3188180001221.pcap

MD5e1fc5e98277857cd8546e214496846b4
Submission Date2020-05-22 07:02:51
Tags(not set)
Alert 3
Showing 1-3 of 3 items.
#
TimestampSrc IpDest IpAlert SignatureP
1
2020-05-22T07:01:46.328462-070010.107.205.131168.70.93.88ET POLICY Unsupported/Fake Windows NT Version 5.0*
2
2020-05-22T07:01:47.203334-070010.107.205.13158.176.132.150ET P2P BitTorrent Traffic*
3
2020-05-22T07:01:49.608801-070010.107.205.131125.122.69.147ET POLICY Unsupported/Fake Windows NT Version 5.0
DNS 8
Showing 1-8 of 8 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2020-05-22T07:01:41.718657-07002001:0d08:00d9:d23b:496f:5c03:a75f:02792001:4860:4860:0000:0000:0000:0000:8888querys0.2mdn.netA(not set)
2
2020-05-22T07:01:41.718926-07002001:0d08:00d9:d23b:496f:5c03:a75f:02792001:4860:4860:0000:0000:0000:0000:8888querys0.2mdn.netAAAA(not set)
3
2020-05-22T07:01:41.742025-07002001:4860:4860:0000:0000:0000:0000:88882001:0d08:00d9:d23b:496f:5c03:a75f:0279answers0.2mdn.netA(not set)
4
2020-05-22T07:01:41.742061-07002001:4860:4860:0000:0000:0000:0000:88882001:0d08:00d9:d23b:496f:5c03:a75f:0279answers0.2mdn.netAAAA(not set)
5
2020-05-22T07:01:49.303664-070010.107.205.13158.71.132.10querya.root-servers.netA(not set)
6
2020-05-22T07:01:49.316521-070058.71.132.1010.107.205.131answera.root-servers.netA(not set)
7
2020-05-22T07:01:49.290184-07002001:0d08:00d0:0024:2443:0a18:e000:a0902001:0d08:0010:0201:0000:0000:0000:0010querya.root-servers.netAAAA(not set)
8
2020-05-22T07:01:49.303102-07002001:0d08:0010:0201:0000:0000:0000:00102001:0d08:00d0:0024:2443:0a18:e000:a090answera.root-servers.netAAAA(not set)
TLS 11
Showing 1-11 of 11 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2020-05-22T07:01:41.815712-07002001:0d08:00d9:d23b:496f:5c03:a75f:02792404:6800:4001:080d:0000:0000:0000:200eTLS 1.3www.google-analytics.com
2
2020-05-22T07:01:41.856005-07002001:0d08:00d9:d23b:496f:5c03:a75f:02792404:6800:4001:0800:0000:0000:0000:2003TLS 1.3fonts.gstatic.com
3
2020-05-22T07:01:42.533267-07002001:0d08:00d9:d23b:496f:5c03:a75f:02792404:6800:4001:0804:0000:0000:0000:2006TLS 1.3s0.2mdn.net
4
2020-05-22T07:01:42.601633-07002001:0d08:00d9:d23b:496f:5c03:a75f:02792404:6800:4001:0804:0000:0000:0000:2006TLS 1.3s0.2mdn.net
5
2020-05-22T07:01:44.239231-07002001:0d08:00d9:d23b:496f:5c03:a75f:02792404:6800:4003:0c03:0000:0000:0000:009aTLS 1.3stats.g.doubleclick.net
6
2020-05-22T07:01:45.165541-07002001:0d08:00d9:d23b:496f:5c03:a75f:02792404:6800:4001:080e:0000:0000:0000:200eTLS 1.3clients4.google.com
7
2020-05-22T07:01:45.359359-07002001:0d08:00d9:d23b:496f:5c03:a75f:02792404:6800:4001:080d:0000:0000:0000:2004TLS 1.3www.google.com
8
2020-05-22T07:01:46.564308-07002001:0d08:00d9:d23b:496f:5c03:a75f:02792606:4700:0021:0000:0000:0000:681b:c458TLS 1.3assets.jable.tv
9
2020-05-22T07:01:48.163897-07002001:0d08:00d9:d23b:496f:5c03:a75f:02792800:03f0:4001:0800:0000:0000:0000:2003TLS 1.3csi.gstatic.com
10
2020-05-22T07:01:47.061081-07002001:0d08:00d9:d23b:496f:5c03:a75f:02792606:4700:0021:0000:0000:0000:681b:c458TLS 1.3assets.jable.tv
11
2020-05-22T07:01:48.463781-07002001:0d08:00d9:d23b:496f:5c03:a75f:02792800:03f0:4001:0800:0000:0000:0000:2003TLS 1.3csi.gstatic.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 2
Showing 1-2 of 2 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2020-05-22T07:01:46.401800-070010.107.205.131168.70.93.8812197GET/u2Fx3H0ZbBiGF-ZEt6NvA-7SKhXB/YmE1HcbYRdfhLVkTUjcvzlc8+oTqkCYrFdZ2YSQc-yVcNwGna3bo0W+bXAmtnks9EvgQBJ06uDgeO?MHtPZGLkXKo503
2
2020-05-22T07:01:49.608801-070010.107.205.131125.122.69.14718161GET/W66sPQqS-5JzoKZ0odtKY5pzGl_G_CPz/NFv+rh5-gpf0zpnWgPVyxQ_B-9ZWU__j9GblQYmu-t?KRXRSnErcqp77gZ-odJInx-vFrDH6tcvOdVNdWvmeRKd0WPhlE(not set)
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 230
Showing 1-20 of 230 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2020-05-22T07:01:49.608801-0700141591570618416flow172.217.169.344310.107.205.13154693TCPpcapanalyzer
2
2020-05-22T07:01:49.608801-07003482602578356flow8.241.138.24944310.107.205.13154670TCPpcapanalyzer
3
2020-05-22T07:01:49.608801-07001973910518753879flow110.174.9.921111310.107.205.13165180TCPpcapanalyzer
4
2020-05-22T07:01:49.608801-07002115854893074695flow10.107.205.13154730114.36.244.810200TCPpcapanalyzer
5
2020-05-22T07:01:49.608801-07005531301929642flow77.222.156.1482674510.107.205.13120547UDPpcapanalyzer
6
2020-05-22T07:01:49.608801-07001131534288065980flow10.107.205.13151111107.178.254.65443TCPpcapanalyzer
7
2020-05-22T07:01:49.608801-07001413649215090056flow2001:0d08:00d0:0024:2443:0a18:e000:a090446692001:0d08:0010:0201:0000:0000:0000:001053UDPpcapanalyzer
8
2020-05-22T07:01:49.608801-07001835878859478224flow10.107.205.13154711119.246.121.17111413TCPpcapanalyzer
9
2020-05-22T07:01:49.608801-0700851163118067819flow2600:9000:20fa:4e00:000c:a9b7:ddc0:93a14432001:0d08:00d9:d23b:1cd1:ec70:115e:6ec351078TCPpcapanalyzer
10
2020-05-22T07:01:49.608801-07001273637575841381flow2001:0d08:00d9:d23b:496f:5c03:a75f:027920547240e:00e0:6673:a000:d166:df1f:300b:8ca755672TCPpcapanalyzer
11
2020-05-22T07:01:49.608801-07001978020802567715flow172.217.169.344310.107.205.13154725TCPpcapanalyzer
12
2020-05-22T07:01:49.608801-07001133956649550440flow104.18.101.19444310.107.205.13151119TCPpcapanalyzer
13
2020-05-22T07:01:49.608801-0700572222171685681flow2404:6800:4001:0800:0000:0000:0000:20084432001:0d08:00d9:d23b:1cd1:ec70:115e:6ec351010TCPpcapanalyzer
14
2020-05-22T07:01:49.608801-0700291168101705341flow10.107.205.13151095151.101.198.49443TCPpcapanalyzer
15
2020-05-22T07:01:49.608801-07001137036141271553flow10.107.205.131547361.64.102.17015000TCPpcapanalyzer
16
2020-05-22T07:01:49.608801-070011522781423750flow2001:0d08:00d9:d23b:496f:5c03:a75f:0279547242800:03f0:4001:0800:0000:0000:0000:2003443TCPpcapanalyzer
17
2020-05-22T07:01:49.608801-0700434546995029033flow58.153.127.934896410.107.205.13165219TCPpcapanalyzer
18
2020-05-22T07:01:49.608801-07001982779626164490flow119.246.121.1711141310.107.205.13120547UDPpcapanalyzer
19
2020-05-22T07:01:49.608801-0700153583119782811flow10.107.205.131547381.36.14.1671TCPpcapanalyzer
20
2020-05-22T07:01:49.608801-07001561086852182001flow182.234.112.169790410.107.205.13154365TCPpcapanalyzer
File 1
Showing 1-1 of 1 item.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2020-05-22T07:01:46.401800-0700168.70.93.8810.107.205.131/u2Fx3H0ZbBiGF-ZEt6NvA-7SKhXB/YmE1HcbYRdfhLVkTUjcvzlc8+oTqkCYrFdZ2YSQc-yVcNwGna3bo0W+bXAmtnks9EvgQBJ06uDgeOASCII text, with no line terminators28

Comments(not set)

Update Download PCAP Delete