Device: Grande_Pharmacie_des_Forestiers(root)

2023-07-23 00:00 - 2023-07-30 00:00 Africa/Libreville

360 Degree Activities Report

Application Usage
The FortiGuard research team categorizes applications into
different categories based on the application behavioral Top Application Categories
characteristics, underlying technology, and the related traffic
transaction characteristics. The categories allow for better
application control. FortiGuard maintains thousands of
application sensors and can even perform deep application
inspection. For example, IT managers can get unprecedented email = 42.7 GB(36.5%)
visibility into filenames sent to the cloud or the titles of videos
being streamed. general. ...est = 17.6 GB(15%)

update = 12.6 GB(10.8%)

network. ...ice = 10.7 GB(9.2%)

web. client = 8 GB(6.8%)

Other = 25.4 GB(21.7%)

For application category details, see:
http://www.fortiguard.com/encyclopedia/application

Most Used High Bandwidth applications

Application Category Risk Traffic(Sent/Received) %
gmail email 3 1.5 GB / 41.2 GB 36.5%
google.services general.interest 2 7.4 GB / 5 GB 10.6%
microsoft.windows.update update 2 378.1 MB / 10.3 GB 9.1%
ssl network.service 2 1.9 GB / 5.9 GB 6.6%
https.browser web.client 3 969.3 MB / 6.4 GB 6.3%
youtube video/audio 2 303 MB / 4.7 GB 4.2%
facebook social.media 3 373.9 MB / 3.1 GB 2.9%
teamviewer remote.access 4 2.9 GB / 97.3 MB 2.6%
google.play general.interest 2 2.4 GB / 212.9 MB 2.2%
microsoft.portal collaboration 2 407 MB / 2 GB 2.0%
mega storage.backup 3 70.8 MB / 2 GB 1.8%
onedrive storage.backup 3 52.9 MB / 1.8 GB 1.6%
ssl_tlsv1.3 network.service 3 254.8 MB / 1.3 GB 1.3%
root.certificate.url update 1 27.4 MB / 1.5 GB 1.3%
whatsapp_file.transfer collaboration 2 450.2 MB / 851 MB 1.1%
google.accounts general.interest 2 110.3 MB / 910.7 MB 0.9%
google.chat collaboration 1 453.2 MB / 428.8 MB 0.7%
skype_video collaboration 2 2.5 MB / 673.6 MB 0.6%
avast.service general.interest 1 263.9 MB / 379.4 MB 0.5%
amazon.cloudfront cloud.it 3 11.6 MB / 578.5 MB 0.5%
Other Other 1.1 GB / 6.7 GB 6.7%
Total: 21.3 GB / 95.8 GB

Sent Received

Page 1
Device: Grande_Pharmacie_des_Forestiers(root)
2023-07-23 00:00 - 2023-07-30 00:00 Africa/Libreville

Application Category Breakdowns

Understanding application subcategories can give invaluable
insights into how efficiently your corporate network is operating. Remote Access Applications
Certain application types (such as P2P or gaming applications)
are not necessarily conducive to corporate environments and
can be blocked or limited in their scope. Other applications may
have dual purpose uses (such as video/audio streaming or social
media apps) and can be managed accordingly. These charts
illustrate application categories sorted by the amount of
bandwidth they used during the discovery period. teamviewer = 3 GB(97.6%)

teamviewe...ive = 61.7 MB(1.9%)

teamviewe...est = 15.5 MB(0.5%)

Top Social Media Applications Top Video/Audio Streaming Applications

facebook = 3.4 GB(81.1%) youtube = 4.9 GB(93.5%)

linkedin = 528.1 MB(12.2%) tiktok = 172.4 MB(3.2%)

pinterest = 136.2 MB(3.1%) dailymotion = 155.6 MB(2.9%)

instagram = 133.4 MB(3.1%) vimeo = 16.5 MB(0.3%)

twitter = 22.2 MB(0.5%) spotify = 7.2 MB(0.1%)

Other = 1.7 MB(0%) Other = 780 KB(0%)

Proxy Applications Top Peer to Peer Applications

No Data

openvpn = 606 KB(100%)

Page 2
Device: Grande_Pharmacie_des_Forestiers(root)
2023-07-23 00:00 - 2023-07-30 00:00 Africa/Libreville

High Risk Application

The FortiGuard research team assigns a risk rating of 0 to 4 to an application based on the application behavioral characteristics.
The risk rating can help administrators to identify the high risk applications quickly and make a better decision on the application
control policy. Applications listed below were assigned a risk rating of 3 or higher.

High Risk Application In Use

Risk Application Category Technology User % Session %
4 teamviewer remote.access Client-Server 0 N/A 5015 99.3%
4 teamviewer_callrequest remote.access Client-Server 0 N/A 3 0.1%
4 teamviewer_callreceive remote.access Client-Server 0 N/A 31 0.6%
Total: 0 Total: 5049

Page 3
Device: Grande_Pharmacie_des_Forestiers(root)
2023-07-23 00:00 - 2023-07-30 00:00 Africa/Libreville

Web Activities
Identifying which web categories and websites are accessed by applications provides additional data points for administrators to
understand the network traffic usage. Defining appropriate application policies along with web filtering policies will greatly reduce the
business risk. Fortinet's proprietary web filtering database is developed by the FortiGuard research team. The database contains
more than 47 million rated websites with real-time updates; the websites are categorized into 76 web categories to allow highly-
granular web filtering policies. Both passthrough and blocked websites are included in the calculation.

Most Visited Web Categories

22.6%
<N/A> = 138(41.1%)

Unrated = 76(22.6%)

19.9% Malicious Websites = 67(19.9%)

Phishing = 39(11.6%)

Newly Observed Domain = 8(2.4%)

Other Adult Materials = 3(0.9%)

Sex Education = 2(0.6%)

11.6%
41.1%
Pornography = 2(0.6%)

Dating = 1(0.3%)

Most Visited Websites

Web Site Visits % Estimated Browsing Time %
41.159.133.42 41 12.2% 00h 18m 22s 60.9%
jatomayfair. life 39 11.6% 00h 00m 00s 0.0%
tenlineunden. uno 32 9.5% 00h 00m 00s 0.0%
ff. avast.com 30 8.9% 00h 00m 00s 0.0%
data. microsoft.com 27 8.0% 00h 00m 00s 0.0%
orchidiapharma. com 14 4.2% 00h 00m 00s 0.0%
gcp. gvt2.com 10 3.0% 00h 00m 00s 0.0%
reatasfibro. uno 8 2.4% 00h 00m 00s 0.0%
substrate. office.com 7 2.1% 00h 00m 00s 0.0%
voicedstart. com 6 1.8% 00h 00m 00s 0.0%
eyauknalyticafra. info 5 1.5% 00h 00m 00s 0.0%
mp. microsoft.com 5 1.5% 00h 00m 00s 0.0%
mainnewsbd. com 4 1.2% 00h 00m 00s 0.0%
bineukdwithmef. info 4 1.2% 00h 00m 08s 0.4%
saigonstartravel. com 3 0.9% 00h 00m 00s 0.0%
prebid. a-mo.net 3 0.9% 00h 00m 00s 0.0%
u. avast.com 3 0.9% 00h 00m 00s 0.0%
mt-vkmt1. vanksen-mpath.com 3 0.9% 00h 11m 01s 36.5%
actualites241. com 3 0.9% 00h 00m 00s 0.0%
www. revmed.ch 3 0.9% 00h 00m 00s 0.0%
Other 86 25.6% 00h 00m 39s 2.2%
Total: 336 Total: 00h 30m 10s

Page 4
Device: Grande_Pharmacie_des_Forestiers(root)
2023-07-23 00:00 - 2023-07-30 00:00 Africa/Libreville

Web Activities
Most Visited Web Categories and Web Sites
Category % Web Site % Visits Estimated Browsing
Time
<N/A> 41.1% 100% 138 00h 00m 00s
Unrated 22.6% 41.159.133.42 53.9% 41 00h 18m 22s
voicedstart. com 7.9% 6 00h 00m 00s
eyauknalyticafra. info 6.6% 5 00h 00m 00s
mainnewsbd. com 5.3% 4 00h 00m 00s
mt-vkmt1. vanksen-mpath.com 3.9% 3 00h 11m 01s
Other 22.4% 17 00h 00m 21s
Malicious Websites 19.9% jatomayfair. life 58.2% 39 00h 00m 00s
orchidiapharma. com 20.9% 14 00h 00m 00s
reatasfibro. uno 11.9% 8 00h 00m 00s
actualites241. com 4.5% 3 00h 00m 00s
www. brainforest-gabon.org 3.0% 2 00h 00m 00s
Other 1.5% 1 00h 00m 00s
Phishing 11.6% tenlineunden. uno 82.1% 32 00h 00m 00s
saigonstartravel. com 7.7% 3 00h 00m 00s
senachat. com 2.6% 1 00h 00m 00s
www. comptoirnourisson.com 2.6% 1 00h 00m 00s
www. anbg-ga.com 2.6% 1 00h 00m 00s
Other 2.6% 1 00h 00m 00s
Newly Observed Domain 2.4% bineukdwithmef. info 50.0% 4 00h 00m 08s
akta. somelife.eu 25.0% 2 00h 00m 18s
www. gaelleinstitut-centredebienetr...e.com 12.5% 1 00h 00m 00s
www. tricefal.io 12.5% 1 00h 00m 00s
Other 2.4% 8 00h 00m 00s
Total: 336

Visits

Page 5
Device: Grande_Pharmacie_des_Forestiers(root)
2023-07-23 00:00 - 2023-07-30 00:00 Africa/Libreville

30 percent of data breaches involve organization insiders acting negligently or maliciously. Insiders pose a unique threat to
organizations because they have access to proprietary systems and often are able to bypass security measures creating a security
blind spot to the risk and security teams. User Behavior Analytics protects organizations from insider threats by continuously
monitoring users and endpoints.

Active Users
Most Active Application Users
User %
Session
(UnauthUser)
N/A(N/A) 614032 100.0%
Total: 614032

Most Active Web Users

User % %
Visits Estimated Browsing Time
(UnauthUser)
N/A(N/A) 336 100.0% 00h 30m 10s 100.0%
Total: 336 Total: 00h 30m 10s

Page 6
Device: Grande_Pharmacie_des_Forestiers(root)
2023-07-23 00:00 - 2023-07-30 00:00 Africa/Libreville

Applications by Active Users

Most Applications by Most Active Users
User(UnauthU % Application % Traffic
ser)
N/A(N/A) 100% gmail 36.5% 1.5 GB/41.2 GB
google.services 10.6% 7.4 GB/5 GB
microsoft.windows.update 9.1% 378.1 MB/10.3 GB
ssl 6.6% 1.9 GB/5.9 GB
https.browser 6.3% 969.3 MB/6.4 GB
Other 30.9% 9.2 GB/27 GB
Total: 21.3 GB/95.8 GB

Sent Received

Page 7
Device: Grande_Pharmacie_des_Forestiers(root)
2023-07-23 00:00 - 2023-07-30 00:00 Africa/Libreville

Websites by Active Web Users

Most Visited Web Sites by Most Active Users
User(UnauthU % Web Site % Visits Estimated Browsing Time
ser)
N/A(N/A) 100% 41.159.133.42 12.2% 41 00h 18m 22s
jatomayfair. life 11.6% 39 00h 00m 00s
tenlineunden. uno 9.5% 32 00h 00m 00s
ff. avast.com 8.9% 30 00h 00m 00s
data. microsoft.com 8.0% 27 00h 00m 00s
Other 49.7% 167 00h 11m 48s
Total: 336

Visits

Page 8
Device: Grande_Pharmacie_des_Forestiers(root)
2023-07-23 00:00 - 2023-07-30 00:00 Africa/Libreville

Active Users of Most Applications

Most Active Users of Most Applications
Application % User % Traffic
(UnauthUser)
gmail 36.5% N/A(N/A) 100% 1.5 GB/41.2 GB
google.services 10.6% N/A(N/A) 100% 7.4 GB/5 GB
microsoft.windows.update 9.1% N/A(N/A) 100% 378.1 MB/10.3 GB
ssl 6.6% N/A(N/A) 100% 1.9 GB/5.9 GB
https.browser 6.3% N/A(N/A) 100% 969.3 MB/6.4 GB
Other 30.9% 9.2 GB/27 GB
Total: 21.3 GB/95.8 GB

Sent Received

Page 9
Device: Grande_Pharmacie_des_Forestiers(root)
2023-07-23 00:00 - 2023-07-30 00:00 Africa/Libreville

Active Users of Most Visited Web Sites

Most Active Users of Most Visited Web Sites
Web Site % User % Visits Estimated Browsing Time
(UnauthUser)
41.159.133.42 12.2% N/A(N/A) 100% 41 00h 18m 22s
jatomayfair. life 11.6% N/A(N/A) 100% 39 00h 00m 00s
tenlineunden. uno 9.5% N/A(N/A) 100% 32 00h 00m 00s
ff. avast.com 8.9% N/A(N/A) 100% 30 00h 00m 00s
data. microsoft.com 8.0% N/A(N/A) 100% 27 00h 00m 00s
Other 49.7% 167 00h 11m 48s
Total: 336

Visits

Page 10
Device: Grande_Pharmacie_des_Forestiers(root)
2023-07-23 00:00 - 2023-07-30 00:00 Africa/Libreville

The rise of modern malware has reshaped the threat landscape. These modern threats bypass traditional antimalware strategies and
establish a foothold within the enterprise. They are used by criminals and nation-states to steal sensitive information and attack
assets. Fortinet next-generation firewall provides multi-level protection to combat these advanced persistent threat - the reliable
visibility and control of all traffic on the network regardless of evasive tactics. The FortiGuard AntiVirus Service employs advanced
virus, spyware, and heuristic detection engines to enable FortiGate systems to detect and prevent both new and evolving threats. For
AntiVirus see: http://www.fortiguard.com/antivirus/ .

Threat Detection and Prevention

Top Threats
Threat Category Level Score %
jatomayfair. life Web Sites High 1170 32.3%
tenlineunden. uno Web Sites High 960 26.5%
openvpn Application Control Medium 430 11.9%
orchidiapharma. com Web Sites High 420 11.6%
reatasfibro. uno Web Sites High 240 6.6%
actualites241. com Web Sites High 90 2.5%
saigonstartravel. com Web Sites High 90 2.5%
www. brainforest-gabon.org Web Sites High 60 1.7%
senachat. com Web Sites High 30 0.8%
jumeauxandco. com Web Sites High 30 0.8%
www. comptoirnourisson.com Web Sites High 30 0.8%
mega. co.nz Web Sites High 30 0.8%
www. anbg-ga.com Web Sites High 30 0.8%
www. nokenny.co Web Sites Low 5 0.1%
fr. pornhub.com Web Sites Low 5 0.1%
Total: 3620

Top Viruses
No Data

Top Virus Victims

No Data

Page 11
Device: Grande_Pharmacie_des_Forestiers(root)
2023-07-23 00:00 - 2023-07-30 00:00 Africa/Libreville

Top Attacks
No Data

Top Attack Victims

No Data

Top Spam by Source IP

No Data

Queried Botnet C-and-C Domains

No Data

Page 12
Device: Grande_Pharmacie_des_Forestiers(root)
2023-07-23 00:00 - 2023-07-30 00:00 Africa/Libreville

Applications that have the ability to transfer files can pose a significant risk of data loss: company's customer data, intellectual
property and confidential business trade secrets can be sent out of the organization via these applications. Knowing which types of
files and content are transferred crossing the network can help administrators to mitigate the risk by setting up appropriate
application policies along with data leak prevention rules on the Fortinet next-generation firewall system.

Data Exfiltration Detection and Prevention

Top Data Leak by Rules
No Data

Top Data Leak by Source

No Data

Page 13
Device: Grande_Pharmacie_des_Forestiers(root)
2023-07-23 00:00 - 2023-07-30 00:00 Africa/Libreville

FortiClient protects your endpoints with an extra layer of security; it's engineered to defeat the latest and most dangerous malware
and provides real-time protection on the company's desktops and mobile devices. FortiClient together with Fortinet next generation
Firewall delivers fully managed and layered security defences.

Endpoint Detection and Prevention

Most At-Risk Devices and Hosts
Source Score %
2370 65.5%
192.168.10.64
390 10.8%
192.168.10.161
210 5.8%
192.168.10.169
150 4.1%
192.168.10.167
130 3.6%
192.168.10.159
90 2.5%
192.168.10.203
60 1.7%
192.168.10.47
60 1.7%
192.168.10.175
50 1.4%
192.168.10.182
30 0.8%
192.168.10.38
Other 80 2.2%
Total: 3620

Traffic by From Country

No Data

Page 14
Device: Grande_Pharmacie_des_Forestiers(root)
2023-07-23 00:00 - 2023-07-30 00:00 Africa/Libreville

Appendix:Devices
Report is generated from following devices:

FG101FTK22003511(root)

Page 15