NetWork | ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
11.13 04:11
hello.exe
11.13 03:11
espsemhvcioff.exe
11.13 02:11
Geek_se.exe
11.13 02:11
cred64.dll
11.13 02:11
svhost.exe
11.13 02:11
nb.exe
11.13 02:11
svcyr.exe
11.13 02:11
Ghost_1.5.11.5.exe
11.13 02:11
PowderGpl.exe
11.13 02:11
goodlabel%E6%89%93%E5%...

Latest News
11.14 02:11
Google Chrome security...
11.14 02:11
Ivanti security adviso...
11.14 02:11
Telecom Italia Debt Go...
11.14 02:11
Wrap Up the Year with ...
11.14 02:11
November Patch Tuesday...
11.14 02:11
Upwind closes $100M in...
11.14 02:11
Trinseo's Tammy Klotz:...
11.14 02:11
Syxsense's Mary Yang: ...
11.14 02:11
Stanley Black & De...
11.14 02:11
Schneider Electric's C...

NetWork | ZeroBOX

IP Address	Status	Action
164.124.101.2	Active	Moloch
183.111.183.31	Active	Moloch
194.9.94.86	Active	Moloch
198.12.241.35	Active	Moloch
45.33.6.223	Active	Moloch
54.38.220.85	Active	Moloch
66.96.161.166	Active	Moloch
91.195.240.19	Active	Moloch

Name	Response	Post-Analysis Lookup
www.terelprime.com	A 66.96.161.166	66.96.161.166
www.99b6q.xyz
www.mrart.co.kr	CNAME mrart.co.kr A 183.111.183.31	183.111.183.31
www.primeplay88.org	CNAME parkingpage.namecheap.com A 91.195.240.19	91.195.240.19
www.xn--matfrmn-jxa4m.se	A 194.9.94.86 A 194.9.94.85	194.9.94.85
www.besthomeincome24.com
www.aceautocorp.com	CNAME aceautocorp.com A 198.12.241.35	198.12.241.35
www.sqlite.org	A 45.33.6.223	45.33.6.223
www.kinkynerdspro.blog	A 94.23.162.163 A 54.38.220.85	94.23.162.163

TCP Requests

UDP Requests

No traffic

ICMP traffic

Source	Destination	ICMP Type	Data
192.168.56.103	164.124.101.2	3

IRC traffic

No IRC requests performed.

Suricata Alerts

Flow	SID	Signature	Category
TCP 192.168.56.103:49185 -> 198.12.241.35:80	2221033	SURICATA HTTP Request abnormal Content-Encoding header	Generic Protocol Command Decode
TCP 192.168.56.103:49184 -> 198.12.241.35:80	2221033	SURICATA HTTP Request abnormal Content-Encoding header	Generic Protocol Command Decode

Suricata TLS

No Suricata TLS

Snort Alerts

No Snort Alerts