candidate.pcap

MD5bc69fe77cc167b26e8c8013cd36d7f28
Submission Date2018-07-24 08:06:29
Tags(not set)
Alert 2
Showing 1-2 of 2 items.
#
TimestampSrc IpDest IpAlert SignatureP
1
2016-01-28T06:11:31.825989-080010.10.10.3810.10.10.255ET POLICY Spotify P2P Client*
2
2016-01-28T06:11:31.825989-080010.10.10.3810.10.10.255ET POLICY Spotify P2P Client*
DNS 48
Showing 1-20 of 48 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2016-01-28T06:11:11.204578-080010.10.10.2518.8.8.8querywww.google.co.ukA(not set)
2
2016-01-28T06:11:11.204629-080010.10.10.2518.8.8.8querywww.google.co.ukAAAA(not set)
3
2016-01-28T06:11:11.237659-08008.8.8.810.10.10.251answerwww.google.co.ukA(not set)
4
2016-01-28T06:11:11.238149-08008.8.8.810.10.10.251answerwww.google.co.ukAAAA(not set)
5
2016-01-28T06:11:11.095331-080010.10.10.2518.8.8.8querywww.google.comA(not set)
6
2016-01-28T06:11:11.095403-080010.10.10.2518.8.8.8querywww.google.comAAAA(not set)
7
2016-01-28T06:11:11.140709-08008.8.8.810.10.10.251answerwww.google.comA(not set)
8
2016-01-28T06:11:11.141153-08008.8.8.810.10.10.251answerwww.google.comAAAA(not set)
9
2016-01-28T06:11:15.548007-080010.10.10.2518.8.8.8querywww.zepko.comA(not set)
10
2016-01-28T06:11:15.548051-080010.10.10.2518.8.8.8querywww.zepko.comAAAA(not set)
11
2016-01-28T06:11:15.700362-08008.8.8.810.10.10.251answerwww.zepko.comA(not set)
12
2016-01-28T06:11:15.725122-08008.8.8.810.10.10.251answerwww.zepko.comAAAA(not set)
13
2016-01-28T06:11:36.220076-080010.10.10.2518.8.8.8querywww.krebsonsecurity.comA(not set)
14
2016-01-28T06:11:36.220131-080010.10.10.2518.8.8.8querywww.krebsonsecurity.comAAAA(not set)
15
2016-01-28T06:11:36.274608-08008.8.8.810.10.10.251answerwww.krebsonsecurity.comAAAA(not set)
16
2016-01-28T06:11:36.285631-08008.8.8.810.10.10.251answerwww.krebsonsecurity.comA(not set)
17
2016-01-28T06:11:26.829979-080010.10.10.2518.8.8.8querywww.slashdot.orgA(not set)
18
2016-01-28T06:11:26.830021-080010.10.10.2518.8.8.8querywww.slashdot.orgAAAA(not set)
19
2016-01-28T06:11:26.861976-08008.8.8.810.10.10.251answerwww.slashdot.orgA(not set)
20
2016-01-28T06:11:26.871845-08008.8.8.810.10.10.251answerwww.slashdot.orgAAAA(not set)
TLS 0
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
No results found.
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 18
Showing 1-18 of 18 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2016-01-28T06:11:11.204272-080010.10.10.251www.google.com80GET/302
2
2016-01-28T06:11:16.543748-080010.10.10.251www.zepko.com80GET/_crypto_path_/279278923749823.txt200
3
2016-01-28T06:11:27.106992-080010.10.10.251www.slashdot.org80GET/301
4
2016-01-28T06:11:27.960474-080010.10.10.251slashdot.org80GET/200
5
2016-01-28T06:11:39.821967-080010.10.10.251www.krebsonsecurity.com80GET/(not set)
6
2016-01-28T06:11:39.821967-080010.10.10.251www.krebsonsecurity.com80GET/(not set)
7
2016-01-28T06:11:39.821967-080010.10.10.251www.google.co.uk80GET/?gfe_rd=cr&ei=MSWqVor6HunS8Af2rIKYDg200
8
2016-01-28T06:11:39.821967-080010.10.10.251www.krebsonsecurity.com80GET/(not set)
9
2016-01-28T06:11:39.821967-080010.10.10.251www.krebsonsecurity.com80GET/(not set)
10
2016-01-28T06:11:11.204272-080010.10.10.251www.google.com80GET/302
11
2016-01-28T06:11:27.106992-080010.10.10.251www.slashdot.org80GET/301
12
2016-01-28T06:11:27.960474-080010.10.10.251slashdot.org80GET/200
13
2016-01-28T06:11:16.543748-080010.10.10.251www.zepko.com80GET/_crypto_path_/279278923749823.txt200
14
2016-01-28T06:11:45.596475-080010.10.10.251www.krebsonsecurity.com80GET/(not set)
15
2016-01-28T06:11:45.596475-080010.10.10.251www.krebsonsecurity.com80GET/(not set)
16
2016-01-28T06:11:45.596475-080010.10.10.251www.krebsonsecurity.com80GET/(not set)
17
2016-01-28T06:11:45.596475-080010.10.10.251www.google.co.uk80GET/?gfe_rd=cr&ei=MSWqVor6HunS8Af2rIKYDg200
18
2016-01-28T06:11:45.596475-080010.10.10.251www.krebsonsecurity.com80GET/(not set)
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 40
Showing 1-20 of 40 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2016-01-28T06:11:39.821967-0800425391302899806flow0.0.0.068255.255.255.25567UDPpcapanalyzer
2
2016-01-28T06:11:39.821967-08001706614406469125flow10.10.10.2512210.10.10.20238009TCPpcapanalyzer
3
2016-01-28T06:11:39.821967-08001707636609195810flow10.10.10.251385868.8.8.853UDPpcapanalyzer
4
2016-01-28T06:11:39.821967-0800160308070161029flow10.10.10.385762110.10.10.25557621UDPpcapanalyzer
5
2016-01-28T06:11:39.821967-08002131169776714117flow10.10.10.2513455331.55.162.18780TCPpcapanalyzer
6
2016-01-28T06:11:39.821967-08001021013072090002flow10.10.11.1074591710.10.10.25122TCPpcapanalyzer
7
2016-01-28T06:11:39.821967-0800739739959272170flow10.10.10.2515846531.55.162.21380TCPpcapanalyzer
8
2016-01-28T06:11:39.821967-0800742121518862771flow10.10.10.2513958554.230.14.21080TCPpcapanalyzer
9
2016-01-28T06:11:39.821967-08001591358960638883flow10.10.10.25139994216.34.181.4580TCPpcapanalyzer
10
2016-01-28T06:11:39.821967-0800333766767172524flow10.10.10.251563218.8.8.853UDPpcapanalyzer
11
2016-01-28T06:11:39.821967-08001601761372423574flow10.10.10.2514364572.52.7.14480TCPpcapanalyzer
12
2016-01-28T06:11:39.821967-08001045734905237109flow10.10.10.25143145216.34.181.4880TCPpcapanalyzer
13
2016-01-28T06:11:39.821967-0800490621120306276flow10.10.10.2514364272.52.7.14480TCPpcapanalyzer
14
2016-01-28T06:11:39.821967-08001898120557339571flow10.10.10.251543268.8.8.853UDPpcapanalyzer
15
2016-01-28T06:11:39.821967-0800641748134742186flow10.10.10.2514364472.52.7.14480TCPpcapanalyzer
16
2016-01-28T06:11:39.821967-0800360762784766685flow10.10.10.3813810.10.10.255138UDPpcapanalyzer
17
2016-01-28T06:11:39.821967-08001796417879190043flow10.10.10.251373788.8.8.853UDPpcapanalyzer
18
2016-01-28T06:11:39.821967-08001536660403870887flow10.10.10.251521138.8.8.853UDPpcapanalyzer
19
2016-01-28T06:11:39.821967-08001540231670634443flow10.10.10.2514364372.52.7.14480TCPpcapanalyzer
20
2016-01-28T06:11:39.821967-08001401781250651235flow10.10.10.251337748.8.8.853UDPpcapanalyzer
File 10
Showing 1-10 of 10 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2016-01-28T06:11:11.204272-080031.55.162.18710.10.10.251/HTML document, ASCII text, with CRLF, LF line terminators261
2
2016-01-28T06:11:16.543748-080054.230.14.21010.10.10.251/_crypto_path_/279278923749823.txtASCII text385
3
2016-01-28T06:11:27.106992-0800216.34.181.4810.10.10.251/HTML document, ASCII text309
4
2016-01-28T06:11:27.960474-0800216.34.181.4510.10.10.251/HTML document, ASCII text152142
5
2016-01-28T06:11:39.821967-080031.55.162.21310.10.10.251/HTML document, ASCII text, with very long lines, with no line terminators155236
6
2016-01-28T06:11:11.204272-080031.55.162.18710.10.10.251/HTML document, ASCII text, with CRLF, LF line terminators261
7
2016-01-28T06:11:27.106992-0800216.34.181.4810.10.10.251/HTML document, ASCII text309
8
2016-01-28T06:11:27.960474-0800216.34.181.4510.10.10.251/HTML document, ASCII text152142
9
2016-01-28T06:11:16.543748-080054.230.14.21010.10.10.251/_crypto_path_/279278923749823.txtASCII text385
10
2016-01-28T06:11:45.596475-080031.55.162.21310.10.10.251/HTML document, ASCII text, with very long lines, with no line terminators155236

Comments(not set)

Update Download PCAP Delete