Samples for the Windows firewall

By default the logs are stored at <b>C:Windowspfirewall.log.

Fields:

#Fields: date time action protocol src-ip dst-ip src-port dst-port size tcpflags tcpsyn tcpack tcpwin icmptype icmpcode info path

Firewall drop:

2006-09-19 10:48:12 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 250 - - - - - - - RECEIVE
2006-09-20 10:38:21 DROP TCP 192.168.72.196 10.20.72.12 445 2459 48 SA 4175551841 892874455 17520 - - - RECEIVE

Firewall Accept:

2006-09-19 03:04:29 OPEN TCP 192.168.72.12 10.20.72.204 3599 445 - - - - - - - - -
2006-09-19 03:04:29 OPEN TCP 192.168.72.12 10.20.72.204 3600 139 - - - - - - - - -

Large sample:

2006-09-19 03:26:26 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:26:26 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 305 - - - - - - - RECEIVE
2006-09-19 03:27:05 CLOSE UDP 192.168.72.12 10.20.72.186 3682 88 - - - - - - - - -
2006-09-19 03:27:05 CLOSE UDP 192.168.72.12 10.20.72.186 3683 88 - - - - - - - - -
2006-09-19 03:27:53 CLOSE TCP 192.168.72.12 10.20.72.186 3680 445 - - - - - - - - -
2006-09-19 03:29:24 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 250 - - - - - - - RECEIVE
2006-09-19 03:29:24 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:29:24 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 263 - - - - - - - RECEIVE
2006-09-19 03:29:24 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:29:24 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 305 - - - - - - - RECEIVE
2006-09-19 03:31:15 DROP UDP 192.168.183.114 239.255.255.250 65173 1900 310 - - - - - - - RECEIVE
2006-09-19 03:31:15 DROP UDP 192.168.183.114 239.255.255.250 65173 1900 310 - - - - - - - RECEIVE
2006-09-19 03:31:15 DROP UDP 192.168.183.114 239.255.255.250 65172 1900 319 - - - - - - - RECEIVE
2006-09-19 03:31:15 DROP UDP 192.168.183.114 239.255.255.250 65172 1900 319 - - - - - - - RECEIVE
2006-09-19 03:32:17 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 367 - - - - - - - RECEIVE
2006-09-19 03:32:17 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 367 - - - - - - - RECEIVE
2006-09-19 03:32:17 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 355 - - - - - - - RECEIVE
2006-09-19 03:32:17 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 355 - - - - - - - RECEIVE
2006-09-19 03:32:17 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 312 - - - - - - - RECEIVE
2006-09-19 03:32:17 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 303 - - - - - - - RECEIVE
2006-09-19 03:32:17 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 369 - - - - - - - RECEIVE
2006-09-19 03:32:21 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 250 - - - - - - - RECEIVE
2006-09-19 03:32:21 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:32:21 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 263 - - - - - - - RECEIVE
2006-09-19 03:32:21 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:32:21 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 305 - - - - - - - RECEIVE
2006-09-19 03:32:24 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 312 - - - - - - - RECEIVE
2006-09-19 03:32:24 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 303 - - - - - - - RECEIVE
2006-09-19 03:32:24 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 369 - - - - - - - RECEIVE
2006-09-19 03:32:24 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 355 - - - - - - - RECEIVE
2006-09-19 03:32:24 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 367 - - - - - - - RECEIVE
2006-09-19 03:35:19 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 250 - - - - - - - RECEIVE
2006-09-19 03:35:19 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:35:19 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 263 - - - - - - - RECEIVE
2006-09-19 03:35:19 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:35:19 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 305 - - - - - - - RECEIVE
2006-09-19 03:35:57 DROP UDP 192.168.183.114 239.255.255.250 65171 1900 310 - - - - - - - RECEIVE
2006-09-19 03:35:57 DROP UDP 192.168.183.114 239.255.255.250 65171 1900 310 - - - - - - - RECEIVE
2006-09-19 03:35:57 DROP UDP 192.168.183.114 239.255.255.250 65170 1900 319 - - - - - - - RECEIVE
2006-09-19 03:35:57 DROP UDP 192.168.183.114 239.255.255.250 65170 1900 319 - - - - - - - RECEIVE
2006-09-19 03:37:52 OPEN UDP 192.168.72.12 10.20.72.186 1025 53 - - - - - - - - -
2006-09-19 03:37:57 CLOSE TCP 192.168.72.12 10.20.158.58 3685 80 - - - - - - - - -
2006-09-19 03:37:57 CLOSE TCP 192.168.72.12 10.20.158.58 3691 80 - - - - - - - - -
2006-09-19 03:37:58 OPEN TCP 192.168.72.12 10.20.158.58 3698 80 - - - - - - - - -
2006-09-19 03:37:58 CLOSE TCP 192.168.72.12 10.20.158.58 3698 80 - - - - - - - - -
2006-09-19 03:37:59 OPEN TCP 192.168.72.12 10.20.158.58 3699 80 - - - - - - - - -
2006-09-19 03:37:57 OPEN TCP 192.168.72.12 10.20.158.58 3684 80 - - - - - - - - -
2006-09-19 03:37:57 CLOSE TCP 192.168.72.12 10.20.158.58 3684 80 - - - - - - - - -
2006-09-19 03:37:57 OPEN TCP 192.168.72.12 10.20.158.58 3685 80 - - - - - - - - -
2006-09-19 03:37:57 OPEN TCP 192.168.72.12 10.20.158.58 3686 80 - - - - - - - - -
2006-09-19 03:37:57 CLOSE TCP 192.168.72.12 10.20.158.58 3686 80 - - - - - - - - -
2006-09-19 03:37:57 OPEN TCP 192.168.72.12 10.20.158.58 3687 80 - - - - - - - - -
2006-09-19 03:37:57 CLOSE TCP 192.168.72.12 10.20.158.58 3687 80 - - - - - - - - -
2006-09-19 03:37:57 OPEN TCP 192.168.72.12 10.20.158.58 3688 80 - - - - - - - - -
2006-09-19 03:37:57 CLOSE TCP 192.168.72.12 10.20.158.58 3688 80 - - - - - - - - -
2006-09-19 03:37:57 OPEN TCP 192.168.72.12 10.20.158.58 3689 80 - - - - - - - - -
2006-09-19 03:37:57 OPEN TCP 192.168.72.12 10.20.158.58 3690 80 - - - - - - - - -
2006-09-19 03:37:57 CLOSE TCP 192.168.72.12 10.20.158.58 3690 80 - - - - - - - - -
2006-09-19 03:37:57 OPEN TCP 192.168.72.12 10.20.158.58 3691 80 - - - - - - - - -
2006-09-19 03:37:57 OPEN TCP 192.168.72.12 10.20.158.58 3692 80 - - - - - - - - -
2006-09-19 03:37:57 CLOSE TCP 192.168.72.12 10.20.158.58 3692 80 - - - - - - - - -
2006-09-19 03:37:58 OPEN TCP 192.168.72.12 10.20.158.58 3693 80 - - - - - - - - -
2006-09-19 03:37:58 CLOSE TCP 192.168.72.12 10.20.158.58 3693 80 - - - - - - - - -
2006-09-19 03:37:58 OPEN TCP 192.168.72.12 10.20.158.58 3694 80 - - - - - - - - -
2006-09-19 03:37:58 CLOSE TCP 192.168.72.12 10.20.158.58 3694 80 - - - - - - - - -
2006-09-19 03:37:58 OPEN TCP 192.168.72.12 10.20.158.58 3695 80 - - - - - - - - -
2006-09-19 03:37:58 CLOSE TCP 192.168.72.12 10.20.158.58 3695 80 - - - - - - - - -
2006-09-19 03:37:58 OPEN TCP 192.168.72.12 10.20.158.58 3696 80 - - - - - - - - -
2006-09-19 03:37:58 CLOSE TCP 192.168.72.12 10.20.158.58 3696 80 - - - - - - - - -
2006-09-19 03:37:58 OPEN TCP 192.168.72.12 10.20.158.58 3697 80 - - - - - - - - -
2006-09-19 03:37:58 CLOSE TCP 192.168.72.12 10.20.158.58 3697 80 - - - - - - - - -
2006-09-19 03:37:59 CLOSE TCP 192.168.72.12 10.20.158.58 3699 80 - - - - - - - - -
2006-09-19 03:38:17 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 250 - - - - - - - RECEIVE
2006-09-19 03:38:17 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:38:17 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 263 - - - - - - - RECEIVE
2006-09-19 03:38:17 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:38:17 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 305 - - - - - - - RECEIVE
2006-09-19 03:38:39 OPEN UDP 192.168.72.12 129.6.15.28 123 123 - - - - - - - - -2006-09-19 03:39:05 CLOSE UDP 192.168.72.12 10.20.72.186 1025 53 - - - - - - - - -
2006-09-19 03:40:05 CLOSE UDP 192.168.72.12 129.6.15.28 123 123 - - - - - - - - -
2006-09-19 03:40:09 CLOSE TCP 192.168.72.12 10.20.158.58 3689 80 - - - - - - - - -
2006-09-19 03:40:31 OPEN UDP 192.168.72.12 10.20.72.186 3703 88 - - - - - - - - -
2006-09-19 03:40:30 OPEN TCP 192.168.72.12 10.20.72.186 3700 445 - - - - - - - - -
2006-09-19 03:40:30 OPEN UDP 192.168.72.12 10.20.72.186 3702 389 - - - - - - - - -
2006-09-19 03:40:54 DROP UDP 192.168.183.114 239.255.255.250 65169 1900 310 - - - - - - - RECEIVE
2006-09-19 03:40:54 DROP UDP 192.168.183.114 239.255.255.250 65169 1900 310 - - - - - - - RECEIVE
2006-09-19 03:40:54 DROP UDP 192.168.183.114 239.255.255.250 65168 1900 319 - - - - - - - RECEIVE
2006-09-19 03:40:54 DROP UDP 192.168.183.114 239.255.255.250 65168 1900 319 - - - - - - - RECEIVE
2006-09-19 03:41:15 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 250 - - - - - - - RECEIVE
2006-09-19 03:41:15 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:41:15 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 263 - - - - - - - RECEIVE
2006-09-19 03:41:15 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:41:15 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 305 - - - - - - - RECEIVE
2006-09-19 03:42:05 CLOSE UDP 192.168.72.12 10.20.72.186 3702 389 - - - - - - - - -
2006-09-19 03:42:05 CLOSE UDP 192.168.72.12 10.20.72.186 3703 88 - - - - - - - - -
2006-09-19 03:42:53 CLOSE TCP 192.168.72.12 10.20.72.186 3700 445 - - - - - - - - -
2006-09-19 03:44:13 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 250 - - - - - - - RECEIVE
2006-09-19 03:44:13 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:44:13 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 263 - - - - - - - RECEIVE
2006-09-19 03:44:13 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:44:13 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 305 - - - - - - - RECEIVE
2006-09-19 03:45:36 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 303 - - - - - - - RECEIVE
2006-09-19 03:45:36 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 303 - - - - - - - RECEIVE
2006-09-19 03:45:36 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 355 - - - - - - - RECEIVE
2006-09-19 03:45:36 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 367 - - - - - - - RECEIVE
2006-09-19 03:45:36 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 312 - - - - - - - RECEIVE
2006-09-19 03:45:36 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 369 - - - - - - - RECEIVE
2006-09-19 03:45:43 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 303 - - - - - - - RECEIVE
2006-09-19 03:45:43 DROP UDP 192.168.183.114 239.255.255.250 65167 1900 310 - - - - - - - RECEIVE
2006-09-19 03:45:43 DROP UDP 192.168.183.114 239.255.255.250 65167 1900 310 - - - - - - - RECEIVE
2006-09-19 03:45:43 DROP UDP 192.168.183.114 239.255.255.250 65166 1900 319 - - - - - - - RECEIVE
2006-09-19 03:45:43 DROP UDP 192.168.183.114 239.255.255.250 65166 1900 319 - - - - - - - RECEIVE
2006-09-19 03:45:43 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 355 - - - - - - - RECEIVE
2006-09-19 03:45:43 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 367 - - - - - - - RECEIVE
2006-09-19 03:45:43 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 369 - - - - - - - RECEIVE
2006-09-19 03:45:43 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 312 - - - - - - - RECEIVE
2006-09-19 03:47:11 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 250 - - - - - - - RECEIVE
2006-09-19 03:47:11 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:47:11 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 263 - - - - - - - RECEIVE
2006-09-19 03:47:11 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:47:11 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 305 - - - - - - - RECEIVE
2006-09-19 03:50:09 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 250 - - - - - - - RECEIVE
2006-09-19 03:50:09 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:50:09 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 263 - - - - - - - RECEIVE
2006-09-19 03:50:09 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:50:09 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 305 - - - - - - - RECEIVE
2006-09-19 03:50:32 DROP UDP 192.168.183.114 239.255.255.250 65165 1900 310 - - - - - - - RECEIVE
2006-09-19 03:50:32 DROP UDP 192.168.183.114 239.255.255.250 65165 1900 310 - - - - - - - RECEIVE
2006-09-19 03:50:32 DROP UDP 192.168.183.114 239.255.255.250 65164 1900 319 - - - - - - - RECEIVE
2006-09-19 03:50:32 DROP UDP 192.168.183.114 239.255.255.250 65164 1900 319 - - - - - - - RECEIVE
2006-09-19 03:53:07 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 250 - - - - - - - RECEIVE
2006-09-19 03:53:07 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:53:07 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 263 - - - - - - - RECEIVE
2006-09-19 03:53:07 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:53:07 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 305 - - - - - - - RECEIVE
2006-09-19 03:55:29 DROP UDP 192.168.183.114 239.255.255.250 65163 1900 310 - - - - - - - RECEIVE
2006-09-19 03:55:29 DROP UDP 192.168.183.114 239.255.255.250 65163 1900 310 - - - - - - - RECEIVE
2006-09-19 03:55:29 DROP UDP 192.168.183.114 239.255.255.250 65162 1900 319 - - - - - - - RECEIVE
2006-09-19 03:55:29 DROP UDP 192.168.183.114 239.255.255.250 65162 1900 319 - - - - - - - RECEIVE
2006-09-19 03:55:31 OPEN TCP 192.168.72.12 10.20.72.186 3704 445 - - - - - - - - -
2006-09-19 03:55:31 OPEN UDP 192.168.72.12 10.20.72.186 3706 88 - - - - - - - - -
2006-09-19 03:56:05 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 250 - - - - - - - RECEIVE
2006-09-19 03:56:05 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:56:05 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 263 - - - - - - - RECEIVE
2006-09-19 03:56:05 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:56:05 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 305 - - - - - - - RECEIVE
2006-09-19 03:57:05 CLOSE UDP 192.168.72.12 10.20.72.186 3706 88 - - - - - - - - -
2006-09-19 03:57:53 CLOSE TCP 192.168.72.12 10.20.72.186 3704 445 - - - - - - - - -
2006-09-19 03:58:21 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 367 - - - - - - - RECEIVE
2006-09-19 03:58:21 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 367 - - - - - - - RECEIVE
2006-09-19 03:58:21 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 312 - - - - - - - RECEIVE
2006-09-19 03:58:21 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 303 - - - - - - - RECEIVE
2006-09-19 03:58:21 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 369 - - - - - - - RECEIVE
2006-09-19 03:58:21 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 355 - - - - - - - RECEIVE
2006-09-19 03:58:28 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 312 - - - - - - - RECEIVE
2006-09-19 03:58:28 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 369 - - - - - - - RECEIVE
2006-09-19 03:58:28 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 303 - - - - - - - RECEIVE
2006-09-19 03:58:28 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 355 - - - - - - - RECEIVE
2006-09-19 03:58:28 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 367 - - - - - - - RECEIVE
2006-09-19 03:59:02 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 250 - - - - - - - RECEIVE
2006-09-19 03:59:02 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:59:02 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 263 - - - - - - - RECEIVE
2006-09-19 03:59:02 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 03:59:02 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 305 - - - - - - - RECEIVE
2006-09-19 04:00:12 DROP UDP 192.168.183.114 239.255.255.250 65161 1900 310 - - - - - - - RECEIVE
2006-09-19 04:00:12 DROP UDP 192.168.183.114 239.255.255.250 65161 1900 310 - - - - - - - RECEIVE
2006-09-19 04:00:12 DROP UDP 192.168.183.114 239.255.255.250 65160 1900 319 - - - - - - - RECEIVE
2006-09-19 04:00:12 DROP UDP 192.168.183.114 239.255.255.250 65160 1900 319 - - - - - - - RECEIVE
2006-09-19 04:02:00 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 250 - - - - - - - RECEIVE
2006-09-19 04:02:00 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 04:02:00 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 263 - - - - - - - RECEIVE
2006-09-19 04:02:00 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 04:02:00 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 305 - - - - - - - RECEIVE
2006-09-19 04:04:58 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 250 - - - - - - - RECEIVE
2006-09-19 04:04:58 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 04:04:58 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 263 - - - - - - - RECEIVE
2006-09-19 04:04:58 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 04:04:58 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 305 - - - - - - - RECEIVE
2006-09-19 04:05:05 DROP UDP 192.168.183.114 239.255.255.250 65159 1900 310 - - - - - - - RECEIVE
2006-09-19 04:05:05 DROP UDP 192.168.183.114 239.255.255.250 65159 1900 310 - - - - - - - RECEIVE
2006-09-19 04:05:05 DROP UDP 192.168.183.114 239.255.255.250 65158 1900 319 - - - - - - - RECEIVE
2006-09-19 04:05:05 DROP UDP 192.168.183.114 239.255.255.250 65158 1900 319 - - - - - - - RECEIVE
2006-09-19 04:07:25 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 303 - - - - - - - RECEIVE
2006-09-19 04:07:25 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 303 - - - - - - - RECEIVE
2006-09-19 04:07:25 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 355 - - - - - - - RECEIVE
2006-09-19 04:07:25 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 369 - - - - - - - RECEIVE
2006-09-19 04:07:25 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 367 - - - - - - - RECEIVE
2006-09-19 04:07:25 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 312 - - - - - - - RECEIVE
2006-09-19 04:07:32 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 303 - - - - - - - RECEIVE
2006-09-19 04:07:32 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 355 - - - - - - - RECEIVE
2006-09-19 04:07:32 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 367 - - - - - - - RECEIVE
2006-09-19 04:07:32 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 312 - - - - - - - RECEIVE
2006-09-19 04:07:32 DROP UDP 192.168.99.165 239.255.255.250 1900 1900 369 - - - - - - - RECEIVE
2006-09-19 04:07:56 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 250 - - - - - - - RECEIVE
2006-09-19 04:07:56 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 04:07:56 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 263 - - - - - - - RECEIVE
2006-09-19 04:07:56 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 315 - - - - - - - RECEIVE
2006-09-19 04:07:56 DROP UDP 172.20.73.241 239.255.255.250 2250 1900 305 - - - - - - - RECEIVE

Sample 2:

2006-09-20 02:59:03 OPEN TCP x.x.x.79 69.16.211.107 4328 110 - - - - - - - - -
2006-09-20 02:59:03 OPEN TCP x.x.x.79 69.16.211.107 4329 110 - - - - - - - - -
2006-09-20 02:59:03 OPEN TCP x.x.x.79 207.97.245.100 4336 110 - - - - - - - - -
2006-09-20 02:59:03 OPEN TCP x.x.x.79 69.16.211.107 4331 110 - - - - - - - - -
2006-09-20 02:59:03 OPEN TCP x.x.x.79 69.16.211.107 4333 110 - - - - - - - - -
2006-09-20 02:59:04 OPEN TCP x.x.x.79 207.97.245.100 4338 110 - - - - - - - - -
2006-09-20 02:59:04 CLOSE TCP x.x.x.79 69.16.211.107 4330 110 - - - - - - - - -
2006-09-20 02:59:05 CLOSE TCP x.x.x.79 205.236.14.2 4344 110 - - - - - - - - -
2006-09-20 02:59:05 OPEN TCP x.x.x.79 205.236.14.2 4345 110 - - - - - - - - -
2006-09-20 02:59:07 OPEN TCP x.x.x.79 207.97.245.100 4347 110 - - - - - - - - -
2006-09-20 02:59:07 CLOSE TCP x.x.x.79 207.97.245.100 4347 110 - - - - - - - - -
2006-09-20 02:59:04 CLOSE TCP x.x.x.79 69.16.211.107 4337 110 - - - - - - - - -
2006-09-20 02:59:04 CLOSE TCP x.x.x.79 69.16.211.107 4331 110 - - - - - - - - -
2006-09-20 02:59:04 OPEN TCP x.x.x.79 69.16.211.107 4341 110 - - - - - - - - -
2006-09-20 02:59:04 OPEN TCP x.x.x.79 69.16.211.107 4342 110 - - - - - - - - -
2006-09-20 02:59:04 CLOSE TCP x.x.x.79 69.16.211.107 4332 110 - - - - - - - - -
2006-09-20 02:59:04 CLOSE TCP x.x.x.79 69.16.211.107 4328 110 - - - - - - - - -
2006-09-20 02:59:04 CLOSE TCP x.x.x.79 69.16.211.107 4333 110 - - - - - - - - -
2006-09-20 02:59:04 CLOSE TCP x.x.x.79 205.236.14.2 4334 110 - - - - - - - - -
2006-09-20 02:59:07 CLOSE TCP x.x.x.79 207.97.245.100 4338 110 - - - - - - - - -

Table Of Contents