-
Notifications
You must be signed in to change notification settings - Fork 0
/
logs.txt
366 lines (366 loc) · 63.3 KB
/
logs.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
2023-06-19T23:00:00+05:30 pfSense 1687195799.931 - notice 5 user: 462 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:00+05:30 pfSense 1687195800.128 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:00+05:30 pfSense 1687195800.401 - notice 5 user: 458 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:00+05:30 pfSense 1687195800.882 - notice 5 user: 471 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:02+05:30 pfSense 1687195801.046 - notice 5 user: 1 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:02+05:30 pfSense 1687195801.099 - notice 5 user: 13 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:02+05:30 pfSense 1687195801.100 - notice 5 user: 0 10.19.45.37 TCP_DENIED/407 3953 CONNECT femetrics.grammarly.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:02+05:30 pfSense 1687195801.174 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:02+05:30 pfSense 1687195801.190 - notice 5 user: 1 10.19.45.37 TCP_DENIED/407 3993 CONNECT f-log-win-extension.grammarly.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:02+05:30 pfSense 1687195801.246 - notice 5 user: 7 172.30.18.83 NONE/503 0 CONNECT https:443 noc_pune HIER_NONE/- -
2023-06-19T23:00:02+05:30 pfSense 1687195801.290 - notice 5 user: 1 172.30.2.52 TCP_DENIED/407 4001 CONNECT ksn-verdict-geo.kaspersky-labs.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:02+05:30 pfSense 1687195801.400 - notice 5 user: 492 10.192.49.25 TCP_TUNNEL/200 2595 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:02+05:30 pfSense 1687195801.882 - notice 5 user: 470 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:03+05:30 pfSense 1687195802.221 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:03+05:30 pfSense 1687195802.350 - notice 5 user: 457 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:03+05:30 pfSense 1687195802.639 - notice 5 user: 1 10.192.49.25 NONE/503 0 CONNECT https:443 - HIER_NONE/- -
2023-06-19T23:00:03+05:30 pfSense 1687195802.814 - notice 5 user: 1 10.19.45.12 TCP_DENIED/407 4123 GET http://www.msftconnecttest.com/connecttest.txt - HIER_NONE/- text/html
2023-06-19T23:00:03+05:30 pfSense 1687195802.819 - notice 5 user: 459 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:03+05:30 pfSense 1687195802.843 - notice 5 user: 2 10.192.49.25 NONE/503 0 CONNECT https:443 - HIER_NONE/- -
2023-06-19T23:00:03+05:30 pfSense 1687195803.020 - notice 5 user: 2 10.192.49.25 NONE/503 0 CONNECT https:443 - HIER_NONE/- -
2023-06-19T23:00:04+05:30 pfSense 1687195803.232 - notice 5 user: 1 10.192.49.25 NONE/503 0 CONNECT https:443 - HIER_NONE/- -
2023-06-19T23:00:04+05:30 pfSense 1687195803.266 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:04+05:30 pfSense 1687195803.395 - notice 5 user: 2 10.192.49.25 NONE/503 0 CONNECT https:443 - HIER_NONE/- -
2023-06-19T23:00:04+05:30 pfSense 1687195803.406 - notice 5 user: 459 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:04+05:30 pfSense 1687195803.490 - notice 5 user: 1 10.192.49.25 TCP_DENIED/407 4391 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:04+05:30 pfSense 1687195803.500 - notice 5 user: 6 10.192.49.25 TCP_MISS/503 4819 GET https://172.30.100.147/sgerror.php? noc_bgl HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:04+05:30 pfSense 1687195803.501 - notice 5 user: 868 10.192.49.25 TCP_TUNNEL/200 4574 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:04+05:30 pfSense 1687195803.609 - notice 5 user: 1 10.192.49.25 NONE/503 0 CONNECT https:443 - HIER_NONE/- -
2023-06-19T23:00:04+05:30 pfSense 1687195803.766 - notice 5 user: 3 10.192.49.25 NONE/503 0 CONNECT https:443 - HIER_NONE/- -
2023-06-19T23:00:04+05:30 pfSense 1687195803.883 - notice 5 user: 467 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:04+05:30 pfSense 1687195803.898 - notice 5 user: 1 10.192.49.25 NONE/503 0 CONNECT https:443 - HIER_NONE/- -
2023-06-19T23:00:05+05:30 pfSense 1687195804.093 - notice 5 user: 2 10.192.49.25 NONE/503 0 CONNECT https:443 - HIER_NONE/- -
2023-06-19T23:00:05+05:30 pfSense 1687195804.148 - notice 5 user: 1 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:05+05:30 pfSense 1687195804.195 - notice 5 user: 7 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:05+05:30 pfSense 1687195804.267 - notice 5 user: 1 10.192.49.25 NONE/503 0 CONNECT https:443 - HIER_NONE/- -
2023-06-19T23:00:05+05:30 pfSense 1687195804.315 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:05+05:30 pfSense 1687195804.353 - notice 5 user: 459 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:05+05:30 pfSense 1687195804.409 - notice 5 user: 2 10.192.49.25 NONE/503 0 CONNECT https:443 - HIER_NONE/- -
2023-06-19T23:00:05+05:30 pfSense 1687195804.714 - notice 5 user: 2 10.192.49.25 NONE/503 0 CONNECT https:443 - HIER_NONE/- -
2023-06-19T23:00:05+05:30 pfSense 1687195804.823 - notice 5 user: 457 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:05+05:30 pfSense 1687195804.937 - notice 5 user: 3 10.192.49.25 NONE/503 0 CONNECT https:443 - HIER_NONE/- -
2023-06-19T23:00:05+05:30 pfSense 1687195804.958 - notice 5 user: 1453 10.192.49.25 TCP_TUNNEL/200 5488 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:06+05:30 pfSense 1687195805.123 - notice 5 user: 2 10.192.49.25 NONE/503 0 CONNECT https:443 - HIER_NONE/- -
2023-06-19T23:00:06+05:30 pfSense 1687195805.315 - notice 5 user: 456 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:06+05:30 pfSense 1687195805.348 - notice 5 user: 2 10.192.49.25 NONE/503 0 CONNECT https:443 - HIER_NONE/- -
2023-06-19T23:00:06+05:30 pfSense 1687195805.362 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:06+05:30 pfSense 1687195805.509 - notice 5 user: 2 10.192.49.25 NONE/503 0 CONNECT https:443 - HIER_NONE/- -
2023-06-19T23:00:06+05:30 pfSense 1687195805.644 - notice 5 user: 2 10.192.49.25 NONE/503 0 CONNECT https:443 - HIER_NONE/- -
2023-06-19T23:00:06+05:30 pfSense 1687195805.793 - notice 5 user: 467 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:07+05:30 pfSense 1687195806.261 - notice 5 user: 458 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:07+05:30 pfSense 1687195806.410 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:07+05:30 pfSense 1687195806.737 - notice 5 user: 465 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:07+05:30 pfSense 1687195807.113 - notice 5 user: 680 10.192.49.25 TCP_TUNNEL/200 4574 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:08+05:30 pfSense 1687195807.244 - notice 5 user: 1 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:08+05:30 pfSense 1687195807.298 - notice 5 user: 14 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:08+05:30 pfSense 1687195807.454 - notice 5 user: 471 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:08+05:30 pfSense 1687195807.456 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:08+05:30 pfSense 1687195807.959 - notice 5 user: 474 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:08+05:30 pfSense 1687195808.093 - notice 5 user: 977 10.192.49.25 TCP_TUNNEL/200 5030 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:09+05:30 pfSense 1687195808.503 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:10+05:30 pfSense 1687195809.550 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:11+05:30 pfSense 1687195810.348 - notice 5 user: 1 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:11+05:30 pfSense 1687195810.402 - notice 5 user: 14 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:11+05:30 pfSense 1687195810.595 - notice 5 user: 2 10.19.45.59 TCP_DENIED/407 4127 CONNECT googledevelopupdate.dynssl.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:11+05:30 pfSense 1687195810.597 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:11+05:30 pfSense 1687195811.201 - notice 5 user: 1 10.19.45.37 TCP_DENIED/407 3953 CONNECT femetrics.grammarly.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:11+05:30 pfSense 1687195811.274 - notice 5 user: 1 10.19.45.37 TCP_DENIED/407 3993 CONNECT f-log-win-extension.grammarly.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:12+05:30 pfSense 1687195811.643 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:12+05:30 pfSense 1687195811.890 - notice 5 user: 12 10.19.45.19 TCP_MISS/503 4966 POST https://172.30.100.147/sgerror.php? noc_pune HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:12+05:30 pfSense 1687195811.967 - notice 5 user: 267 10.19.45.19 TCP_TUNNEL/200 7685 CONNECT safebrowsing.googleapis.com:443 - HIER_DIRECT/142.250.195.74 -
2023-06-19T23:00:13+05:30 pfSense 1687195812.690 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:13+05:30 pfSense 1687195812.910 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 4164 CONNECT safebrowsing.google.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:13+05:30 pfSense 1687195813.268 - notice 5 user: 1 10.19.45.59 TCP_DENIED/407 4129 CONNECT clients4.google.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:14+05:30 pfSense 1687195813.453 - notice 5 user: 1 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:14+05:30 pfSense 1687195813.505 - notice 5 user: 12 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:14+05:30 pfSense 1687195813.736 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:15+05:30 pfSense 1687195814.725 - notice 5 user: 2 172.30.18.79 TCP_DENIED/407 4168 CONNECT getpocket.cdn.mozilla.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:15+05:30 pfSense 1687195814.784 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:15+05:30 pfSense 1687195815.290 - notice 5 user: 458 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:15+05:30 pfSense 1687195815.322 - notice 5 user: 3 172.30.2.23 NONE/503 0 CONNECT https:443 noc_bgl HIER_NONE/- -
2023-06-19T23:00:15+05:30 pfSense 1687195815.483 - notice 5 user: 1 172.30.18.79 TCP_DENIED/407 3975 CONNECT boot.net.anydesk.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:16+05:30 pfSense 1687195815.510 - notice 5 user: 9 172.30.18.79 NONE/503 0 CONNECT https:443 noc_pune HIER_NONE/- -
2023-06-19T23:00:16+05:30 pfSense 1687195815.548 - notice 5 user: 0 172.30.18.79 TCP_DENIED/403 3831 CONNECT boot.net.anydesk.com:80 - HIER_NONE/- text/html
2023-06-19T23:00:16+05:30 pfSense 1687195815.770 - notice 5 user: 468 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:16+05:30 pfSense 1687195815.831 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:16+05:30 pfSense 1687195816.221 - notice 5 user: 1 172.30.18.17 TCP_DENIED/407 3975 CONNECT boot.net.anydesk.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:16+05:30 pfSense 1687195816.257 - notice 5 user: 0 172.30.18.17 TCP_DENIED/403 3831 CONNECT boot.net.anydesk.com:80 - HIER_NONE/- text/html
2023-06-19T23:00:16+05:30 pfSense 1687195816.286 - notice 5 user: 466 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:16+05:30 pfSense 1687195816.451 - notice 5 user: 998 10.171.7.2 TCP_TUNNEL/200 5029 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:17+05:30 pfSense 1687195816.555 - notice 5 user: 1 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:17+05:30 pfSense 1687195816.610 - notice 5 user: 13 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:17+05:30 pfSense 1687195816.774 - notice 5 user: 476 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:17+05:30 pfSense 1687195816.877 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:17+05:30 pfSense 1687195817.264 - notice 5 user: 459 10.192.49.25 TCP_TUNNEL/200 2595 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:18+05:30 pfSense 1687195817.738 - notice 5 user: 464 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:18+05:30 pfSense 1687195817.924 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:18+05:30 pfSense 1687195818.343 - notice 5 user: 460 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:19+05:30 pfSense 1687195818.820 - notice 5 user: 466 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:19+05:30 pfSense 1687195818.864 - notice 5 user: 0 172.30.18.74 TCP_DENIED/407 4190 CONNECT config.edge.skype.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:19+05:30 pfSense 1687195818.971 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:19+05:30 pfSense 1687195819.299 - notice 5 user: 457 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:20+05:30 pfSense 1687195819.639 - notice 5 user: 0 10.171.7.2 TCP_DENIED/407 4672 GET http://4.au.download.windowsupdate.com/c/msdownload/update/software/uprl/2023/06/windows-kb890830-x64-v5.114_54a7d4205b1370b995d3137cb06a4f097d17a1f5.exe - HIER_NONE/- text/html
2023-06-19T23:00:20+05:30 pfSense 1687195819.646 - notice 5 user: 4 10.171.7.2 TCP_MISS/503 4931 GET https://172.30.100.147/sgerror.php? noc_wifi HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:20+05:30 pfSense 1687195819.663 - notice 5 user: 0 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:20+05:30 pfSense 1687195819.711 - notice 5 user: 8 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:20+05:30 pfSense 1687195819.766 - notice 5 user: 456 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:20+05:30 pfSense 1687195819.806 - notice 5 user: 0 10.179.27.124 TCP_DENIED/407 4176 CONNECT android.clients.google.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:20+05:30 pfSense 1687195820.017 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:20+05:30 pfSense 1687195820.246 - notice 5 user: 454 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:20+05:30 pfSense 1687195820.293 - notice 5 user: 0 172.30.18.98 TCP_DENIED/407 4332 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:20+05:30 pfSense 1687195820.318 - notice 5 user: 8 172.30.18.98 TCP_MISS/503 4769 GET https://172.30.100.147/sgerror.php? noc_pune HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:20+05:30 pfSense 1687195820.366 - notice 5 user: 0 172.30.18.98 TCP_DENIED/407 4308 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/pinrulesstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:20+05:30 pfSense 1687195820.387 - notice 5 user: 3 172.30.18.98 TCP_MISS/503 4763 GET https://172.30.100.147/sgerror.php? noc_pune HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:20+05:30 pfSense 1687195820.490 - notice 5 user: 0 10.171.7.1 TCP_DENIED/407 4199 CONNECT config.edge.skype.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:21+05:30 pfSense 1687195821.067 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:21+05:30 pfSense 1687195821.190 - notice 5 user: 673 10.192.49.25 TCP_TUNNEL/200 4574 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:21+05:30 pfSense 1687195821.293 - notice 5 user: 1 10.19.45.37 TCP_DENIED/407 3953 CONNECT femetrics.grammarly.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:21+05:30 pfSense 1687195821.370 - notice 5 user: 1 10.19.45.37 TCP_DENIED/407 3993 CONNECT f-log-win-extension.grammarly.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:22+05:30 pfSense 1687195822.111 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:22+05:30 pfSense 1687195822.557 - notice 5 user: 1365 10.192.49.25 TCP_TUNNEL/200 5486 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:23+05:30 pfSense 1687195822.764 - notice 5 user: 2 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:23+05:30 pfSense 1687195822.816 - notice 5 user: 11 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:23+05:30 pfSense 1687195823.157 - notice 5 user: 1 172.30.18.83 TCP_DENIED/407 4391 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:23+05:30 pfSense 1687195823.158 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:23+05:30 pfSense 1687195823.185 - notice 5 user: 9 172.30.18.83 TCP_MISS/503 4828 GET https://172.30.100.147/sgerror.php? noc_pune HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:23+05:30 pfSense 1687195823.205 - notice 5 user: 804 172.30.18.83 TCP_TUNNEL/200 4574 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:24+05:30 pfSense 1687195824.230 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:25+05:30 pfSense 1687195824.891 - notice 5 user: 0 172.30.2.23 TCP_DENIED/407 4331 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:25+05:30 pfSense 1687195824.896 - notice 5 user: 3 172.30.2.23 TCP_MISS/503 4757 GET https://172.30.100.147/sgerror.php? noc_bgl HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:25+05:30 pfSense 1687195824.904 - notice 5 user: 0 172.30.2.23 TCP_DENIED/407 4307 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/pinrulesstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:25+05:30 pfSense 1687195824.908 - notice 5 user: 2 172.30.2.23 TCP_MISS/503 4751 GET https://172.30.100.147/sgerror.php? noc_bgl HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:25+05:30 pfSense 1687195825.268 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:25+05:30 pfSense 1687195825.292 - notice 5 user: 2069 172.30.18.83 TCP_TUNNEL/200 5484 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:25+05:30 pfSense 1687195825.488 - notice 5 user: 1 10.19.45.59 TCP_DENIED/407 4113 CONNECT ssl.gstatic.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:25+05:30 pfSense 1687195825.489 - notice 5 user: 1 10.19.45.59 TCP_DENIED/407 4113 CONNECT ssl.gstatic.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:25+05:30 pfSense 1687195825.634 - notice 5 user: 1 172.30.2.52 TCP_DENIED/407 4331 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:25+05:30 pfSense 1687195825.646 - notice 5 user: 7 172.30.2.52 TCP_MISS/503 4757 GET https://172.30.100.147/sgerror.php? noc_bgl HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:25+05:30 pfSense 1687195825.661 - notice 5 user: 1 172.30.2.52 TCP_DENIED/407 4307 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/pinrulesstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:25+05:30 pfSense 1687195825.669 - notice 5 user: 4 172.30.2.52 TCP_MISS/503 4751 GET https://172.30.100.147/sgerror.php? noc_bgl HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:25+05:30 pfSense 1687195825.768 - notice 5 user: 732 10.19.45.21 TCP_TUNNEL/200 4574 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:26+05:30 pfSense 1687195825.859 - notice 5 user: 1 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:26+05:30 pfSense 1687195825.911 - notice 5 user: 11 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:26+05:30 pfSense 1687195826.205 - notice 5 user: 1 172.30.18.98 TCP_DENIED/407 4124 GET http://www.msftconnecttest.com/connecttest.txt - HIER_NONE/- text/html
2023-06-19T23:00:26+05:30 pfSense 1687195826.315 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:26+05:30 pfSense 1687195826.591 - notice 5 user: 1 172.30.2.36 TCP_DENIED/407 3905 CONNECT g.live.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:26+05:30 pfSense 1687195826.595 - notice 5 user: 3 172.30.2.36 NONE/503 0 CONNECT https:443 noc_bgl HIER_NONE/- -
2023-06-19T23:00:27+05:30 pfSense 1687195827.362 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:27+05:30 pfSense 1687195827.654 - notice 5 user: 1865 10.19.45.21 TCP_TUNNEL/200 5027 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:27+05:30 pfSense 1687195827.774 - notice 5 user: 469 10.192.49.25 TCP_TUNNEL/200 2595 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:28+05:30 pfSense 1687195828.239 - notice 5 user: 1 172.30.18.99 TCP_DENIED/407 4332 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:28+05:30 pfSense 1687195828.246 - notice 5 user: 458 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:28+05:30 pfSense 1687195828.270 - notice 5 user: 11 172.30.18.99 TCP_MISS/503 4769 GET https://172.30.100.147/sgerror.php? noc_pune HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:28+05:30 pfSense 1687195828.326 - notice 5 user: 1 172.30.18.99 TCP_DENIED/407 4308 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/pinrulesstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:28+05:30 pfSense 1687195828.352 - notice 5 user: 6 172.30.18.99 TCP_MISS/503 4763 GET https://172.30.100.147/sgerror.php? noc_pune HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:28+05:30 pfSense 1687195828.410 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:28+05:30 pfSense 1687195828.599 - notice 5 user: 1 10.192.49.25 TCP_DENIED/407 474 HEAD http://edgedl.me.gvt1.com/edgedl/delta-update/ojhpjlocmbogdgmfpkhlaaeamibhnphh/1.545666a4efd056351597bb386aea1368105ededc976ed5650d8682daab9f37ff/1.478aa915e78878e332a0b4bb4d2a6fb67ff1c7f7b62fe906f47095ba5ae112d0/9b2bfda70d768eecb06fa44035b89dc8bc4213b93a8c0321c5321c464bd852cd.crxd - HIER_NONE/- text/html
2023-06-19T23:00:28+05:30 pfSense 1687195828.727 - notice 5 user: 469 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:29+05:30 pfSense 1687195828.957 - notice 5 user: 1 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:29+05:30 pfSense 1687195829.009 - notice 5 user: 11 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:29+05:30 pfSense 1687195829.395 - notice 5 user: 457 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:29+05:30 pfSense 1687195829.456 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:29+05:30 pfSense 1687195829.659 - notice 5 user: 1 172.30.18.76 TCP_DENIED/407 4308 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:29+05:30 pfSense 1687195829.689 - notice 5 user: 11 172.30.18.76 TCP_MISS/503 4763 GET https://172.30.100.147/sgerror.php? noc_pune HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:29+05:30 pfSense 1687195829.736 - notice 5 user: 0 172.30.18.76 TCP_DENIED/407 4332 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:29+05:30 pfSense 1687195829.756 - notice 5 user: 2 172.30.18.76 TCP_MISS/503 4769 GET https://172.30.100.147/sgerror.php? noc_pune HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:29+05:30 pfSense 1687195829.805 - notice 5 user: 0 172.30.18.76 TCP_DENIED/407 4308 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/pinrulesstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:29+05:30 pfSense 1687195829.826 - notice 5 user: 3 172.30.18.76 TCP_MISS/503 4763 GET https://172.30.100.147/sgerror.php? noc_pune HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:29+05:30 pfSense 1687195829.873 - notice 5 user: 466 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:30+05:30 pfSense 1687195830.305 - notice 5 user: 1 172.30.2.52 TCP_DENIED/407 4176 CONNECT config.edge.skype.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:30+05:30 pfSense 1687195830.350 - notice 5 user: 466 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:30+05:30 pfSense 1687195830.504 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:30+05:30 pfSense 1687195830.820 - notice 5 user: 459 10.192.49.25 TCP_TUNNEL/200 2595 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:30+05:30 pfSense 1687195830.897 - notice 5 user: 240360 172.30.18.38 TCP_TUNNEL/200 1756 CONNECT clientservices.googleapis.com:443 - HIER_DIRECT/142.250.195.131 -
2023-06-19T23:00:31+05:30 pfSense 1687195831.208 - notice 5 user: 703 10.192.49.25 TCP_TUNNEL/200 4574 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:31+05:30 pfSense 1687195831.252 - notice 5 user: 54 172.30.18.82 NONE/503 0 CONNECT bsnltrial.webex.com:443 - HIER_NONE/- -
2023-06-19T23:00:31+05:30 pfSense 1687195831.303 - notice 5 user: 458 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:31+05:30 pfSense 1687195831.376 - notice 5 user: 1 10.19.45.37 TCP_DENIED/407 3953 CONNECT femetrics.grammarly.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:31+05:30 pfSense 1687195831.460 - notice 5 user: 1 10.19.45.37 TCP_DENIED/407 3993 CONNECT f-log-win-extension.grammarly.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:31+05:30 pfSense 1687195831.462 - notice 5 user: 1 10.192.49.25 TCP_DENIED/407 4332 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:31+05:30 pfSense 1687195831.471 - notice 5 user: 7 10.192.49.25 TCP_MISS/503 4760 GET https://172.30.100.147/sgerror.php? noc_bgl HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:31+05:30 pfSense 1687195831.482 - notice 5 user: 0 10.192.49.25 TCP_DENIED/407 4308 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/pinrulesstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:31+05:30 pfSense 1687195831.488 - notice 5 user: 4 10.192.49.25 TCP_MISS/503 4754 GET https://172.30.100.147/sgerror.php? noc_bgl HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:31+05:30 pfSense 1687195831.549 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:31+05:30 pfSense 1687195831.771 - notice 5 user: 457 10.192.49.25 TCP_TUNNEL/200 2595 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:33+05:30 pfSense 1687195832.051 - notice 5 user: 1 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:33+05:30 pfSense 1687195832.105 - notice 5 user: 15 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:33+05:30 pfSense 1687195832.140 - notice 5 user: 931 10.192.49.25 TCP_TUNNEL/200 5030 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:33+05:30 pfSense 1687195832.253 - notice 5 user: 471 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:33+05:30 pfSense 1687195832.597 - notice 5 user: 1 10.192.49.25 TCP_DENIED/407 5206 GET http://edgedl.me.gvt1.com/edgedl/delta-update/ojhpjlocmbogdgmfpkhlaaeamibhnphh/1.545666a4efd056351597bb386aea1368105ededc976ed5650d8682daab9f37ff/1.478aa915e78878e332a0b4bb4d2a6fb67ff1c7f7b62fe906f47095ba5ae112d0/9b2bfda70d768eecb06fa44035b89dc8bc4213b93a8c0321c5321c464bd852cd.crxd - HIER_NONE/- text/html
2023-06-19T23:00:33+05:30 pfSense 1687195832.598 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:33+05:30 pfSense 1687195832.611 - notice 5 user: 0 10.192.49.25 TCP_DENIED/407 474 HEAD http://edgedl.me.gvt1.com/edgedl/release2/chrome_component/j2hxfei2occ5siitujtlwgp6xi_3/ojhpjlocmbogdgmfpkhlaaeamibhnphh_3_all_gplutbkdljxxbjolk3siq7kive.crx3 - HIER_NONE/- text/html
2023-06-19T23:00:33+05:30 pfSense 1687195832.722 - notice 5 user: 458 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:34+05:30 pfSense 1687195833.644 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:35+05:30 pfSense 1687195834.078 - notice 5 user: 171310 172.30.18.85 TCP_TUNNEL/200 2548 CONNECT contile.services.mozilla.com:443 - HIER_DIRECT/34.117.237.239 -
2023-06-19T23:00:35+05:30 pfSense 1687195834.090 - notice 5 user: 124754 10.171.7.1 TCP_TUNNEL/200 3139 CONNECT array604.prod.do.dsp.mp.microsoft.com:443 - HIER_DIRECT/51.104.162.168 -
2023-06-19T23:00:35+05:30 pfSense 1687195834.660 - notice 5 user: 1 10.192.49.25 TCP_DENIED/407 4147 CONNECT accounts.google.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:35+05:30 pfSense 1687195834.690 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:35+05:30 pfSense 1687195834.835 - notice 5 user: 2 172.30.2.25 NONE/503 0 CONNECT https:443 noc_vpn HIER_NONE/- -
2023-06-19T23:00:36+05:30 pfSense 1687195835.150 - notice 5 user: 1 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:36+05:30 pfSense 1687195835.191 - notice 5 user: 2 172.30.2.25 NONE/503 0 CONNECT https:443 noc_vpn HIER_NONE/- -
2023-06-19T23:00:36+05:30 pfSense 1687195835.204 - notice 5 user: 12 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:36+05:30 pfSense 1687195835.738 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:36+05:30 pfSense 1687195836.112 - notice 5 user: 9 10.19.45.19 NONE/503 0 CONNECT https:443 noc_pune HIER_NONE/- -
2023-06-19T23:00:37+05:30 pfSense 1687195836.190 - notice 5 user: 1 10.19.45.37 TCP_DENIED/407 4123 GET http://www.msftconnecttest.com/connecttest.txt - HIER_NONE/- text/html
2023-06-19T23:00:37+05:30 pfSense 1687195836.375 - notice 5 user: 1 172.30.18.38 TCP_DENIED/407 3975 CONNECT boot.net.anydesk.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:37+05:30 pfSense 1687195836.395 - notice 5 user: 2 172.30.18.38 NONE/503 0 CONNECT https:443 noc_pune HIER_NONE/- -
2023-06-19T23:00:37+05:30 pfSense 1687195836.442 - notice 5 user: 0 172.30.18.38 TCP_DENIED/403 3831 CONNECT boot.net.anydesk.com:80 - HIER_NONE/- text/html
2023-06-19T23:00:37+05:30 pfSense 1687195836.609 - notice 5 user: 0 172.30.2.36 TCP_DENIED/407 3905 CONNECT g.live.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:37+05:30 pfSense 1687195836.628 - notice 5 user: 1 10.192.49.25 TCP_DENIED/407 3938 CONNECT edgedl.me.gvt1.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:37+05:30 pfSense 1687195836.703 - notice 5 user: 1 172.30.18.38 TCP_DENIED/407 4163 CONNECT safebrowsing.google.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:37+05:30 pfSense 1687195836.704 - notice 5 user: 0 172.30.18.38 TCP_DENIED/407 4163 CONNECT safebrowsing.google.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:37+05:30 pfSense 1687195836.784 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:38+05:30 pfSense 1687195837.831 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:39+05:30 pfSense 1687195838.244 - notice 5 user: 1 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:39+05:30 pfSense 1687195838.295 - notice 5 user: 11 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:39+05:30 pfSense 1687195838.423 - notice 5 user: 0 10.179.27.124 TCP_DENIED/403 3835 CONNECT mtalk.google.com:5228 - HIER_NONE/- text/html
2023-06-19T23:00:39+05:30 pfSense 1687195838.878 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:40+05:30 pfSense 1687195839.926 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:41+05:30 pfSense 1687195840.518 - notice 5 user: 460 10.192.49.25 TCP_TUNNEL/200 2595 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:41+05:30 pfSense 1687195840.629 - notice 5 user: 1 172.30.18.120 TCP_DENIED/407 3976 CONNECT boot.net.anydesk.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:41+05:30 pfSense 1687195840.642 - notice 5 user: 0 10.192.49.25 TCP_DENIED/407 474 HEAD http://dl.google.com/release2/chrome_component/j2hxfei2occ5siitujtlwgp6xi_3/ojhpjlocmbogdgmfpkhlaaeamibhnphh_3_all_gplutbkdljxxbjolk3siq7kive.crx3 - HIER_NONE/- text/html
2023-06-19T23:00:41+05:30 pfSense 1687195840.656 - notice 5 user: 8 172.30.18.120 NONE/503 0 CONNECT https:443 noc_pune HIER_NONE/- -
2023-06-19T23:00:41+05:30 pfSense 1687195840.675 - notice 5 user: 67347 10.19.45.37 TCP_TUNNEL/200 8104 CONNECT config.teams.microsoft.com:443 - HIER_DIRECT/52.113.194.132 -
2023-06-19T23:00:41+05:30 pfSense 1687195840.693 - notice 5 user: 0 172.30.18.120 TCP_DENIED/403 3832 CONNECT boot.net.anydesk.com:80 - HIER_NONE/- text/html
2023-06-19T23:00:41+05:30 pfSense 1687195840.844 - notice 5 user: 171282 10.19.45.12 TCP_TUNNEL/200 2667 CONNECT contile.services.mozilla.com:443 - HIER_DIRECT/34.117.237.239 -
2023-06-19T23:00:41+05:30 pfSense 1687195840.877 - notice 5 user: 2 10.171.7.1 NONE/503 0 CONNECT https:443 noc_wifi HIER_NONE/- -
2023-06-19T23:00:41+05:30 pfSense 1687195840.971 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:41+05:30 pfSense 1687195840.987 - notice 5 user: 457 10.192.49.25 TCP_TUNNEL/200 2595 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:42+05:30 pfSense 1687195841.349 - notice 5 user: 1 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:42+05:30 pfSense 1687195841.400 - notice 5 user: 11 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:42+05:30 pfSense 1687195841.461 - notice 5 user: 463 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:42+05:30 pfSense 1687195841.464 - notice 5 user: 1 10.19.45.37 TCP_DENIED/407 3953 CONNECT femetrics.grammarly.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:42+05:30 pfSense 1687195841.545 - notice 5 user: 1 10.19.45.37 TCP_DENIED/407 3993 CONNECT f-log-win-extension.grammarly.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:42+05:30 pfSense 1687195841.930 - notice 5 user: 457 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:42+05:30 pfSense 1687195842.018 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:42+05:30 pfSense 1687195842.162 - notice 5 user: 8 172.30.18.96 NONE/503 0 CONNECT https:443 noc_pune HIER_NONE/- -
2023-06-19T23:00:43+05:30 pfSense 1687195842.421 - notice 5 user: 466 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:43+05:30 pfSense 1687195842.894 - notice 5 user: 458 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:43+05:30 pfSense 1687195843.067 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:43+05:30 pfSense 1687195843.364 - notice 5 user: 459 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:44+05:30 pfSense 1687195843.831 - notice 5 user: 457 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:44+05:30 pfSense 1687195844.112 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:45+05:30 pfSense 1687195844.425 - notice 5 user: 457 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:45+05:30 pfSense 1687195844.444 - notice 5 user: 1 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:45+05:30 pfSense 1687195844.498 - notice 5 user: 15 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:45+05:30 pfSense 1687195844.658 - notice 5 user: 1 10.192.49.25 TCP_DENIED/407 3918 CONNECT dl.google.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:45+05:30 pfSense 1687195844.894 - notice 5 user: 458 10.192.49.25 TCP_TUNNEL/200 2595 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:45+05:30 pfSense 1687195845.159 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:45+05:30 pfSense 1687195845.279 - notice 5 user: 688 10.192.49.25 TCP_TUNNEL/200 4574 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:45+05:30 pfSense 1687195845.363 - notice 5 user: 458 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:46+05:30 pfSense 1687195845.838 - notice 5 user: 1 172.30.18.74 TCP_DENIED/407 3975 CONNECT boot.net.anydesk.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:46+05:30 pfSense 1687195845.852 - notice 5 user: 458 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:46+05:30 pfSense 1687195845.876 - notice 5 user: 0 172.30.18.74 TCP_DENIED/403 3831 CONNECT boot.net.anydesk.com:80 - HIER_NONE/- text/html
2023-06-19T23:00:46+05:30 pfSense 1687195846.206 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:46+05:30 pfSense 1687195846.378 - notice 5 user: 500 10.192.49.25 TCP_TUNNEL/200 2595 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:47+05:30 pfSense 1687195846.622 - notice 5 user: 0 172.30.2.36 TCP_DENIED/407 3905 CONNECT g.live.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:47+05:30 pfSense 1687195846.846 - notice 5 user: 457 10.192.49.25 TCP_TUNNEL/200 2595 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:47+05:30 pfSense 1687195847.032 - notice 5 user: 1749 10.192.49.25 TCP_TUNNEL/200 5944 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:47+05:30 pfSense 1687195847.253 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:47+05:30 pfSense 1687195847.322 - notice 5 user: 465 10.192.49.25 TCP_TUNNEL/200 2595 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:48+05:30 pfSense 1687195847.550 - notice 5 user: 1 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:48+05:30 pfSense 1687195847.604 - notice 5 user: 15 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:48+05:30 pfSense 1687195847.633 - notice 5 user: 0 172.30.18.83 TCP_DENIED/407 4174 GET http://ping3.teamviewer.com/din.aspx? - HIER_NONE/- text/html
2023-06-19T23:00:48+05:30 pfSense 1687195847.655 - notice 5 user: 1 172.30.18.83 TCP_DENIED/407 4352 GET http://ping3.teamviewer.com/din.aspx? - HIER_NONE/- text/html
2023-06-19T23:00:48+05:30 pfSense 1687195847.811 - notice 5 user: 458 10.192.49.25 TCP_TUNNEL/200 2595 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:48+05:30 pfSense 1687195848.223 - notice 5 user: 1 172.30.18.99 TCP_DENIED/407 4124 GET http://www.msftconnecttest.com/connecttest.txt - HIER_NONE/- text/html
2023-06-19T23:00:48+05:30 pfSense 1687195848.300 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:48+05:30 pfSense 1687195848.429 - notice 5 user: 496 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:49+05:30 pfSense 1687195848.671 - notice 5 user: 1 10.192.49.25 TCP_DENIED/407 474 HEAD http://www.google.com/dl/release2/chrome_component/j2hxfei2occ5siitujtlwgp6xi_3/ojhpjlocmbogdgmfpkhlaaeamibhnphh_3_all_gplutbkdljxxbjolk3siq7kive.crx3 - HIER_NONE/- text/html
2023-06-19T23:00:49+05:30 pfSense 1687195848.856 - notice 5 user: 2 172.30.18.49 TCP_DENIED/407 4175 CONNECT android.clients.google.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:49+05:30 pfSense 1687195848.926 - notice 5 user: 466 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:49+05:30 pfSense 1687195848.979 - notice 5 user: 1 172.30.18.49 TCP_DENIED/407 4147 CONNECT clients4.google.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:49+05:30 pfSense 1687195849.248 - notice 5 user: 0 172.30.2.52 TCP_DENIED/407 4390 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:49+05:30 pfSense 1687195849.256 - notice 5 user: 4 172.30.2.52 TCP_MISS/503 4816 GET https://172.30.100.147/sgerror.php? noc_bgl HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:49+05:30 pfSense 1687195849.283 - notice 5 user: 1 172.30.2.52 TCP_DENIED/407 4507 GET http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSAUQYBMq2awn1Rh6Doh%2FsBYgFV7gQUA95QNVbRTLtm8KPiGxvDl7I90VUCEAJ0LqoXyo4hxxe7H%2Fz9DKA%3D - HIER_NONE/- text/html
2023-06-19T23:00:49+05:30 pfSense 1687195849.292 - notice 5 user: 5 172.30.2.52 TCP_MISS/503 4771 GET https://172.30.100.147/sgerror.php? noc_bgl HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:49+05:30 pfSense 1687195849.308 - notice 5 user: 0 172.30.2.52 TCP_DENIED/407 4125 GET http://crl3.digicert.com/DigiCertGlobalRootCA.crl - HIER_NONE/- text/html
2023-06-19T23:00:49+05:30 pfSense 1687195849.313 - notice 5 user: 0 172.30.18.49 TCP_DENIED/403 3834 CONNECT mtalk.google.com:5228 - HIER_NONE/- text/html
2023-06-19T23:00:49+05:30 pfSense 1687195849.319 - notice 5 user: 6 172.30.2.52 TCP_MISS/503 4677 GET https://172.30.100.147/sgerror.php? noc_bgl HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:49+05:30 pfSense 1687195849.335 - notice 5 user: 1 172.30.2.52 TCP_DENIED/407 4125 GET http://crl4.digicert.com/DigiCertGlobalRootCA.crl - HIER_NONE/- text/html
2023-06-19T23:00:49+05:30 pfSense 1687195849.347 - notice 5 user: 7 172.30.2.52 TCP_MISS/503 4677 GET https://172.30.100.147/sgerror.php? noc_bgl HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:49+05:30 pfSense 1687195849.348 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:49+05:30 pfSense 1687195849.396 - notice 5 user: 459 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:50+05:30 pfSense 1687195849.581 - notice 5 user: 1 10.19.45.12 TCP_DENIED/407 474 HEAD http://edgedl.me.gvt1.com/edgedl/release2/update2/pwr5ethq3xpclnqiwgeh3q5r6i_1.3.36.272/GoogleUpdateSetup.exe - HIER_NONE/- text/html
2023-06-19T23:00:50+05:30 pfSense 1687195849.643 - notice 5 user: 488 172.30.2.52 TCP_TUNNEL/200 10267 CONNECT login.live.com:443 - HIER_DIRECT/20.190.146.36 -
2023-06-19T23:00:50+05:30 pfSense 1687195849.675 - notice 5 user: 0 10.19.45.12 TCP_DENIED/407 474 HEAD http://edgedl.me.gvt1.com/edgedl/release2/update2/pwr5ethq3xpclnqiwgeh3q5r6i_1.3.36.272/GoogleUpdateSetup.exe - HIER_NONE/- text/html
2023-06-19T23:00:50+05:30 pfSense 1687195849.771 - notice 5 user: 1 10.19.45.12 TCP_DENIED/407 4544 GET http://edgedl.me.gvt1.com/edgedl/release2/update2/pwr5ethq3xpclnqiwgeh3q5r6i_1.3.36.272/GoogleUpdateSetup.exe - HIER_NONE/- text/html
2023-06-19T23:00:50+05:30 pfSense 1687195849.802 - notice 5 user: 11 10.19.45.12 TCP_MISS/503 4926 GET https://172.30.100.147/sgerror.php? noc_pune HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:50+05:30 pfSense 1687195849.887 - notice 5 user: 460 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:50+05:30 pfSense 1687195849.963 - notice 5 user: 1 172.30.18.120 TCP_DENIED/407 4333 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:50+05:30 pfSense 1687195849.989 - notice 5 user: 7 172.30.18.120 TCP_MISS/503 4772 GET https://172.30.100.147/sgerror.php? noc_pune HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:50+05:30 pfSense 1687195850.037 - notice 5 user: 1 172.30.18.120 TCP_DENIED/407 4309 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/pinrulesstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:50+05:30 pfSense 1687195850.062 - notice 5 user: 6 172.30.18.120 TCP_MISS/503 4766 GET https://172.30.100.147/sgerror.php? noc_pune HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:50+05:30 pfSense 1687195850.221 - notice 5 user: 673 10.192.49.25 TCP_TUNNEL/200 4574 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:50+05:30 pfSense 1687195850.381 - notice 5 user: 1 10.19.45.12 TCP_DENIED/407 4123 GET http://www.msftconnecttest.com/connecttest.txt - HIER_NONE/- text/html
2023-06-19T23:00:50+05:30 pfSense 1687195850.393 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:51+05:30 pfSense 1687195850.656 - notice 5 user: 1 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:51+05:30 pfSense 1687195850.709 - notice 5 user: 13 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:51+05:30 pfSense 1687195851.313 - notice 5 user: 1089 10.192.49.25 TCP_TUNNEL/200 5030 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:51+05:30 pfSense 1687195851.440 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:51+05:30 pfSense 1687195851.554 - notice 5 user: 0 10.19.45.37 TCP_DENIED/407 3953 CONNECT femetrics.grammarly.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:51+05:30 pfSense 1687195851.570 - notice 5 user: 925302 10.19.45.11 TCP_TUNNEL/200 18499 CONNECT update.googleapis.com:443 - HIER_DIRECT/142.250.193.163 -
2023-06-19T23:00:52+05:30 pfSense 1687195851.635 - notice 5 user: 1 10.19.45.37 TCP_DENIED/407 3993 CONNECT f-log-win-extension.grammarly.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:52+05:30 pfSense 1687195851.725 - notice 5 user: 1 10.19.45.19 TCP_DENIED/407 4123 GET http://www.msftconnecttest.com/connecttest.txt - HIER_NONE/- text/html
2023-06-19T23:00:52+05:30 pfSense 1687195852.288 - notice 5 user: 460 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:52+05:30 pfSense 1687195852.487 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:53+05:30 pfSense 1687195852.689 - notice 5 user: 1 10.192.49.25 TCP_DENIED/407 3922 CONNECT www.google.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:53+05:30 pfSense 1687195852.765 - notice 5 user: 467 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:53+05:30 pfSense 1687195853.233 - notice 5 user: 458 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:53+05:30 pfSense 1687195853.534 - notice 5 user: 0 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:54+05:30 pfSense 1687195853.720 - notice 5 user: 457 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:54+05:30 pfSense 1687195853.754 - notice 5 user: 1 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:54+05:30 pfSense 1687195853.806 - notice 5 user: 13 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:54+05:30 pfSense 1687195854.180 - notice 5 user: 671 10.192.49.25 TCP_TUNNEL/200 4574 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:54+05:30 pfSense 1687195854.188 - notice 5 user: 1 10.19.45.16 TCP_DENIED/407 4123 GET http://www.msftconnecttest.com/connecttest.txt - HIER_NONE/- text/html
2023-06-19T23:00:54+05:30 pfSense 1687195854.216 - notice 5 user: 469 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:54+05:30 pfSense 1687195854.581 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:54+05:30 pfSense 1687195854.698 - notice 5 user: 1 172.30.18.26 TCP_DENIED/407 3975 CONNECT boot.net.anydesk.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:54+05:30 pfSense 1687195854.699 - notice 5 user: 465 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:54+05:30 pfSense 1687195854.721 - notice 5 user: 6 172.30.18.26 NONE/503 0 CONNECT https:443 noc_pune HIER_NONE/- -
2023-06-19T23:00:54+05:30 pfSense 1687195854.757 - notice 5 user: 0 172.30.18.26 TCP_DENIED/403 3831 CONNECT boot.net.anydesk.com:80 - HIER_NONE/- text/html
2023-06-19T23:00:55+05:30 pfSense 1687195855.167 - notice 5 user: 1 10.19.45.37 TCP_DENIED/407 4331 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:55+05:30 pfSense 1687195855.169 - notice 5 user: 459 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:55+05:30 pfSense 1687195855.197 - notice 5 user: 8 10.19.45.37 TCP_MISS/503 4766 GET https://172.30.100.147/sgerror.php? noc_pune HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:55+05:30 pfSense 1687195855.249 - notice 5 user: 1 10.19.45.37 TCP_DENIED/407 4307 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/pinrulesstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:55+05:30 pfSense 1687195855.278 - notice 5 user: 6 10.19.45.37 TCP_MISS/503 4760 GET https://172.30.100.147/sgerror.php? noc_pune HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:55+05:30 pfSense 1687195855.384 - notice 5 user: 1201 10.192.49.25 TCP_TUNNEL/200 5030 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:55+05:30 pfSense 1687195855.408 - notice 5 user: 1 172.30.2.52 TCP_DENIED/407 3993 CONNECT ksn-cinfo-geo.kaspersky-labs.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:55+05:30 pfSense 1687195855.425 - notice 5 user: 2 172.30.2.52 NONE/503 0 CONNECT https:443 noc_bgl HIER_NONE/- -
2023-06-19T23:00:55+05:30 pfSense 1687195855.439 - notice 5 user: 1 172.30.2.52 TCP_DENIED/407 3989 CONNECT dc1-file.ksn.kaspersky-labs.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:55+05:30 pfSense 1687195855.456 - notice 5 user: 2 172.30.2.52 NONE/503 0 CONNECT https:443 noc_bgl HIER_NONE/- -
2023-06-19T23:00:55+05:30 pfSense 1687195855.628 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:55+05:30 pfSense 1687195855.666 - notice 5 user: 470 10.192.49.25 TCP_TUNNEL/200 2597 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:56+05:30 pfSense 1687195855.947 - notice 5 user: 765 10.19.45.19 TCP_TUNNEL/200 4574 CONNECT v10.events.data.microsoft.com:443 - HIER_DIRECT/52.168.112.67 -
2023-06-19T23:00:56+05:30 pfSense 1687195856.155 - notice 5 user: 358 172.30.2.52 TCP_TUNNEL/200 16414 CONNECT login.live.com:443 - HIER_DIRECT/20.190.146.36 -
2023-06-19T23:00:56+05:30 pfSense 1687195856.160 - notice 5 user: 468 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:56+05:30 pfSense 1687195856.636 - notice 5 user: 1 172.30.2.36 TCP_DENIED/407 3905 CONNECT g.live.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:56+05:30 pfSense 1687195856.660 - notice 5 user: 469 10.192.49.25 TCP_TUNNEL/200 2596 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:56+05:30 pfSense 1687195856.676 - notice 5 user: 2 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:56+05:30 pfSense 1687195856.690 - notice 5 user: 0 10.192.49.25 TCP_DENIED/407 4708 GET http://edgedl.me.gvt1.com/edgedl/release2/chrome_component/j2hxfei2occ5siitujtlwgp6xi_3/ojhpjlocmbogdgmfpkhlaaeamibhnphh_3_all_gplutbkdljxxbjolk3siq7kive.crx3 - HIER_NONE/- text/html
2023-06-19T23:00:56+05:30 pfSense 1687195856.694 - notice 5 user: 0 10.192.49.25 TCP_DENIED/407 4143 CONNECT edgedl.me.gvt1.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:56+05:30 pfSense 1687195856.697 - notice 5 user: 0 10.192.49.25 TCP_DENIED/407 4658 GET http://dl.google.com/release2/chrome_component/j2hxfei2occ5siitujtlwgp6xi_3/ojhpjlocmbogdgmfpkhlaaeamibhnphh_3_all_gplutbkdljxxbjolk3siq7kive.crx3 - HIER_NONE/- text/html
2023-06-19T23:00:56+05:30 pfSense 1687195856.701 - notice 5 user: 0 10.192.49.25 TCP_DENIED/407 4123 CONNECT dl.google.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:56+05:30 pfSense 1687195856.704 - notice 5 user: 0 10.192.49.25 TCP_DENIED/407 4676 GET http://www.google.com/dl/release2/chrome_component/j2hxfei2occ5siitujtlwgp6xi_3/ojhpjlocmbogdgmfpkhlaaeamibhnphh_3_all_gplutbkdljxxbjolk3siq7kive.crx3 - HIER_NONE/- text/html
2023-06-19T23:00:56+05:30 pfSense 1687195856.708 - notice 5 user: 0 10.192.49.25 TCP_DENIED/407 4127 CONNECT www.google.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:57+05:30 pfSense 1687195856.858 - notice 5 user: 1 172.30.18.66 TCP_DENIED/407 4256 CONNECT checkout_dns.dynamic-dns.net:443 - HIER_NONE/- text/html
2023-06-19T23:00:57+05:30 pfSense 1687195856.910 - notice 5 user: 12 172.30.18.66 TCP_DENIED/407 4360 CONNECT checkout_dns.dynamic-dns.net:443 noc_pune HIER_NONE/- text/html
2023-06-19T23:00:57+05:30 pfSense 1687195856.984 - notice 5 user: 0 10.192.49.25 TCP_DENIED/407 474 HEAD http://edgedl.me.gvt1.com/edgedl/release2/chrome_component/o4nupu3zencjrcfzynnj5emdv4_2023.5.17.1/gonpemdgkjcecdgbnaabipppbmgfggbe_2023.05.17.01_all_c6sjnq5ycciuqwx54vvne2reoe.crx3 - HIER_NONE/- text/html
2023-06-19T23:00:57+05:30 pfSense 1687195857.130 - notice 5 user: 460 10.192.49.25 TCP_TUNNEL/200 2595 CONNECT slscr.update.microsoft.com:443 - HIER_DIRECT/40.68.123.157 -
2023-06-19T23:00:57+05:30 pfSense 1687195857.261 - notice 5 user: 997 172.30.2.52 TCP_TUNNEL/200 14010 CONNECT licensing.mp.microsoft.com:443 - HIER_DIRECT/20.197.103.14 -
2023-06-19T23:00:57+05:30 pfSense 1687195857.398 - notice 5 user: 1 172.30.2.52 TCP_DENIED/407 4390 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:57+05:30 pfSense 1687195857.408 - notice 5 user: 6 172.30.2.52 TCP_MISS/503 4816 GET https://172.30.100.147/sgerror.php? noc_bgl HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:57+05:30 pfSense 1687195857.418 - notice 5 user: 0 172.30.2.52 TCP_DENIED/407 4537 GET http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBQ50otx%2Fh0Ztl%2Bz8SiPI7wEWVxDlQQUTiJUIBiV5uNu5g%2F6%2BrkS7QYXjzkCEALnkXH7gCHpP%2BLZg4NMUMA%3D - HIER_NONE/- text/html
2023-06-19T23:00:57+05:30 pfSense 1687195857.423 - notice 5 user: 3 172.30.2.52 TCP_MISS/503 4771 GET https://172.30.100.147/sgerror.php? noc_bgl HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:57+05:30 pfSense 1687195857.430 - notice 5 user: 0 172.30.2.52 TCP_DENIED/407 4125 GET http://crl3.digicert.com/DigiCertGlobalRootG2.crl - HIER_NONE/- text/html
2023-06-19T23:00:57+05:30 pfSense 1687195857.436 - notice 5 user: 4 172.30.2.52 TCP_MISS/503 4677 GET https://172.30.100.147/sgerror.php? noc_bgl HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:57+05:30 pfSense 1687195857.442 - notice 5 user: 0 172.30.2.52 TCP_DENIED/407 4125 GET http://crl4.digicert.com/DigiCertGlobalRootG2.crl - HIER_NONE/- text/html
2023-06-19T23:00:57+05:30 pfSense 1687195857.446 - notice 5 user: 2 172.30.2.52 TCP_MISS/503 4677 GET https://172.30.100.147/sgerror.php? noc_bgl HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:57+05:30 pfSense 1687195857.722 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:57+05:30 pfSense 1687195857.798 - notice 5 user: 1 172.30.18.96 TCP_DENIED/407 3906 CONNECT g.live.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:58+05:30 pfSense 1687195858.103 - notice 5 user: 1 10.171.7.21 TCP_DENIED/407 4428 GET http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab? - HIER_NONE/- text/html
2023-06-19T23:00:58+05:30 pfSense 1687195858.111 - notice 5 user: 5 10.171.7.21 TCP_MISS/503 4879 GET https://172.30.100.147/sgerror.php? noc_wifi HIER_DIRECT/172.30.100.147 text/html
2023-06-19T23:00:58+05:30 pfSense 1687195858.768 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html
2023-06-19T23:00:59+05:30 pfSense 1687195859.234 - notice 5 user: 0 172.30.6.152 NONE/000 0 NONE error:transaction-end-before-headers - HIER_NONE/- -
2023-06-19T23:00:59+05:30 pfSense 1687195859.369 - notice 5 user: 1 10.19.45.16 TCP_DENIED/407 4142 CONNECT api.joinsmarty.com:443 - HIER_NONE/- text/html
2023-06-19T23:00:59+05:30 pfSense 1687195859.816 - notice 5 user: 1 172.30.18.124 TCP_DENIED/407 3941 CONNECT p13n.adobe.io:443 - HIER_NONE/- text/html