timestamp s-port sc-http-status sc-bytes sc-header-bytes c-port cs-bytes cs-header-bytes cs-method cs-url s-ip c-ip connection.time request.time response.time close.time idle.time0 idle.time1 cs-mime-type cs(Referer) cs(User-Agent) 577.622224 80 200 226 13 49158 196 0 GET http://myexternalip.com/raw 78.47.139.102 192.168.1.119 0.000133 0.000000 65.377327 174.250057 0.000206 174.250057 "text/plain" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 714.762470 80 200 54326 53978 49163 217 0 GET http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab 195.113.232.75 192.168.1.119 0.000228 0.000000 3.374819 99.112493 0.000490 99.112493 "application/vnd.ms-cab-compressed" "-" "Microsoft-CryptoAPI/6.1" 3028.158582 80 502 477 359 49240 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000188 0.000000 129.323880 0.279331 0.000164 0.279331 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 4058.244831 80 502 477 359 49267 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000405 0.000000 129.381360 0.075652 0.185418 0.075652 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 5087.720627 80 502 477 359 49275 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000254 0.000000 130.049607 0.000183 0.000170 0.000183 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 6117.781974 80 502 477 359 49281 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000910 0.000000 130.131894 0.000069 0.000161 0.000069 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 7147.932544 80 502 477 359 49287 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000181 0.000000 130.125286 0.000199 0.000195 0.000199 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 8178.53889 80 502 477 359 49293 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000221 0.000000 130.148081 0.000098 0.000183 0.000098 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 8559.429558 80 200 507652 507392 49297 75 0 GET http://rocketmining.com/toler.png 98.124.251.68 192.168.1.119 0.000125 0.000000 42.973531 63.371523 0.000224 63.371523 "image/png" "-" "-" 9208.204744 80 502 477 359 49301 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000204 0.000000 130.141169 0.000097 0.000222 0.000097 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 10238.346355 80 502 477 359 49307 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000167 0.000000 130.143478 0.000079 0.000217 0.000079 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 11268.487485 80 502 477 359 49313 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000194 0.000000 130.146327 0.000090 0.000191 0.000090 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 12298.638688 80 502 477 359 49319 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000207 0.000000 130.139245 0.000084 0.000217 0.000084 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 13328.779593 80 502 477 359 49327 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000228 0.000000 130.142273 0.000071 0.000200 0.000071 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 14358.920215 80 502 477 359 49345 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000243 0.000000 130.145579 0.000081 0.000189 0.000081 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 15389.62056 80 502 477 359 49370 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000158 0.000000 130.147817 0.000102 0.000175 0.000102 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 16419.212506 80 502 477 359 49375 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000172 0.000000 130.141361 0.000085 0.000236 0.000085 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 17449.354185 80 502 477 359 49381 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000157 0.000000 130.143550 0.000062 0.000181 0.000062 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 18479.505410 80 502 477 359 49387 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000195 0.000000 130.136638 0.000206 0.000185 0.000206 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 19509.645904 80 502 477 359 49416 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000239 0.000000 130.139887 0.000091 0.000226 0.000091 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 20539.788432 80 502 477 359 49422 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000171 0.000000 130.141400 0.000093 0.000199 0.000093 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 21569.928605 80 502 477 359 49428 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000298 0.000000 130.145352 0.000248 0.000214 0.000248 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 22600.69775 80 502 477 359 49434 196 0 GET http://92.53.91.141/464.png 92.53.91.141 192.168.1.119 0.000165 0.000000 130.148095 0.000110 0.000211 0.000110 "text/html" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 27540.311502 80 200 340294 340144 49460 199 0 GET http://195.133.201.238/465.png 195.133.201.238 192.168.1.119 0.000167 0.000000 26.321743 130.613849 0.000149 130.613849 "image/png" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36" 27860.679066 80 200 138 13 49462 198 0 GET http://checkip.amazonaws.com/ 107.22.255.106 192.168.1.119 0.000170 0.000000 0.433989 119.471550 0.000198 119.471550 "-" "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3165.0 Safari/537.36"