140 lines
10 KiB
Markdown
140 lines
10 KiB
Markdown
```
|
|
1714254281.586163 eth0 Out IP (tos 0x0, ttl 64, id 35615, offset 0, flags [DF], proto TCP (6), length 122)
|
|
10.0.2.15.43676 > 104.18.4.159.https: Flags [P.], cksum 0x792c (incorrect -> 0x37fd), seq 3715821991:3715822073, ack 148907904, win 56940, length 82
|
|
0x0000: 0800 0000 0000 0002 0001 0406 0800 271e ..............'.
|
|
0x0010: 364a 0000 4500 007a 8b1f 4000 4006 369f 6J..E..z..@.@.6.
|
|
0x0020: 0a00 020f 6812 049f aa9c 01bb dd7a f1a7 ....h........z..
|
|
0x0030: 08e0 2780 5018 de6c 792c 0000 1703 0300 ..'.P..ly,......
|
|
0x0040: 4db5 9255 fc41 b626 1eef 9481 df22 5e00 M..U.A.&....."^.
|
|
0x0050: 481e 443c fb27 e5a0 5aa7 043a a507 bd15 H.D<.'..Z..:....
|
|
0x0060: 19d0 b147 7173 24fb 13a9 b087 9310 ef70 ...Gqs$........p
|
|
0x0070: 5258 cea4 9fdb fb8e edc0 0c58 4d89 3af2 RX.........XM.:.
|
|
0x0080: 35fe 8732 89bd 064f f0eb 11ee 71fd 5..2...O....q.
|
|
1714254281.966538 eth0 Out IP (tos 0x0, ttl 64, id 35616, offset 0, flags [DF], proto TCP (6), length 40)
|
|
10.0.2.15.43676 > 104.18.4.159.https: Flags [.], cksum 0x78da (incorrect -> 0x64a5), ack 9796, win 65535, length 0
|
|
0x0000: 0800 0000 0000 0002 0001 0406 0800 271e ..............'.
|
|
0x0010: 364a 0000 4500 0028 8b20 4000 4006 36f0 6J..E..(..@.@.6.
|
|
0x0020: 0a00 020f 6812 049f aa9c 01bb dd7a f1f9 ....h........z..
|
|
0x0030: 08e0 4dc3 5010 ffff 78da 0000 ..M.P...x...
|
|
1714254281.999313 eth0 Out IP (tos 0x0, ttl 64, id 35617, offset 0, flags [DF], proto TCP (6), length 263)
|
|
10.0.2.15.43676 > 104.18.4.159.https: Flags [P.], cksum 0x79b9 (incorrect -> 0xef5a), seq 82:305, ack 9796, win 65535, length 223
|
|
0x0000: 0800 0000 0000 0002 0001 0406 0800 271e ..............'.
|
|
0x0010: 364a 0000 4500 0107 8b21 4000 4006 3610 6J..E....!@.@.6.
|
|
0x0020: 0a00 020f 6812 049f aa9c 01bb dd7a f1f9 ....h........z..
|
|
0x0030: 08e0 4dc3 5018 ffff 79b9 0000 1703 0300 ..M.P...y.......
|
|
0x0040: da1f b729 c748 ca0f a8d0 7161 7344 e0f4 ...).H....qasD..
|
|
0x0050: 2100 a952 c0d9 d145 cce8 26a4 6c46 9cd5 !..R...E..&.lF..
|
|
0x0060: 1533 932a 7ea9 bb94 1d02 40e1 96db 48e9 .3.*~.....@...H.
|
|
0x0070: 1485 4f08 7623 640e 82be 0a04 f5be 41b3 ..O.v#d.......A.
|
|
0x0080: ba3b 77c2 d33b 65cf 6d72 5f4e 8d2b d713 .;w..;e.mr_N.+..
|
|
0x0090: f27d 89e0 091d c154 0e88 5521 3065 3944 .}.....T..U!0e9D
|
|
0x00a0: a0db 2d11 bf43 2fc9 9ce0 815e 46fc 6ca3 ..-..C/....^F.l.
|
|
0x00b0: bb34 0f2a c0e1 7fda fd96 7d75 35c0 68c4 .4.*......}u5.h.
|
|
0x00c0: 65d2 1ee0 2378 f9ec ebec 9194 75e9 258a e...#x......u.%.
|
|
0x00d0: dabb 2873 791c b5a1 58ae f7de eaf1 4693 ..(sy...X.....F.
|
|
0x00e0: abb8 1c70 b87d e725 3ffe bb90 01d3 9657 ...p.}.%?......W
|
|
0x00f0: 22f6 898d a69a cb65 ff82 18e0 9a5c 4fda "......e.....\O.
|
|
0x0100: ba8d 1c01 e843 00f3 f3e2 697c 759b 5857 .....C....i|u.XW
|
|
0x0110: 92b9 e78f e175 c7dd 78e7 d7 .....u..x..
|
|
1714254281.999822 eth0 Out IP (tos 0x0, ttl 64, id 35618, offset 0, flags [DF], proto TCP (6), length 75)
|
|
10.0.2.15.43676 > 104.18.4.159.https: Flags [P.], cksum 0x78fd (incorrect -> 0x99ff), seq 305:340, ack 9796, win 65535, length 35
|
|
0x0000: 0800 0000 0000 0002 0001 0406 0800 271e ..............'.
|
|
0x0010: 364a 0000 4500 004b 8b22 4000 4006 36cb 6J..E..K."@.@.6.
|
|
0x0020: 0a00 020f 6812 049f aa9c 01bb dd7a f2d8 ....h........z..
|
|
0x0030: 08e0 4dc3 5018 ffff 78fd 0000 1703 0300 ..M.P...x.......
|
|
0x0040: 1e2d 0837 daa4 6875 18f9 3347 a959 0f2f .-.7..hu..3G.Y./
|
|
0x0050: cccd 40b3 4587 2c65 286e 0ae3 e091 ae ..@.E.,e(n.....
|
|
1714254282.537813 eth0 Out IP (tos 0x0, ttl 64, id 35619, offset 0, flags [DF], proto TCP (6), length 141)
|
|
10.0.2.15.43676 > 104.18.4.159.https: Flags [P.], cksum 0x793f (incorrect -> 0x0202), seq 340:441, ack 9796, win 65535, length 101
|
|
0x0000: 0800 0000 0000 0002 0001 0406 0800 271e ..............'.
|
|
0x0010: 364a 0000 4500 008d 8b23 4000 4006 3688 6J..E....#@.@.6.
|
|
0x0020: 0a00 020f 6812 049f aa9c 01bb dd7a f2fb ....h........z..
|
|
0x0030: 08e0 4dc3 5018 ffff 793f 0000 1703 0300 ..M.P...y?......
|
|
0x0040: 6081 f9a3 d9c0 29de 5f42 5f8a a658 d3af `.....)._B_..X..
|
|
0x0050: 975c afec 748a 65e0 72b3 6a75 fac1 a88c .\..t.e.r.ju....
|
|
0x0060: b187 59b2 713c 7731 e28a becb 83ba d9a3 ..Y.q<w1........
|
|
0x0070: 6cba 6ea5 7114 15af 9eca bd43 1b71 85a8 l.n.q......C.q..
|
|
0x0080: be9e 4a4f 537b 4592 25be 838c 9d29 84eb ..JOS{E.%....)..
|
|
0x0090: b83b 7e1b ba13 1143 57c0 a2da f1fd 7620 .;~....CW.....v.
|
|
0x00a0: eb .
|
|
1714254282.829738 eth0 Out IP (tos 0x0, ttl 64, id 35620, offset 0, flags [DF], proto TCP (6), length 137)
|
|
10.0.2.15.43676 > 104.18.4.159.https: Flags [P.], cksum 0x793b (incorrect -> 0x461d), seq 441:538, ack 9901, win 65535, length 97
|
|
0x0000: 0800 0000 0000 0002 0001 0406 0800 271e ..............'.
|
|
0x0010: 364a 0000 4500 0089 8b24 4000 4006 368b 6J..E....$@.@.6.
|
|
0x0020: 0a00 020f 6812 049f aa9c 01bb dd7a f360 ....h........z.`
|
|
0x0030: 08e0 4e2c 5018 ffff 793b 0000 1703 0300 ..N,P...y;......
|
|
0x0040: 5cb0 cd20 2d53 e0ab 8b63 3a7e 3cb7 69ae \...-S...c:~<.i.
|
|
0x0050: 5b54 5929 4f8a 609b 8f22 4c94 f028 1002 [TY)O.`.."L..(..
|
|
0x0060: a241 ede3 a819 97f3 a254 d610 d3be 4a53 .A.......T....JS
|
|
0x0070: 0536 ec32 2e72 1f4e b9ec d12c b8a9 7ff6 .6.2.r.N...,....
|
|
0x0080: ed63 64eb 0fb3 82f2 8ef9 a583 c026 1dc8 .cd..........&..
|
|
0x0090: c648 08e7 8d08 5c07 95bf b1c0 bd .H....\......
|
|
1714254282.962675 eth0 Out IP (tos 0x0, ttl 64, id 35621, offset 0, flags [DF], proto TCP (6), length 40)
|
|
10.0.2.15.43676 > 104.18.4.159.https: Flags [.], cksum 0x78da (incorrect -> 0x6239), ack 9960, win 65535, length 0
|
|
0x0000: 0800 0000 0000 0002 0001 0406 0800 271e ..............'.
|
|
0x0010: 364a 0000 4500 0028 8b25 4000 4006 36eb 6J..E..(.%@.@.6.
|
|
0x0020: 0a00 020f 6812 049f aa9c 01bb dd7a f3c1 ....h........z..
|
|
0x0030: 08e0 4e67 5010 ffff 78da 0000 ..NgP...x...
|
|
1714254283.266608 eth0 Out IP (tos 0x0, ttl 64, id 51895, offset 0, flags [DF], proto TCP (6), length 60)
|
|
10.0.2.15.54604 > cloudproxy10013.sucuri.net.https: Flags [S], cksum 0xc5c7 (incorrect -> 0x90c0), seq 2831405068, win 32120, options [mss 1460,sackOK,TS val 3900914639 ecr 0,nop,wscale 10], length 0
|
|
0x0000: 0800 0000 0000 0002 0001 0406 0800 271e ..............'.
|
|
0x0010: 364a 0000 4500 003c cab7 4000 4006 aa6b 6J..E..<..@.@..k
|
|
0x0020: 0a00 020f c07c f90d d54c 01bb a8c3 d00c .....|...L......
|
|
0x0030: 0000 0000 a002 7d78 c5c7 0000 0204 05b4 ......}x........
|
|
0x0040: 0402 080a e883 3bcf 0000 0000 0103 030a ......;.........
|
|
1714254283.288387 eth0 Out IP (tos 0x0, ttl 64, id 51896, offset 0, flags [DF], proto TCP (6), length 40)
|
|
10.0.2.15.54604 > cloudproxy10013.sucuri.net.https: Flags [.], cksum 0xc5b3 (incorrect -> 0x21d4), ack 185856002, win 32120, length 0
|
|
0x0000: 0800 0000 0000 0002 0001 0406 0800 271e ..............'.
|
|
0x0010: 364a 0000 4500 0028 cab8 4000 4006 aa7e 6J..E..(..@.@..~
|
|
0x0020: 0a00 020f c07c f90d d54c 01bb a8c3 d00d .....|...L......
|
|
0x0030: 0b13 f002 5010 7d78 c5b3 0000 ....P.}x....
|
|
1714254283.294936 eth0 Out IP (tos 0x0, ttl 64, id 51897, offset 0, flags [DF], proto TCP (6), length 720)
|
|
10.0.2.15.54604 > cloudproxy10013.sucuri.net.https: Flags [P.], cksum 0xc85b (incorrect -> 0xeb29), seq 0:680, ack 1, win 32120, length 680
|
|
0x0000: 0800 0000 0000 0002 0001 0406 0800 271e ..............'.
|
|
0x0010: 364a 0000 4500 02d0 cab9 4000 4006 a7d5 6J..E.....@.@...
|
|
0x0020: 0a00 020f c07c f90d d54c 01bb a8c3 d00d .....|...L......
|
|
0x0030: 0b13 f002 5018 7d78 c85b 0000 1603 0102 ....P.}x.[......
|
|
0x0040: a301 0002 9f03 0375 036c 0067 3d60 1347 .......u.l.g=`.G
|
|
0x0050: a1ac a757 e60e b984 ba79 3de9 49a2 7186 ...W.....y=.I.q.
|
|
0x0060: 44a6 6dd6 4fd8 7420 cfd2 3e3e a5e2 4255 D.m.O.t...>>..BU
|
|
0x0070: 9c3d e990 e7cd db94 18d2 4b88 71ba 5ccd .=........K.q.\.
|
|
0x0080: 5397 3daa 80cf a71b 0022 1301 1303 1302 S.=......"......
|
|
0x0090: c02b c02f cca9 cca8 c02c c030 c00a c009 .+./.....,.0....
|
|
0x00a0: c013 c014 009c 009d 002f 0035 0100 0234 ........./.5...4
|
|
0x00b0: 0000 0017 0015 0000 1277 7777 2e65 7870 .........www.exp
|
|
0x00c0: 6c6f 6974 2d64 622e 636f 6d00 1700 00ff loit-db.com.....
|
|
0x00d0: 0100 0100 000a 000e 000c 001d 0017 0018 ................
|
|
0x00e0: 0019 0100 0101 000b 0002 0100 0010 000e ................
|
|
0x00f0: 000c 0268 3208 6874 7470 2f31 2e31 0005 ...h2.http/1.1..
|
|
0x0100: 0005 0100 0000 0000 2200 0a00 0804 0305 ........".......
|
|
0x0110: 0306 0302 0300 3300 6b00 6900 1d00 20ea ......3.k.i.....
|
|
0x0120: c87c 82da f088 0c0c aadc 4155 078b b80c .|........AU....
|
|
0x0130: 0f90 fd4c a426 d49f eeac 0a14 545b 2700 ...L.&......T['.
|
|
0x0140: 1700 4104 70b8 f315 70a3 1646 383e 0267 ..A.p...p..F8>.g
|
|
0x0150: a19c c600 d350 b82c b14f aba3 1b3a 8f78 .....P.,.O...:.x
|
|
0x0160: 9666 7d0e 5402 4409 1833 a77e 7e73 50a0 .f}.T.D..3.~~sP.
|
|
0x0170: bf53 333b 805c b610 6c5e a20b f06c 8498 .S3;.\..l^...l..
|
|
0x0180: 39fa b60f 002b 0005 0403 0403 0300 0d00 9....+..........
|
|
0x0190: 1800 1604 0305 0306 0308 0408 0508 0604 ................
|
|
0x01a0: 0105 0106 0102 0302 0100 2d00 0201 0100 ..........-.....
|
|
0x01b0: 1c00 0240 0100 2901 2b00 f600 f0f4 0c8b ...@..).+.......
|
|
0x01c0: 5112 991d 83a6 c0ea 7598 add7 132c 9e10 Q.......u....,..
|
|
0x01d0: 36d0 b637 2cff 8174 f477 73a1 a2c9 31e4 6..7,..t.ws...1.
|
|
0x01e0: 0468 69d0 bb72 0273 82b0 5425 920b 0831 .hi..r.s..T%...1
|
|
0x01f0: ec69 51f0 166a defa 9dc4 36ee 688e 1055 .iQ..j....6.h..U
|
|
0x0200: d384 0f61 3265 5873 8cf6 5aa4 5859 7d7e ...a2eXs..Z.XY}~
|
|
0x0210: 0ac1 d28e bd3b a4fa 2914 bf60 eec9 f11a .....;..)..`....
|
|
0x0220: 9920 9541 7e5d 874b 0d98 b142 91fc 6255 ...A~].K...B..bU
|
|
0x0230: ac49 07ea 891c e4bf 8348 38fe d556 f6fa .I.......H8..V..
|
|
0x0240: 20c0 5024 eb07 aa5c a50d 96ec c8f0 6986 ..P$...\......i.
|
|
0x0250: 5d5e db93 7f35 cdda 3cec fc59 3322 b2a1 ]^...5..<..Y3"..
|
|
0x0260: 21af 1fd7 3f40 c56e 1eec 35c2 8fd6 a3ab !...?@.n..5.....
|
|
0x0270: 23a9 63df fa89 21ba 2e7e 40bd bc2a 10dd #.c...!..~@..*..
|
|
0x0280: ee6c 6484 6011 680f 7ba4 b253 e30f 6eb1 .ld.`.h.{..S..n.
|
|
0x0290: fc3a f8b4 28f0 576a 795f b6fe 8d9a 7867 .:..(.Wjy_....xg
|
|
0x02a0: 3a7f dc7c 6635 47e2 3abe 01f5 764a 815c :..|f5G.:...vJ.\
|
|
0x02b0: 3900 3130 ef7d 112b 0c56 ea3c 4640 a251 9.10.}.+.V.<F@.Q
|
|
0x02c0: d7a6 cb88 a05e 4f92 5e3c 287f 7b77 720d .....^O.^<(.{wr.
|
|
0x02d0: ae34 5e13 57a0 a646 5364 473e 9d1f 331b .4^.W..FSdG>..3.
|
|
0x02e0: 3a4a f2bd :J..
|
|
``` |