux 20.04 x64 (Kernel 5.4.0-72, Firefox 91.0, Evince Document Viewer 3.36.10, LibreOffice 6.4.7.2, OpenJDK 11.0.11) |
Analysis Mode: | default |
Sample file name: | 5OGAx17mRN.elfrenamed because original name is a hash value |
Original Sample Name: | 22769c1fd6d4ee506a64408ffb831681.elf |
Detection: | MAL |
Classification: | mal72.troj.evad.linELF@0/0@2/0 |
- Report size exceeded maximum capacity and may have missing network information.
Command: | /tmp/5OGAx17mRN.elf |
PID: | 5808 |
Exit Code: | |
Exit Code Info: | |
Killed: | True |
Standard Output: | Rakitin selfrep started Rakitin. [watchdog] failed to find a valid watchdog driver, bailing out selfrep started Rakitin. [watchdog] failed to find a valid watchdog driver, bailing out selfrep started Rakitin. [scanner] scanner process initialized. scanning started. [scanner] FD5 request sent to 212.24.48.34 [scanner] FD6 request sent to 2.55.124.208 [scanner] FD5 request sent to 5.52.217.16 [scanner] FD6 request sent to 37.14.68.106 [scanner] FD5 request sent to 5.93.246.198 [scanner] FD6 request sent to 79.124.184.24 [scanner] FD5 request sent to 37.175.78.121 [scanner] FD6 request sent to 79.103.225.226 [scanner] FD5 request sent to 42.136.41.130 [scanner] FD6 request sent to 79.229.115.91 [scanner] FD5 request sent to 5.170.90.161 [scanner] FD6 request sent to 2.248.144.246 [scanner] FD5 request sent to 212.144.28.227 [scanner] FD6 request sent to 2.168.51.206 [scanner] FD5 request sent to 37.107.160.229 [scanner] FD6 request sent to 37.36.254.254 [scanner] FD5 request sent to 210.122.188.146 [scanner] FD6 request sent to 94.206.43.101 [scanner] FD5 request sent to 79.24.109.2 [scanner] FD6 request sent to 178.80.217.51 [scanner] FD5 request sent to 94.169.189.213 [scanner] FD6 request sent to 37.98.225.192 [scanner] FD5 request sent to 118.221.161.227 [scanner] FD6 request sent to 42.21.63.204 [scanner] FD5 request sent to 118.178.63.85 [scanner] FD6 request sent to 37.245.91.75 [scanner] FD5 request sent to 79.72.241.196 [scanner] FD6 request sent to 37.252.141.31 [scanner] FD5 request sent to 212.221.216.49 [scanner] FD6 request sent to 2.96.69.213 [scanner] FD5 request sent to 109.80.83.237 [scanner] FD6 request sent to 2.49.205.219 [scanner] FD5 request sent to 5.189.180.159 [scanner] FD6 request sent to 2.50.62.148 [scanner] FD5 request sent to 37.124.18.20 [scanner] FD6 request sent to 210.245.80.225 [scanner] FD5 request sent to 210.156.22.140 [scanner] FD6 request sent to 42.189.153.181 [scanner] FD5 request sent to 2.235.21.55 [scanner] FD6 request sent to 210.20.125.169 [scanner] FD5 request sent to 79.199.71.51 [scanner] FD6 request sent to 79.8.55.183 [scanner] FD5 request sent to 37.154.119.72 [scanner] FD6 request sent to 94.74.36.47 [scanner] FD5 request sent to 79.15.55.252 [scanner] FD6 request sent to 178.85.143.124 [scanner] FD5 request sent to 37.79.90.86 [scanner] FD6 request sent to 42.235.150.68 [scanner] FD5 request sent to 2.26.232.201 [scanner] FD6 request sent to 37.193.57.107 [scanner] FD5 request sent to 178.94.203.78 [scanner] FD6 request sent to 118.207.197.100 [scanner] FD5 request sent to 5.252.1.153 [scanner] FD6 request sent to 109.27.127.184 [scanner] FD5 request sent to 118.250.9.214 [scanner] FD6 request sent to 79.28.182.17 [scanner] FD5 request sent to 94.153.203.135 [scanner] FD6 request sent to 210.179.153.168 [scanner] FD5 request sent to 79.112.59.125 [scanner] FD6 request sent to 2.157.140.214 [scanner] FD5 request sent to 5.98.191.234 [scanner] FD6 request sent to 210.188.104.251 [scanner] FD5 request sent to 118.36.224.205 [scanner] FD6 request sent to 42.19.29.180 [scanner] FD5 request sent to 118.94.227.97 [scanner] FD6 request sent to 2.109.57.204 [scanner] FD5 request sent to 42.65.46.221 [scanner] FD6 request sent to 178.70.42.28 [scanner] FD5 request sent to 109.220.148.1 [scanner] FD6 request sent to 37.52.209.231 [scanner] FD5 request sent to 2.93.235.156 [scanner] FD6 request sent to 42.0.212.143 [scanner] FD5 request sent to 94.82.159.76 [scanner] FD6 request sent to 109.8.29.25 [scanner] FD5 request sent to 118.95.41.95 [scanner] FD6 request sent to 5.47.111.152 [scanner] FD5 request sent to 212.173.90.121 [scanner] FD6 request sent to 212.44.39.213 [scanner] FD5 request sent to 118.142.153.219 [scanner] FD6 request sent to 212.254.56.188 [scanner] FD5 request sent to 79.72.79.7 [scanner] FD6 request sent to 42.193.162.190 [scanner] FD5 request sent to 212.7.100.223 [scanner] FD5 request sent to 109.180.244.172 [scanner] FD6 request sent to 118.191.48.10 [scanner] FD6 request sent to 94.188.94.24 [scanner] FD5 request sent to 5.205.245.213 [scanner] FD6 request sent to 37.104.43.102 [scanner] FD5 request sent to 212.98.200.156 [scanner] FD6 request sent to 118.22.99.121 [scanner] FD5 request sent to 94.197.40.22 [scanner] FD6 request sent to 109.156.246.215 [scanner] FD5 request sent to 79.124.177.155 [scanner] FD6 request sent to 109.147.61.203 [scanner] FD5 request sent to 94.164.57.40 [scanner] FD6 request sent to 2.161.6.224 [scanner] FD4 request sent to 178.74.62.101 [scanner] FD6 request sent to 79.103.170.50 [scanner] FD4 request sent to 210.68.11.54 [scanner] FD5 request sent to 79.67.55.187 [scanner] FD6 request sent to 42.155.135.23 [scanner] FD4 request sent to 212.64.170.103 [scanner] FD5 request sent to 79.199.227.202 [scanner] FD6 request sent to 109.235.42.62 [scanner] FD4 request sent to 5.223.229.129 [scanner] FD5 request sent to 94.61.5.23 [scanner] FD6 request sent to 94.185.116.92 [scanner] FD4 request sent to 42.246.127.196 [scanner] FD5 request sent to 2.74.102.152 [scanner] FD4 request sent to 94.145.7.6 [scanner] FD6 request sent to 109.121.194.162 [scanner] FD5 request sent to 109.222.12.28 [scanner] FD4 request sent to 210.182.96.44 [scanner] FD6 request sent to 212.128.191.213 [scanner] FD5 request sent to 37.137.62.216 [scanner] FD4 request sent to 42.253.63.113 [scanner] FD6 request sent to 94.201.57.237 [scanner] FD4 request sent to 109.110.104.48 [scanner] FD5 request sent to 37.110.166.230 [scanner] FD6 request sent to 210.141.152.163 [scanner] FD4 request sent to 79.254.55.223 [scanner] FD5 request sent to 79.136.83.251 [scanner] FD6 request sent to 42.100.14.55 [scanner] FD4 request sent to 42.45.211.111 [scanner] FD5 request sent to 118.167.58.189 [scanner] FD6 request sent to 178.217.116.56 [scanner] FD4 request sent to 5.86.65.49 [scanner] FD5 request sent to 212.39.253.45 [scanner] FD6 request sent to 178.13.21.218 [scanner] FD4 request sent to 212.38.240.147 [scanner] FD5 request sent to 109.92.85.106 [scanner] FD6 request sent to 5.181.13.194 [scanner] FD4 request sent to 42.138.176.238 [scanner] FD5 request sent to 210.197.163.193 [scanner] FD6 request sent to 2.13.128.215 [scanner] FD4 request sent to 210.52.229.196 [scanner] FD5 request sent to 79.131.104.18 [scanner] FD6 request sent to 94.197.37.255 [scanner] FD4 request sent to 2.144.82.85 [scanner] FD5 request sent to 79.189.239.37 [scanner] FD6 request sent to 210.43.206.19 [scanner] FD4 request sent to 37.104.181.27 [scanner] FD5 request sent to 109.36.217.161 [scanner] FD6 request sent to 109.113.159.226 [scanner] FD4 request sent to 5.58.221.204 [scanner] FD5 request sent to 210.245.49.177 [scanner] FD6 request sent to 178.132.151.240 [scanner] FD4 request sent to 212.0.160.206 [scanner] FD5 request sent to 210.121.54.40 [scanner] FD6 request sent to 109.126.208.229 [scanner] FD4 request sent to 37.124.155.53 [scanner] FD5 request sent to 210.230.203.236 [scanner] FD6 request sent to 178.25.153.106 [scanner] FD4 request sent to 42.25.218.153 [scanner] FD5 request sent to 94.14.30.165 [scanner] FD6 request sent to 118.215.204.193 [scanner] FD4 request sent to 5.241.197.39 [scanner] FD5 request sent to 178.111.38.59 [scanner] FD6 request sent to 212.68.55.46 [scanner] FD4 request sent to 5.244.6.100 [scanner] FD5 request sent to 118.115.23.175 [scanner] FD6 request sent to 212.216.20.42 [scanner] FD4 request sent to 5.118.245.178 [scanner] FD5 request sent to 109.78.155.121 [scanner] FD6 request sent to 37.165.153.102 [scanner] FD4 request sent to 37.56.51.105 [scanner] FD5 request sent to 5.238.198.55 [scanner] FD6 request sent to 212.70.249.255 [scanner] FD4 request sent to 2.228.60.140 [scanner] FD5 request sent to 37.218.206.35 [scanner] FD6 request sent to 5.8.186.118 [scanner] FD4 request sent to 109.240.217.136 [scanner] FD5 request sent to 118.41.190.252 [scanner] FD6 request sent to 5.231.158.62 [scanner] FD4 request sent to 178.69.251.48 [scanner] FD5 request sent to 109.36.80.111 [scanner] FD6 request sent to 94.214.164.204 [scanner] FD4 request sent to 178.132.132.117 [scanner] FD5 request sent to 79.143.62.231 [scanner] FD6 request sent to 42.142.190.167 [scanner] FD4 request sent to 118.41.61.216 [scanner] FD5 request sent to 118.233.251.27 [scanner] FD6 request sent to 212.14.199.223 [scanner] FD4 request sent to 109.74.29.22 [scanner] FD5 request sent to 42.224.237.237 [scanner] FD6 request sent to 42.147.37.254 [scanner] FD4 request sent to 210.212.97.226 [scanner] FD5 request sent to 109.45.209.11 [scanner] FD6 request sent to 118.124.220.164 [scanner] FD4 request sent to 118.192.229.205 [scanner] FD5 request sent to 37.238.190.112 [scanner] FD6 request sent to 2.204.81.6 [scanner] FD4 request sent to 94.78.129.206 [scanner] FD5 request sent to 212.243.139.162 [scanner] FD6 request sent to 212.53.128.147 [scanner] FD4 request sent to 109.47.145.15 [scanner] FD5 request sent to 37.28.59.203 [scanner] FD6 request sent to 2.185.42.248 [scanner] FD4 request sent to 5.132.21.85 [scanner] FD5 request sent to 212.110.32.124 [scanner] FD6 request sent to 79.198.78.122 [scanner] FD4 request sent to 2.181.104.125 [scanner] FD5 request sent to 94.126.167.41 [scanner] FD6 request sent to 94.14.253.148 [scanner] FD4 request sent to 109.104.103.188 [scanner] FD5 request sent to 2.209.58.48 [scanner] FD6 request sent to 5.12.51.71 [scanner] FD4 request sent to 42.209.166.113 [scanner] FD5 request sent to 37.100.255.7 [scanner] FD6 request sent to 2.205.206.12 [scanner] FD4 request sent to 94.220.24.183 [scanner] FD5 request sent to 210.220.45.168 [scanner] FD6 request sent to 109.248.104.197 [scanner] FD4 request sent to 212.9.40.27 [scanner] FD5 request sent to 94.162.247.171 [scanner] FD6 request sent to 79.213.155.21 [scanner] FD4 request sent to 109.151.252.59 [scanner] FD5 request sent to 79.132.8.54 [scanner] FD6 request sent to 2.121.160.161 [scanner] FD4 request sent to 210.161.141.63 [scanner] FD5 request sent to 5.229.205.143 [scanner] FD6 request sent to 212.82.37.70 [scanner] FD4 request sent to 178.89.190.209 [scanner] FD5 request sent to 37.120.53.248 [scanner] FD6 request sent to 212.151.115.152 [scanner] FD4 request sent to 212.96.239.7 [scanner] FD5 request sent to 5.16.117.53 [scanner] FD6 request sent to 2.126.45.95 [scanner] FD4 request sent to 212.73.96.128 [scanner] FD5 request sent to 178.126.255.28 [scanner] FD6 request sent to 118.174.168.137 [scanner] FD4 request sent to 178.69.153.209 [scanner] FD5 request sent to 94.206.46.188 [scanner] FD6 request sent to 42.192.108.79 [scanner] FD4 request sent to 42.38.55.242 [scanner] FD5 request sent to 79.23.128.175 [scanner] FD6 request sent to 212.190.73.225 [scanner] FD4 request sent to 2.101.46.108 [scanner] FD5 request sent to 5.59.172.87 [scanner] FD6 request sent to 5.218.131.107 [scanner] FD4 request sent to 37.155.187.145 [scanner] FD5 request sent to 178.2.94.88 [scanner] FD6 request sent to 118.248.121.28 [scanner] FD4 request sent to 178.220.129.199 [scanner] FD5 request sent to 94.24.151.45 [scanner] FD6 request sent to 212.31.223.14 [scanner] FD4 request sent to 178.252.156.43 [scanner] FD5 request sent to 212.204.91.133 [scanner] FD6 request sent to 212.113.171.136 [scanner] FD4 request sent to 94.98.0.10 [scanner] FD5 request sent to 37.27.76.85 [scanner] FD6 request sent to 118.116.208.29 [scanner] FD4 request sent to 118.2.245.35 [scanner] FD5 request sent to 5.56.61.176 [scanner] FD6 request sent to 5.62.131.215 [scanner] FD4 request sent to 79.151.11.253 [scanner] FD5 request sent to 178.66.128.219 [scanner] FD6 request sent to 212.73.177.29 [scanner] FD4 request sent to 212.254.80.65 [scanner] FD5 request sent to 210.106.248.239 [scanner] FD6 request sent to 2.16.196.1 [scanner] FD4 request sent to 210.37.93.243 [scanner] FD5 request sent to 5.236.131.241 [scanner] FD6 request sent to 5.138.247.209 [scanner] FD4 request sent to 5.40.204.169 [scanner] FD5 request sent to 178.179.91.142 [scanner] FD6 request sent to 94.86.51.103 [scanner] FD4 request sent to 2.75.41.36 [scanner] FD5 request sent to 178.151.217.199 [scanner] FD6 request sent to 5.226.222.223 [scanner] FD4 request sent to 42.77.208.195 [scanner] FD5 request sent to 118.113.227.240 [scanner] FD6 request sent to 79.143.205.73 [scanner] FD4 request sent to 212.18.110.232 [scanner] FD5 request sent to 210.3.153.145 [scanner] FD6 request sent to 212.99.103.49 [scanner] FD4 request sent to 178.51.147.199 [scanner] FD5 request sent to 42.240.208.177 [scanner] FD6 request sent to 2.26.86.126 [scanner] FD4 request sent to 94.153.73.49 [scanner] FD5 request sent to 118.97.202.227 [scanner] FD6 request sent to 94.141.4.36 [scanner] FD4 request sent to 42.232.116.102 [scanner] FD5 request sent to 118.64.221.251 [scanner] FD6 request sent to 109.226.104.95 [scanner] FD4 request sent to 42.142.150.31 [scanner] FD5 request sent to 2.86.103.144 [scanner] FD6 request sent to 212.38.254.47 [scanner] FD4 request sent to 210.247.205.133 [scanner] FD5 request sent to 37.30.178.45 [scanner] FD6 request sent to 118.198.232.130 [scanner] FD4 request sent to 37.217.212.161 [scanner] FD5 request sent to 212.179.226.133 [scanner] FD6 request sent to 212.172.166.107 [scanner] FD4 request sent to 94.43.175.5 [scanner] FD5 request sent to 5.39.206.119 [scanner] FD4 request sent to 2.222.130.163 [scanner] FD6 request sent to 2.207.133.78 [scanner] FD5 request sent to 109.29.182.199 [scanner] FD4 request sent to 94.8.45.23 [scanner] FD6 request sent to 118.160.51.18 [scanner] FD5 request sent to 42.198.0.112 [scanner] FD4 request sent to 109.54.150.127 [scanner] FD5 request sent to 2.149.93.17 [scanner] FD6 request sent to 5.132.130.36 [scanner] FD4 request sent to 109.103.90.43 [scanner] FD5 request sent to 5.146.145.133 [scanner] FD6 request sent to 37.126.254.67 [scanner] FD4 request sent to 79.10.53.37 [scanner] FD5 request sent to 109.75.21.172 [scanner] FD6 request sent to 42.29.41.91 [scanner] FD4 request sent to 37.244.187.92 [scanner] FD5 request sent to 178.84.139.102 [scanner] FD6 request sent to 94.183.62.56 [scanner] FD4 request sent to 42.149.6.225 [scanner] FD5 request sent to 2.211.38.65 [scanner] FD6 request sent to 109.152.254.70 [scanner] FD4 request sent to 109.101.16.34 [scanner] FD5 request sent to 118.252.147.140 [scanner] FD6 request sent to 109.169.240.70 [scanner] FD4 request sent to 42.224.188.20 [scanner] FD5 request sent to 2.196.122.237 [scanner] FD6 request sent to 178.177.179.76 [scanner] FD4 request sent to 79.185.175.73 [scanner] FD5 request sent to 5.204.243.96 [scanner] FD6 request sent to 212.34.99.231 [scanner] FD4 request sent to 94.94.113.129 [scanner] FD5 request sent to 94.198.78.52 [scanner] FD6 request sent to 2.169.55.104 [scanner] FD4 request sent to 79.182.143.154 [scanner] FD5 request sent to 79.137.46.219 [scanner] FD6 request sent to 2.85.131.214 [scanner] FD4 request sent to 79.108.172.20 [scanner] FD5 request sent to 2.84.6.225 [scanner] FD6 request sent to 109.108.175.83 [scanner] FD4 request sent to 2.223.135.155 [scanner] FD5 request sent to 109.142.30.120 [scanner] FD6 request sent to 118.215.59.62 [scanner] FD4 request sent to 5.132.218.183 [scanner] FD5 request sent to 79.84.93.26 [scanner] FD6 request sent to 178.140.7.160 [scanner] FD4 request sent to 5.47.162.213 [scanner] FD5 request sent to 42.91.158.4 [scanner] FD6 request sent to 42.79.110.196 [scanner] FD4 request sent to 118.52.14.68 [scanner] FD5 request sent to 210.241.73.137 [scanner] FD6 request sent to 2.192.127.157 [scanner] FD4 request sent to 79.90.132.18 [scanner] FD5 request sent to 178.226.94.103 [scanner] FD6 request sent to 42.146.113.103 [scanner] FD4 request sent to 118.242.35.109 [scanner] FD5 request sent to 94.255.0.61 [scanner] FD6 request sent to 37.230.191.78 [scanner] FD4 request sent to 118.42.206.154 [scanner] FD5 request sent to 94.122.198.16 [scanner] FD6 request sent to 42.157.206.91 [scanner] FD4 request sent to 210.65.17.191 [scanner] FD5 request sent to 94.89.16.79 [scanner] FD6 request sent to 37.214.90.58 [scanner] FD4 request sent to 178.118.15.83 [scanner] FD5 request sent to 5.138.126.211 [scanner] FD6 request sent to 5.72.168.95 [scanner] FD4 request sent to 212.127.191.192 [scanner] FD5 request sent to 210.255.221.186 [scanner] FD6 request sent to 5.51.53.91 [scanner] FD4 request sent to 212.116.131.237 [scanner] FD5 request sent to 5.121.129.220 [scanner] FD6 request sent to 178.250.64.142 [scanner] FD4 request sent to 94.241.167.135 [scanner] FD4 request sent to 42.110.50.91 [scanner] FD5 request sent to 79.53.187.76 [scanner] FDselfrep started Rakitin. [main] We are the only process on this system! [scanner] Scanner process initialized. Scanning started. [scanner] FD5 Attempting to brute found IP 114.252.34.114 [scanner] FD5 connected. Trying [91mTqx|{|fagtazg[32m:[91m [scanner] FD6 Attempting to brute found IP 103.168.149.186 [scanner] FD5 finished telnet negotiation [scanner] FD7 Attempting to brute found IP 109.36.217.9 [scanner] FD7 connected. Trying [91mgzza[32m:[91mRX-$-' [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD5 received username prompt [scanner] FD6 connected. Trying [91mapyvz[32m:[91mapyvz [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [table] Tried to double-lock value [scanner] FD5 received password prompt [scanner] FD6 connected. Trying [91mf`eezga[32m:[91mf`eezga [scanner] FD8 Attempting to brute found IP 220.132.50.218 [scanner] FD9 Attempting to brute found IP 183.158.145.136 [scanner] FD5 received shell prompt [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD8 connected. Trying [91mgzza[32m:[91mflfapx [scanner] FD9 connected. Trying [91m0--6B[32m:[91m0#1 '00;2+'B [scanner] FD6 connected. Trying [91mtqx|{[32m:[91my|{`mf}pyy [scanner] FD8 finished telnet negotiation [scanner] FD9 finished telnet negotiation [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD9 received username prompt [scanner] FD5 received sh prompt [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD8 received username prompt [scanner] FD6 connected. Trying [91m0--6[32m:[91m%0- [scanner] FD7 lost connection [scanner] FD7 retrying with different auth combo! [scanner] FD5 received sh prompt [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [table] Tried to double-lock value [scanner] FD8 received password prompt [scanner] FD7 connected. Trying [91m0--6B[32m:[91m--6B [table] Tried to double-lock value [scanner] FD9 received password prompt [scanner] FD9 received shell prompt [scanner] FD5 received shell prompt [scanner] FD8 received shell prompt [scanner] FD9 received sh prompt [scanner] FD8 received sh prompt [scanner] FD6 connected. Trying [91mgzza[32m:[91m$'&! [scanner] FD10 Attempting to brute found IP 206.110.30.206 [scanner] FD11 Attempting to brute found IP 213.151.43.133 [scanner] FD9 received sh prompt [scanner] FD12 Attempting to brute found IP 94.56.232.137 [scanner] FD10 connected. Trying [91mtqx|{[32m:[91maa{pa [scanner] FD11 connected. Trying [91mtqx|{[32m:[91mqpc|vp [scanner] FD12 connected. Trying [91m0--6B[32m:[91m0#1 '00;2+'B [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD8 received sh prompt [scanner] FD12 finished telnet negotiation [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD12 received username prompt [scanner] FD9 received shell prompt [scanner] FD6 connected. Trying [91mtqx|{[32m:[91mtqx|{ [scanner] FD9 received sh prompt [scanner] FD8 connection gracefully closed [scanner] FD8 lost connection [scanner] FD8 retrying with different auth combo! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD8 connected. Trying [91mgzza[32m:[91mvxf %% [table] Tried to double-lock value [scanner] FD12 received password prompt [scanner] FD6 connected. Trying [91m0--6[32m:[91m+2!#/06wqwr [scanner] FD8 finished telnet negotiation [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD7 lost connection [scanner] FD7 retrying with different auth combo! [scanner] FD7 connected. Trying [91mgzza[32m:[91m###### [scanner] FD6 connected. Trying [91mtqx|{[32m:[91mqpc|vp [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD5 connection gracefully closed [scanner] FD5 lost connection [scanner] FD5 retrying with different auth combo! [scanner] FD6 connected. Trying [91mtqx|{[32m:[91mtqx|{ [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD8 received username prompt [scanner] FD12 received shell prompt [scanner] FD13 Attempting to brute found IP 62.59.212.145 [scanner] FD14 Attempting to brute found IP 178.135.111.146 [scanner] FD5 connected. Trying [91mtqx|{[32m:[91mtqx|{$'& [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD13 connected. Trying [91mtqx|{[32m:[91mtwv$'& [scanner] FD14 connected. Trying [91m0--6[32m:[91m%0- [scanner] FD5 finished telnet negotiation [table] Tried to double-lock value [scanner] FD8 received password prompt [scanner] FD13 finished telnet negotiation [scanner] FD6 connected. Trying [91mgzza[32m:[91m`ergtqp [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD13 received username prompt [scanner] FD12 received sh prompt [scanner] FD15 Attempting to brute found IP 45.135.201.126 [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD8 received shell prompt [table] Tried to double-lock value [scanner] FD13 received password prompt [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD5 received username prompt [scanner] FD6 connected. Trying [91m0--6B[32m:[91m B [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD8 received sh prompt [scanner] FD6 connected. Trying [91m6'.,'6#&/+,[32m:[91m6'.,'6#&/+, [table] Tried to double-lock value [scanner] FD5 received password prompt [scanner] FD7 lost connection [scanner] FD7 retrying with different auth combo! [scanner] FD8 received sh prompt [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD7 connected. Trying [91mgzza[32m:[91ma%atyv%{ag%y!4 [scanner] FD5 received shell prompt [scanner] FD6 connected. Trying [91mxr& %%[32m:[91mxpgy|{ [scanner] FD12 connection gracefully closed [scanner] FD12 lost connection [scanner] FD12 retrying with different auth combo! [scanner] FD8 connection gracefully closed [scanner] FD8 lost connection [scanner] FD8 retrying with different auth combo! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD12 connected. Trying [91mgzza[32m:[91m$'&! [scanner] FD8 connected. Trying [91mgzza[32m:[91m$ [scanner] FD6 connected. Trying [91m0--6B[32m:[91mwrrB [scanner] FD12 finished telnet negotiation [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD12 received username prompt [scanner] FD8 finished telnet negotiation [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD8 received username prompt [scanner] FD16 Attempting to brute found IP 94.120.234.35 [scanner] FD17 Attempting to brute found IP 58.13.246.106 [scanner] FD5 received sh prompt [scanner] FD6 connected. Trying [91mgzza[32m:[91m$'&!dbpg [scanner] FD16 connected. Trying [91mgzza[32m:[91mof`{$$-- [scanner] FD17 connected. Trying [91m0--6B[32m:[91m+2!#/B [table] Tried to double-lock value [scanner] FD12 received password prompt [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD17 retrying with different auth combo! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [table] Tried to double-lock value [scanner] FD8 received password prompt [scanner] FD5 received sh prompt [scanner] FD17 connected. Trying [91m0--6B[32m:[91m6--0B [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD12 received shell prompt [scanner] FD8 received shell prompt [scanner] FD6 connected. Trying [91mgzza[32m:[91mgzza [scanner] FD13 connection gracefully closed [scanner] FD13 lost connection [scanner] FD13 retrying with different auth combo! [scanner] FD13 connected. Trying [91mgzza[32m:[91m`|q(% [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD7 lost connection [scanner] FD7 retrying with different auth combo! [scanner] FD13 finished telnet negotiation [scanner] FD8 received sh prompt [scanner] FD7 connected. Trying [91mgzza[32m:[91mapyvz [scanner] FD6 connected. Trying [91mw|{[32m:[91m [scanner] FD17 Attempting to brute found IP 152.30.68.26 [scanner] FD18 Attempting to brute found IP 152.30.204.36 [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD13 received username prompt [scanner] FD5 received shell prompt [scanner] FD12 received sh prompt [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD8 received sh prompt [scanner] FD6 connected. Trying [91mtqx|{[32m:[91m$,-- [table] Tried to double-lock value [scanner] FD13 received password prompt [scanner] FD15 timed out (state = 1) [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD15 Attempting to brute found IP 80.67.162.64 [scanner] FD15 connected. Trying [91mgzza[32m:[91m$'&! [scanner] FD8 connection gracefully closed [scanner] FD8 lost connection [scanner] FD8 retrying with different auth combo! [scanner] FD8 connected. Trying [91mgzza[32m:[91moymm; [scanner] FD8 finished telnet negotiation [scanner] FD6 connected. Trying [91mqtpxz{[32m:[91m [scanner] FD19 Attempting to brute found IP 34.116.2.43 [scanner] FD19 connected. Trying [91mgzza[32m:[91mqgptxwzm [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD8 received username prompt [scanner] FD12 connection gracefully closed [scanner] FD12 lost connection [scanner] FD12 retrying with different auth combo! [scanner] FD19 connection gracefully closed [scanner] FD19 lost connection [scanner] FD19 retrying with different auth combo! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD19 connected. Trying [91mgzza[32m:[91my|{`mf}pyy [scanner] FD19 connection gracefully closed [scanner] FD19 lost connection [scanner] FD19 retrying with different auth combo! [scanner] FD12 connected. Trying [91m0--6[32m:[91m6'.'!-/#&/+,B [scanner] FD19 connected. Trying [91mgzza[32m:[91m"`X~z%tqx|{ [scanner] FD6 connected. Trying [91mgzza[32m:[91m!&'$ [scanner] FD19 connection gracefully closed [scanner] FD19 lost connection [scanner] FD19 retrying with different auth combo! [scanner] FD19 connected. Trying [91mgzza[32m:[91matOoU'&!, - , [table] Tried to double-lock value [scanner] FD8 received password prompt [scanner] FD12 finished telnet negotiation [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD12 received username prompt [scanner] FD19 connection gracefully closed [scanner] FD19 lost connection [scanner] FD19 retrying with different auth combo! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD19 connected. Trying [91mf`eezga[32m:[91m$'&! [scanner] FD19 connection gracefully closed [scanner] FD19 lost connection [scanner] FD19 retrying with different auth combo! [scanner] FD6 connected. Trying [91mgzza[32m:[91mgzzaetff [scanner] FD19 connected. Trying [91mgzza[32m:[91mf`epg`fpg [scanner] FD7 lost connection [scanner] FD7 retrying with different auth combo! [scanner] FD19 connection gracefully closed [scanner] FD19 lost connection [scanner] FD19 retrying with different auth combo! [scanner] FD7 connected. Trying [91mgzza[32m:[91mmv& $$ [scanner] FD19 connected. Trying [91m0--6B[32m:[91m B [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD8 received shell prompt [scanner] FD19 connection gracefully closed [scanner] FD19 lost connection [scanner] FD19 retrying with different auth combo! [table] Tried to double-lock value [scanner] FD12 received password prompt [scanner] FD6 connected. Trying [91mgzza[32m:[91m$ [scanner] FD5 connection gracefully closed [scanner] FD5 lost connection [scanner] FD5 retrying with different auth combo! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD8 received sh prompt [scanner] FD13 connection gracefully closed [scanner] FD13 lost connection [scanner] FD13 retrying with different auth combo! [scanner] FD5 connected. Trying [91mgzza[32m:[91mof`{$$-- [scanner] FD13 connected. Trying [91m0--6[32m:[91m6'wps [scanner] FD12 received shell prompt [scanner] FD5 finished telnet negotiation [scanner] FD13 finished telnet negotiation [scanner] FD19 connected. Trying [91mgzza[32m:[91mgzza [scanner] FD8 received sh prompt [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD13 received username prompt [scanner] FD19 connection gracefully closed [scanner] FD19 lost connection [scanner] FD19 retrying with different auth combo! [scanner] FD19 connected. Trying [91mgzza[32m:[91mgzza [scanner] FD19 connection gracefully closed [scanner] FD19 lost connection [scanner] FD19 retrying with different auth combo! [scanner] FD19 connected. Trying [91mgzza[32m:[91matOoU'&!, - , [table] Tried to double-lock value [scanner] FD13 received password prompt [scanner] FD19 connection gracefully closed [scanner] FD19 lost connection [scanner] FD19 retrying with different auth combo! [scanner] FD19 connected. Trying [91mgzza[32m:[91m$'&! [scanner] FD20 Attempting to brute found IP 186.130.65.62 [scanner] FD6 connected. Trying [91mgzza[32m:[91mGZZA [scanner] FD12 received sh prompt [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD5 received username prompt [scanner] FD19 connection gracefully closed [scanner] FD19 lost connection [scanner] FD19 retrying with different auth combo! [scanner] FD8 connection gracefully closed [scanner] FD8 lost connection [scanner] FD8 retrying with different auth combo! [scanner] FD19 connected. Trying [91m6'.,'6#&/+,[32m:[91m6'.,'6#&/+, [scanner] FD20 connected. Trying [91m0--6B[32m:[91m '#0&0-22'0B [scanner] FD19 connection gracefully closed [scanner] FD19 lost connection [scanner] FD19 retrying with different auth combo! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD19 connected. Trying [91mgzza[32m:[91m$'&!dbpg [scanner] FD8 connected. Trying [91mgzza[32m:[91metff [scanner] FD20 finished telnet negotiation [scanner] FD19 connection gracefully closed [scanner] FD19 lost connection [scanner] FD19 retrying with different auth combo! [scanner] FD19 connected. Trying [91m0--6[32m:[91m6'.'!-/#&/+,B [scanner] FD6 connected. Trying [91mf`eezga[32m:[91m$'&! # [scanner] FD19 connection gracefully closed [scanner] FD19 lost connection [scanner] FD19 retrying with different auth combo! [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD20 received username prompt [scanner] FD17 timed out (state = 1) [scanner] FD18 timed out (state = 1) [scanner] FD8 finished telnet negotiation [scanner] FD19 connected. Trying [91mgzza[32m:[91mvxf %% [table] Tried to double-lock value [scanner] FD5 received password prompt [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD19 connection gracefully closed 6 request sent to 42.67.198.85 [scanner] FD4 request sent to 2.149.93.17 [scanner] FD5 request sent to 37.65.110.167 [scanner] FD6 request sent to 109.54.150.127 [scanner] FD4 request sent to 210.24.78.217 [scanner] FD5 request sent to 5.213.78.213 [scanner] FD6 request sent to 79.58.145.147 [scanner] FD4 request sent to 37.143.22.136 [scanner] FD5 request sent to 210.72.124.149 [scanner] FD6 request sent to 109.208.37.17 [scanner] FD4 request sent to 2.124.129.161 [scanner] FD5 request sent to 5.96.28.73 [scanner] FD6 request sent to 109.234.187.24 [scanner] FD4 request sent to 94.174.195.188 [scanner] FD5 request sent to 178.232.122.195 [scanner] FD6 request sent to 37.211.13.49 [scanner] FD4 request sent to 37.63.108.49 [scanner] FD5 request sent to 109.249.79.3 [scanner] FD6 request sent to 118.250.53.93 [scanner] FD4 request sent to 178.48.163.18 [scanner] FD5 request sent to 118.207.191.226 [scanner] FD6 request sent to 109.235.115.72 [scanner] FD4 request sent to 2.137.123.166 [scanner] FD5 request sent to 178.52.217.142 [scanner] FD6 request sent to 5.210.133.213 [scanner] FD4 request sent to 5.101.230.107 [scanner] FD5 request sent to 94.234.60.205 [scanner] FD6 request sent to 94.104.156.90 [scanner] FD4 request sent to 37.192.198.4 [scanner] FD5 request sent to 79.242.242.172 [scanner] FD6 request sent to 37.110.184.128 [scanner] FD4 request sent to 5.220.166.74 [scanner] FD5 request sent to 178.217.71.94 [scanner] FD6 request sent to 210.133.136.138 [scanner] FD4 request sent to 118.254.66.26 [scanner] FD5 request sent to 94.238.235.231 [scanner] FD6 request sent to 109.231.227.249 [scanner] FD4 request sent to 178.48.163.18 [scanner] FD5 request sent to 37.156.37.194 [scanner] FD6 request sent to 5.72.145.5 [scanner] FD4 request sent to 94.149.96.151 [scanner] FD5 request sent to 5.107.0.191 [scanner] FD6 request sent to 178.77.167.236 [scanner] FD4 request sent to 118.120.173.99 [scanner] FD4 request sent to 42.89.230.142 [scanner] FD5 request sent to 118.210.255.242 [scanner] FD6 request sent to 210.201.114.79 [scanner] FD4 request sent to 212.114.67.42 [scanner] FD5 request sent to 42.30.54.234 [scanner] FD6 request sent to 42.17.32.235 [scanner] FD4 request sent to 212.83.100.86 [scanner] FD5 request sent to 2.106.111.58 [scanner] FD6 request sent to 178.17.190.32 [scanner] FD4 request sent to 212.5.55.89 [scanner] FD5 request sent to 212.214.214.133 [scanner] FD6 request sent to 212.37.43.164 [scanner] FD4 request sent to 5.150.31.80 [scanner] FD5 request sent to 118.235.181.150 [scanner] FD6 request sent to 109.201.111.164 [scanner] FD4 request sent to 109.44.148.255 [scanner] FD5 request sent to 212.130.61.221 [scanner] FD6 request sent to 178.232.155.49 [scanner] FD4 request sent to 2.236.129.39 [scanner] FD5 request sent to 5.163.64.89 [scanner] FD6 request sent to 212.237.36.100 [scanner] FD4 request sent to 79.6.43.171 [scanner] FD5 request sent to 2.215.77.112 [scanner] FD6 request sent to 94.96.56.34 [scanner] FD4 request sent to 109.56.220.173 [scanner] FD5 request sent to 178.77.49.141 [scanner] FD6 request sent to 37.7.228.197 [scanner] FD4 request sent to 94.76.113.70 [scanner] FD5 request sent to 210.17.209.75 [scanner] FD6 request sent to 118.28.199.160 [scanner] FD4 request sent to 178.120.13.12 [scanner] FD5 request sent to 212.24.249.18 [scanner] FD6 request sent to 210.89.215.10 [scanner] FD4 request sent to 212.195.62.201 [scanner] FD5 request sent to 2.6.244.45 [scanner] FD6 request sent to 94.111.3.158 [scanner] FD4 request sent to 42.226.156.255 [scanner] FD5 request sent to 210.226.183.187 [scanner] FD6 request sent to 94.253.78.96 [scanner] FD4 request sent to 178.240.152.53 [scanner] FD5 request sent to 79.247.180.240 [scanner] FD4 request sent to 37.11.15.250 [scanner] FD6 request sent to 79.27.6.182 [scanner] FD4 request sent to 2.90.27.7 [scanner] FD6 request sent to 210.169.218.2 [scanner] FD5 request sent to 79.48.94.26 [scanner] FD4 request sent to 109.48.221.224 [scanner] FD5 request sent to 42.90.75.62 [scanner] FD6 request sent to 37.91.178.13 [scanner] FD4 request sent to [scanner] FD19 lost connection [scanner] FD6 connected. Trying [91mgzza[32m:[91ma%atyv%{ag%y!4 [table] Tried to double-lock value [scanner] FD20 received password prompt [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD7 lost connection [scanner] FD7 retrying with different auth combo! [scanner] FD5 received shell prompt [scanner] FD7 connected. Trying [91mgzza[32m:[91mmv& $$ [scanner] FD6 connected. Trying [91m0--6[32m:[91m%0- [scanner] FD17 Attempting to brute found IP 34.102.181.165 [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD17 connected. Trying [91m0--6B[32m:[91m0'#.6')B [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD8 received username prompt [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD17 retrying with different auth combo! [scanner] FD5 received sh prompt [scanner] FD12 connection gracefully closed [scanner] FD12 lost connection [scanner] FD12 retrying with different auth combo! [scanner] FD6 connected. Trying [91mr`pfa[32m:[91m$'&! # [scanner] FD17 connected. Trying [91mgzza[32m:[91mqpst`ya [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD17 retrying with different auth combo! [scanner] FD17 connected. Trying [91mgzza[32m:[91mt{afyd [scanner] FD12 connected. Trying [91mgzza[32m:[91mapy{pagzza [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD17 retrying with different auth combo! [scanner] FD17 connected. Trying [91mgzza[32m:[91mapyvz [table] Tried to double-lock value [scanner] FD8 received password prompt [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD17 retrying with different auth combo! [scanner] FD6 connected. Trying [91mspqvB[32m:[91m!-/!#16B [scanner] FD12 finished telnet negotiation [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD12 received username prompt [scanner] FD17 connected. Trying [91mgzza[32m:[91metff [scanner] FD5 received sh prompt [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD17 retrying with different auth combo! [scanner] FD18 Attempting to brute found IP 209.213.224.107 [scanner] FD17 connected. Trying [91mtqx|{[32m:[91mfxvtqx|{ [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD18 connected. Trying [91m6'.,'6#&/+,[32m:[91m6'.,'6#&/+, [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD6 connected. Trying [91mgzza[32m:[91m !&'$ [scanner] FD8 received shell prompt [scanner] FD18 connection gracefully closed [scanner] FD18 lost connection [scanner] FD17 retrying with different auth combo! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD13 connection gracefully closed [scanner] FD13 lost connection [scanner] FD13 retrying with different auth combo! [scanner] FD6 connected. Trying [91mgzza[32m:[91mapy{pagzza [scanner] FD17 connected. Trying [91mgzza[32m:[91m$'&! # [scanner] FD5 received shell prompt [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD13 connected. Trying [91mgzza[32m:[91m$'&! [table] Tried to double-lock value [scanner] FD12 received password prompt [scanner] FD6 connected. Trying [91m0--6B[32m:[91m--6B [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD17 retrying with different auth combo! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD13 finished telnet negotiation [scanner] FD6 connected. Trying [91mtqx[32m:[91m [scanner] FD17 connected. Trying [91m0--6[32m:[91m#/15B [scanner] FD8 received sh prompt [scanner] FD18 Attempting to brute found IP 131.118.94.221 [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD13 received username prompt [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD17 retrying with different auth combo! [scanner] FD18 connected. Trying [91mgzza[32m:[91m$'&!dbpg [scanner] FD6 connected. Trying [91mapyvz[32m:[91mapyvz [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD17 connected. Trying [91mgzza[32m:[91m`|q(% [scanner] FD6 connected. Trying [91mgzza[32m:[91mof`{$$-- [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD17 retrying with different auth combo! [scanner] FD12 received shell prompt [table] Tried to double-lock value [scanner] FD13 received password prompt [scanner] FD6 connected. Trying [91mgzza[32m:[91m$'&! [scanner] FD8 received sh prompt [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD17 connected. Trying [91m0--6[32m:[91m6'wps [scanner] FD6 connected. Trying [91m0--6B[32m:[91m&0-22'0B [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD17 retrying with different auth combo! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD6 connected. Trying [91mgzza[32m:[91ma%atyv%{ag%y!4 [scanner] FD20 received shell prompt [scanner] FD7 lost connection [scanner] FD7 retrying with different auth combo! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD17 connected. Trying [91mtqx[32m:[91m [scanner] FD7 connected. Trying [91mtqx|{[32m:[91mtwv$'& [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD12 received sh prompt [scanner] FD6 connected. Trying [91mgzza[32m:[91mafy|{`m [scanner] FD8 connection gracefully closed [scanner] FD8 lost connection [scanner] FD8 retrying with different auth combo! [scanner] FD20 received sh prompt [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD6 connected. Trying [91mgzza[32m:[91mqpst`ya [scanner] FD8 connected. Trying [91mgzza[32m:[91m$'&! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD11 connection gracefully closed [scanner] FD11 lost connection [scanner] FD11 retrying with different auth combo! [scanner] FD8 finished telnet negotiation [scanner] FD6 connected. Trying [91mtqx|{[32m:[91mtqx|{ [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD11 connected. Trying [91m&#'/-,B[32m:[91m&#'/-,B [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD8 received username prompt [scanner] FD6 connected. Trying [91m#&/+,B[32m:[91mptrs*:B [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD6 connected. Trying [91m#&/+,[32m:[91m$+0'6+&'B [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [table] Tried to double-lock value [scanner] FD8 received password prompt [scanner] FD6 connected. Trying [91mgzza[32m:[91my|{`mf}pyy [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD6 connected. Trying [91mgzza[32m:[91metff [scanner] FD5 connection gracefully closed [scanner] FD5 lost connection [scanner] FD5 retrying with different auth combo! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD12 connection gracefully closed [scanner] FD12 lost connection [scanner] FD12 retrying with different auth combo! [scanner] FD8 received shell prompt [scanner] FD6 connected. Trying [91mzepgtazg[32m:[91mzepgtazg [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD5 connected. Trying [91mgzza[32m:[91m !&'$ [scanner] FD12 connected. Trying [91m&'$#[32m:[91m6.52 -t [scanner] FD6 connected. Trying [91m[32m:[91m2#115-0&B [scanner] FD13 connection gracefully closed [scanner] FD13 lost connection [scanner] FD13 retrying with different auth combo! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD5 finished telnet negotiation [scanner] FD12 finished telnet negotiation [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD12 received username prompt [scanner] FD8 received sh prompt [scanner] FD6 Attempting to brute found IP 34.98.94.136 [scanner] FD13 connected. Trying [91mw|{[32m:[91m [scanner] FD6 connected. Trying [91mspqvB[32m:[91m!-/!#16B [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD17 Attempting to brute found IP 197.15.30.196 [scanner] FD13 finished telnet negotiation [scanner] FD6 connected. Trying [91m&'$#[32m:[91m :*.5z [scanner] FD7 lost connection [scanner] FD7 retrying with different auth combo! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD17 connected. Trying [91mgzza[32m:[91mw|{ [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD13 received username prompt [scanner] FD6 connected. Trying [91m#&/+,[32m:[91m$+0'6+&'B [scanner] FD7 connected. Trying [91mgzza[32m:[91mGZZA [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD8 received sh prompt [scanner] FD6 connected. Trying [91mtqx|{[32m:[91m$$$$ [table] Tried to double-lock value [scanner] FD12 received password prompt [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD17 retrying with different auth combo! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD5 received username prompt [scanner] FD6 connected. Trying [91mgzza[32m:[91mmv& $$ [table] Tried to double-lock value [scanner] FD13 received password prompt [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD20 received sh prompt [scanner] FD19 Attempting to brute found IP 168.221.2.41 [scanner] FD17 connected. Trying [91m0--6[32m:[91m%0- [scanner] FD6 connected. Trying [91mtqx|{[32m:[91m$,-- [scanner] FD13 connection gracefully closed [scanner] FD13 lost connection [scanner] FD13 retrying with different auth combo! [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD17 retrying with different auth combo! [scanner] FD13 connected. Trying [91m6'.,'6#&/+,[32m:[91m6'.,'6#&/+, [scanner] FD8 connection gracefully closed [scanner] FD8 lost connection [scanner] FD8 retrying with different auth combo! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD20 received shell prompt [scanner] FD13 finished telnet negotiation [scanner] FD12 received shell prompt [scanner] FD17 connected. Trying [91mf`eezga[32m:[91mf`eezga [scanner] FD6 connected. Trying [91mgzza[32m:[91mmv& $$ [table] Tried to double-lock value [scanner] FD5 received password prompt [scanner] FD8 connected. Trying [91mgzza[32m:[91mgzza [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD13 received username prompt [scanner] FD6 connected. Trying [91mxr& %%[32m:[91mxpgy|{ [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD17 retrying with different auth combo! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD8 finished telnet negotiation [scanner] FD6 connected. Trying [91m0--6[32m:[91m8*-,%:+,%B [scanner] FD20 received sh prompt [scanner] FD20 connection gracefully closed [scanner] FD20 lost connection [scanner] FD20 retrying with different auth combo! [scanner] FD17 connected. Trying [91m`fpg[32m:[91m`fpg [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [table] Tried to double-lock value [scanner] FD13 received password prompt [scanner] FD6 connected. Trying [91mr`pfa[32m:[91m$$$$ [scanner] FD21 Attempting to brute found IP 181.23.228.115 [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD8 received username prompt [scanner] FD22 Attempting to brute found IP 43.254.54.62 [scanner] FD20 connected. Trying [91mtqx|{[32m:[91m"`X~z%tqx|{ [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD17 retrying with different auth combo! [scanner] FD5 received shell prompt [scanner] FD12 received sh prompt [scanner] FD6 connected. Trying [91m0--6B[32m:[91m0#1 '00;2+'B [scanner] FD21 connected. Trying [91mtqx|{[32m:[91m$$$$ [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD20 finished telnet negotiation [scanner] FD17 connected. Trying [91m0--6[32m:[91m+2!#/06wqwr [scanner] FD6 connected. Trying [91m0--6[32m:[91m#/15B [scanner] FD22 connected. Trying [91mgzza[32m:[91mapy{pagzza [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD21 finished telnet negotiation [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD20 received username prompt [scanner] FD6 connected. Trying [91mgzza[32m:[91mgzza [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD17 retrying with different auth combo! [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [table] Tried to double-lock value [scanner] FD8 received password prompt [table] Tried to double-lock value [table] Tried to double-lock value [scanner] FD21 received username prompt [scanner] FD5 received sh prompt [scanner] FD6 connected. Trying [91m0--6B[32m:[91m11*B [scanner] FD17 connected. Trying [91m#&/+,[32m:[91m$+0'6+&'B [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 retrying with different auth combo! [scanner] FD6 connected. Trying [91mf`eezga[32m:[91m$'&! [table] Tried to double-lock value [scanner] FD20 received password prompt [scanner] FD6 connection gracefully closed [scanner] FD6 lost connection [scanner] FD6 Attempting to brute found IP 203.210.232.142 [scanner] FD17 connection gracefully closed [scanner] FD17 lost connection [scanner] FD17 retrying with different auth combo! [table] Tried to double-lock value [scanner] FD21 received password prompt [scanner] FD8 received shell prompt [scanner] FD17 connected. Trying [91mr`pfa[32m:[91m$'&! # [scanner] FD5 received sh prompt |
Standard Error: |
- system is lnxubuntu20
- 5OGAx17mRN.elf New Fork (PID: 5810, Parent: 5808)
- 5OGAx17mRN.elf New Fork (PID: 5812, Parent: 5808)
- 5OGAx17mRN.elf New Fork (PID: 5813, Parent: 5808)
- 5OGAx17mRN.elf New Fork (PID: 5815, Parent: 5808)
- 5OGAx17mRN.elf New Fork (PID: 5818, Parent: 5808)
- 5OGAx17mRN.elf New Fork (PID: 5826, Parent: 5808)
- 5OGAx17mRN.elf New Fork (PID: 5828, Parent: 5826)
- cleanup
Name | Description | Attribution | Blogpost URLs | Link |
---|---|---|---|---|
Mirai | Mirai is one of the first significant botnets targeting exposed networking devices running Linux. Found in August 2016 by MalwareMustDie, its name means "future" in Japanese. Nowadays it targets a wide range of networked embedded devices such as IP cameras, home routers (many vendors involved), and other IoT devices. Since the source code was published on "Hack Forums" many variants of the Mirai family appeared, infecting mostly home networks all around the world. | No Attribution |
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_Mirai_12 | Yara detected Mirai | Joe Security |
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
Linux_Trojan_Gafgyt_ea92cca8 | unknown | unknown |
| |
Mirai_Botnet_Malware | Detects Mirai Botnet Malware | Florian Roth |
| |
Linux_Trojan_Gafgyt_ea92cca8 | unknown | unknown |
| |
Mirai_Botnet_Malware | Detects Mirai Botnet Malware | Florian Roth |
| |
Linux_Trojan_Gafgyt_ea92cca8 | unknown | unknown |
| |
Click to see the 4 entries |
⊘No Snort rule has matched
Click to jump to signature section
Show All Signature Results
AV Detection |
---|
Source: | ReversingLabs: | |||
Source: | Virustotal: | Perma Link |
Networking |
---|
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: |