what.pcap

MD584321dac9f394200ceb4008889cdfa1c
Submission Date2020-09-28 10:00:37
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 206
Showing 1-20 of 206 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2020-09-09T19:25:00.483285-0700192.168.1.140103.58.116.2queryd3n85rao6710xg.cloudfront.netA(not set)
2
2020-09-09T19:25:00.565577-0700103.58.116.2192.168.1.140answerd3n85rao6710xg.cloudfront.netA(not set)
3
2020-09-09T19:24:58.923659-0700192.168.1.140103.58.116.2querywww.google.comA(not set)
4
2020-09-09T19:24:58.927860-0700103.58.116.2192.168.1.140answerwww.google.comA(not set)
5
2020-09-09T19:25:15.588759-0700192.168.1.140103.58.116.2queryapi.segment.ioA(not set)
6
2020-09-09T19:25:15.648377-0700103.58.116.2192.168.1.140answerapi.segment.ioA(not set)
7
2020-09-09T19:25:09.758188-0700192.168.1.140103.58.116.2queryplay.googleapis.comA(not set)
8
2020-09-09T19:25:09.763448-0700103.58.116.2192.168.1.140answerplay.googleapis.comA(not set)
9
2020-09-09T19:25:01.385114-0700192.168.1.140103.58.116.2querya.root-servers.netA(not set)
10
2020-09-09T19:25:01.390444-0700103.58.116.2192.168.1.140answera.root-servers.netA(not set)
11
2020-09-09T19:25:17.816368-0700192.168.1.140103.58.116.2queryssl.google-analytics.comA(not set)
12
2020-09-09T19:25:17.824851-0700103.58.116.2192.168.1.140answerssl.google-analytics.comA(not set)
13
2020-09-09T19:26:15.889413-0700192.168.1.140103.58.116.2querysuggestqueries.google.comA(not set)
14
2020-09-09T19:26:15.895173-0700103.58.116.2192.168.1.140answersuggestqueries.google.comA(not set)
15
2020-09-09T19:25:31.425245-0700192.168.1.140103.58.116.2querya.root-servers.netA(not set)
16
2020-09-09T19:25:31.430476-0700103.58.116.2192.168.1.140answera.root-servers.netA(not set)
17
2020-09-09T19:26:11.513084-0700192.168.1.140103.58.116.2querywww.google.comA(not set)
18
2020-09-09T19:26:11.517427-0700103.58.116.2192.168.1.140answerwww.google.comA(not set)
19
2020-09-09T19:26:11.777925-0700192.168.1.140103.58.116.2querydp-gw-na.amazon.comA(not set)
20
2020-09-09T19:26:11.835413-0700103.58.116.2192.168.1.140answerdp-gw-na.amazon.comA(not set)
TLS 81
Showing 1-20 of 81 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2020-09-09T19:25:09.860511-0700192.168.1.140216.58.200.138TLS 1.3play.googleapis.com
2
2020-09-09T19:25:00.606590-0700192.168.1.14013.33.183.9TLS 1.2d3n85rao6710xg.cloudfront.net
3
2020-09-09T19:25:00.837853-0700192.168.1.14013.33.183.9TLS 1.2d3n85rao6710xg.cloudfront.net
4
2020-09-09T19:25:13.135000-0700192.168.1.14023.59.175.112TLS 1.3sports.hotstar.com
5
2020-09-09T19:25:29.585078-0700192.168.1.140157.240.190.162TLS 1.3 draft-26-fbmedia.fmaa1-3.fna.whatsapp.net
6
2020-09-09T19:25:16.457270-0700192.168.1.14052.25.204.187TLS 1.2api.segment.io
7
2020-09-09T19:25:17.906196-0700192.168.1.140216.58.196.168TLS 1.2ssl.google-analytics.com
8
2020-09-09T19:26:16.746627-0700192.168.1.140216.58.196.162TLS 1.2googleads.g.doubleclick.net
9
2020-09-09T19:26:16.770298-0700192.168.1.140216.58.196.162TLS 1.2googleads.g.doubleclick.net
10
2020-09-09T19:26:18.476456-0700192.168.1.140172.217.163.202TLS 1.2safebrowsing.googleapis.com
11
2020-09-09T19:26:18.480358-0700192.168.1.140172.217.26.166TLS 1.3s2.2mdn.net
12
2020-09-09T19:25:26.583324-0700192.168.1.140157.240.190.162TLS 1.3 draft-26-fbmedia.fmaa1-3.fna.whatsapp.net
13
2020-09-09T19:26:11.807803-0700192.168.1.14023.59.175.112TLS 1.3sports.hotstar.com
14
2020-09-09T19:26:12.398001-0700192.168.1.14052.94.228.85TLS 1.2dp-gw-na.amazon.com
15
2020-09-09T19:26:15.775026-0700192.168.1.140216.58.196.162TLS 1.3pagead2.googleadservices.com
16
2020-09-09T19:26:16.452830-0700192.168.1.140142.250.67.74TLS 1.3android.googleapis.com
17
2020-09-09T19:26:59.286270-0700192.168.1.140157.240.23.19TLS 1.3graph.facebook.com
18
2020-09-09T19:27:26.013560-0700192.168.1.14034.102.188.24TLS 1.2push-callerid-noneu.truecaller.com
19
2020-09-09T19:27:26.215521-0700192.168.1.14034.218.159.240TLS 1.2brahe.apptimize.com
20
2020-09-09T19:27:26.299192-0700192.168.1.140172.217.166.106TLS 1.2firebaseremoteconfig.googleapis.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 3
Showing 1-3 of 3 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2020-09-09T19:28:33.756598-0700192.168.1.140redirector.gvt1.com80GET/edgedl/release2/chrome_component/aB116OLzN3h35otWEAb5pw_2223/PYoFQX6Dxzsaln7LRuK_Cg302
2
2020-09-09T19:28:33.836588-0700192.168.1.140r1---sn-h557sns7.gvt1.com80GET/edgedl/release2/chrome_component/aB116OLzN3h35otWEAb5pw_2223/PYoFQX6Dxzsaln7LRuK_Cg?cms_redirect=yes&mh=LO&mip=103.58.116.26&mm=28&mn=sn-h557sns7&ms=nvh&mt=1601311933&mv=m&mvi=1&pl=24&shardbypass=yes200
3
2020-09-09T19:28:33.068439-0700192.168.1.140storage.googleapis.com80GET/update-delta/ggkkehgbnfjpeggfpleeakpidbkibbmn/2020.9.22.1142/2020.9.16.1141/8a802718c96606c8c31a0b4a3f0e588081ad6793427b8d7a45996760c1bd5258.crxd200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 297
Showing 1-20 of 297 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2020-09-09T19:26:38.666699-0700579316169438073flow192.168.1.1404155452.30.207.191443TCPpcapanalyzer
2
2020-09-09T19:26:38.666699-07001585820280621993flow52.199.149.100443192.168.1.14053593TCPpcapanalyzer
3
2020-09-09T19:26:38.666699-070040044370492431flow192.168.1.1403809213.33.183.79443TCPpcapanalyzer
4
2020-09-09T19:26:38.666699-07001183145621122583flow192.168.1.1403999213.224.21.17443TCPpcapanalyzer
5
2020-09-09T19:26:38.666699-0700781205402251104flow23.59.175.112443192.168.1.14046560TCPpcapanalyzer
6
2020-09-09T19:26:38.666699-0700531676391748746flow192.168.1.1404709635.201.97.85443TCPpcapanalyzer
7
2020-09-09T19:26:38.666699-07001252681142693206flow157.240.23.19443192.168.1.14042976TCPpcapanalyzer
8
2020-09-09T19:26:38.666699-07002101551363267301flow192.168.1.1403841213.33.183.25443TCPpcapanalyzer
9
2020-09-09T19:26:38.666699-07001711941996332126flow192.168.1.1404364652.119.196.66443TCPpcapanalyzer
10
2020-09-09T19:26:38.666699-07002138565393108358flow13.33.178.206443192.168.1.14048456TCPpcapanalyzer
11
2020-09-09T19:26:38.666699-07002018271948682198flow192.168.1.1404141813.124.65.46443TCPpcapanalyzer
12
2020-09-09T19:26:38.666699-07002074656279725949flow13.33.178.206443192.168.1.14048454TCPpcapanalyzer
13
2020-09-09T19:26:38.666699-07001951180265005551flow13.33.178.206443192.168.1.14048476TCPpcapanalyzer
14
2020-09-09T19:26:38.666699-07001256903096026865flow192.168.1.1404565034.102.182.62443TCPpcapanalyzer
15
2020-09-09T19:26:38.666699-07001823413577555135flow192.168.1.14048104172.217.160.142443TCPpcapanalyzer
16
2020-09-09T19:26:38.666699-07001010221650192380flow192.168.0.10048006157.240.190.162443TCPpcapanalyzer
17
2020-09-09T19:26:38.666699-07002037118265523545flow52.208.191.198443192.168.1.14047096TCPpcapanalyzer
18
2020-09-09T19:31:17.991407-07001450077842203504flow157.240.23.53443192.168.1.14060138TCPpcapanalyzer
19
2020-09-09T19:31:17.991407-07001878475060395158flow205.251.253.6680192.168.1.14044338TCPpcapanalyzer
20
2020-09-09T19:31:17.991407-0700574248111820078flow172.217.163.138443192.168.1.14039944TCPpcapanalyzer
File 3
Showing 1-3 of 3 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2020-09-09T19:28:33.756598-0700172.217.26.174192.168.1.140/edgedl/release2/chrome_component/aB116OLzN3h35otWEAb5pw_2223/PYoFQX6Dxzsaln7LRuK_CgHTML document, ASCII text, with CRLF, LF line terminators469
2
2020-09-09T19:28:33.836588-0700173.194.14.102192.168.1.140/edgedl/release2/chrome_component/aB116OLzN3h35otWEAb5pw_2223/PYoFQX6Dxzsaln7LRuK_Cgdata27419
3
2020-09-09T19:28:33.068439-0700172.217.194.128192.168.1.140/update-delta/ggkkehgbnfjpeggfpleeakpidbkibbmn/2020.9.22.1142/2020.9.16.1141/8a802718c96606c8c31a0b4a3f0e588081ad6793427b8d7a45996760c1bd5258.crxddata13727

Comments(not set)

Update Download PCAP Delete