PCAPdroid_22_Jul_01_24_09.pcap

MD5dc7a63882426e6c165d3345874a042cf
Submission Date2021-07-21 18:05:27
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 203
Showing 1-20 of 203 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2021-07-21T16:24:14.872838-0700192.168.178.112192.168.178.1queryin.appcenter.msA(not set)
2
2021-07-21T16:24:28.248491-0700192.168.178.112192.168.178.1queryclients4.google.comA(not set)
3
2021-07-21T16:24:14.930292-0700192.168.178.1192.168.178.112answerin.appcenter.msA(not set)
4
2021-07-21T16:24:28.272897-0700192.168.178.1192.168.178.112answerclients4.google.comA(not set)
5
2021-07-21T16:24:15.934534-0700192.168.178.112192.168.178.1queryself.events.data.microsoft.comA(not set)
6
2021-07-21T16:24:37.857220-0700192.168.178.112192.168.178.1queryencrypted-tbn0.gstatic.comA(not set)
7
2021-07-21T16:24:15.957051-0700192.168.178.1192.168.178.112answerself.events.data.microsoft.comA(not set)
8
2021-07-21T16:24:37.876046-0700192.168.178.1192.168.178.112answerencrypted-tbn0.gstatic.comA(not set)
9
2021-07-21T16:24:40.743847-0700192.168.178.112192.168.178.1queryaax.amazon-adsystem.comA(not set)
10
2021-07-21T16:24:40.767853-0700192.168.178.1192.168.178.112answeraax.amazon-adsystem.comA(not set)
11
2021-07-21T16:24:37.860325-0700192.168.178.112192.168.178.1querylh5.googleusercontent.comA(not set)
12
2021-07-21T16:24:37.878126-0700192.168.178.1192.168.178.112answerlh5.googleusercontent.comA(not set)
13
2021-07-21T16:24:38.926365-0700192.168.178.112192.168.178.1queryjfesblog.wordpress.comA(not set)
14
2021-07-21T16:24:40.796622-0700192.168.178.112192.168.178.1querybidder.criteo.comA(not set)
15
2021-07-21T16:24:40.815127-0700192.168.178.1192.168.178.112answerbidder.criteo.comA(not set)
16
2021-07-21T16:24:40.824335-0700192.168.178.112192.168.178.1querydelivery.g.switchadhub.comA(not set)
17
2021-07-21T16:24:40.842868-0700192.168.178.112192.168.178.1querydelivery.swid.switchadhub.comA(not set)
18
2021-07-21T16:24:41.169729-0700192.168.178.1192.168.178.112answerdelivery.swid.switchadhub.comA(not set)
19
2021-07-21T16:24:41.224625-0700192.168.178.1192.168.178.112answerdelivery.g.switchadhub.comA(not set)
20
2021-07-21T16:24:41.265341-0700192.168.178.112192.168.178.1queryprebid-server.rubiconproject.comA(not set)
TLS 121
Showing 1-20 of 121 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2021-07-21T16:24:38.164780-0700192.168.178.112172.217.170.1TLS 1.3lh5.googleusercontent.com
2
2021-07-21T16:24:39.465620-0700192.168.178.112172.217.170.74TLS 1.3optimizationguide-pa.googleapis.com
3
2021-07-21T16:24:40.216534-0700192.168.178.112192.0.77.32TLS 1.3s0.wp.com
4
2021-07-21T16:24:41.048691-0700192.168.178.112192.0.76.3TLS 1.3stats.wp.com
5
2021-07-21T16:24:15.831467-0700192.168.178.11252.177.138.113TLS 1.2in.appcenter.ms
6
2021-07-21T16:24:39.115348-0700192.168.178.112192.0.78.12TLS 1.3jfesblog.wordpress.com
7
2021-07-21T16:24:40.188329-0700192.168.178.112192.0.77.32TLS 1.3s0.wp.com
8
2021-07-21T16:24:40.502815-0700192.168.178.112172.217.170.42TLS 1.3fonts.googleapis.com
9
2021-07-21T16:24:41.637270-0700192.168.178.112172.217.170.72TLS 1.3ssl.google-analytics.com
10
2021-07-21T16:24:41.820969-0700192.168.178.112192.0.78.22TLS 1.3public-api.wordpress.com
11
2021-07-21T16:24:42.120037-0700192.168.178.11252.9.15.180TLS 1.3s.pubmine.com
12
2021-07-21T16:24:16.763105-0700192.168.178.11252.114.75.149TLS 1.2self.events.data.microsoft.com
13
2021-07-21T16:24:41.695225-0700192.168.178.112192.0.78.22TLS 1.3public-api.wordpress.com
14
2021-07-21T16:24:42.670647-0700192.168.178.112192.0.77.38TLS 1.3c0.pubmine.com
15
2021-07-21T16:24:43.204649-0700192.168.178.112104.94.95.5TLS 1.3secure-assets.rubiconproject.com
16
2021-07-21T16:24:43.225762-0700192.168.178.11295.100.217.57TLS 1.2ads.pubmatic.com
17
2021-07-21T16:24:43.343121-0700192.168.178.11235.244.159.8TLS 1.3u.openx.net
18
2021-07-21T16:24:43.529659-0700192.168.178.112104.92.153.216TLS 1.3sync.teads.tv
19
2021-07-21T16:24:43.415613-0700192.168.178.112104.75.214.62TLS 1.3eus.rubiconproject.com
20
2021-07-21T16:24:43.708889-0700192.168.178.112185.33.221.53TLS 1.2ib.adnxs.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 52
Showing 1-20 of 52 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2021-07-21T16:24:44.521864-0700192.168.178.112certificates.godaddy.com80GET/repository/gdig2.crt200
2
2021-07-21T16:24:49.951118-0700192.168.178.112192.168.178.180GET/js/avmcore.js?lang=en200
3
2021-07-21T16:24:48.562328-0700192.168.178.112192.168.178.180GET/html/capture.html200
4
2021-07-21T16:24:48.810785-0700192.168.178.112192.168.178.180GET/js/directPageCall.js200
5
2021-07-21T16:24:49.838956-0700192.168.178.112192.168.178.180GET/?lp=cap200
6
2021-07-21T16:24:49.919859-0700192.168.178.112192.168.178.180GET/js/browser.js200
7
2021-07-21T16:26:18.540073-0700192.168.178.112192.168.178.180GET/css/box.css200
8
2021-07-21T16:24:49.905566-0700192.168.178.112192.168.178.180GET/css/rd/login.css200
9
2021-07-21T16:26:18.564078-0700192.168.178.112192.168.178.180GET/js/avmold.js?lang=en200
10
2021-07-21T16:24:49.966450-0700192.168.178.112192.168.178.180GET/js/box-login.js200
11
2021-07-21T16:24:50.040503-0700192.168.178.112192.168.178.180GET/js/vendor.js200
12
2021-07-21T16:24:50.063400-0700192.168.178.112192.168.178.180GET/js/login.js?lang=en200
13
2021-07-21T16:26:18.642298-0700192.168.178.112192.168.178.180GET/js/box.js?lang=en200
14
2021-07-21T16:26:18.667406-0700192.168.178.112192.168.178.180GET/css/rd/icons.css200
15
2021-07-21T16:24:50.343290-0700192.168.178.112192.168.178.180GET/css/rd/fonts/metaWebProBold.woff200
16
2021-07-21T16:26:18.801889-0700192.168.178.112192.168.178.180GET/css/rd/icons/ic_triangleOpen_right_white.svg200
17
2021-07-21T16:24:50.257118-0700192.168.178.112192.168.178.180GET/css/rd/logos/logo_fritzDiamond.svg200
18
2021-07-21T16:24:50.418329-0700192.168.178.112192.168.178.180GET/css/rd/icons/ic_eye_slash.svg200
19
2021-07-21T16:26:18.812421-0700192.168.178.112192.168.178.180GET/css/rd/icons/ic_dots_vertical_white.svg200
20
2021-07-21T16:24:50.342957-0700192.168.178.112192.168.178.180GET/css/rd/fonts/sourcesanspro.woff200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 267
Showing 1-20 of 267 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2021-07-21T16:27:04.886181-0700704021052328170flow192.168.178.11234384192.0.78.13443TCPpcapanalyzer
2
2021-07-21T16:27:04.886181-0700141169882860956flow192.168.178.11240979192.168.178.153UDPpcapanalyzer
3
2021-07-21T16:27:04.886181-07002111606389201087flow192.168.178.11245726192.168.178.153UDPpcapanalyzer
4
2021-07-21T16:27:04.886181-0700423972004665379flow192.168.178.1124418667.202.110.23443TCPpcapanalyzer
5
2021-07-21T16:27:04.886181-0700705477046208337flow192.168.178.11263514192.168.178.153UDPpcapanalyzer
6
2021-07-21T16:27:04.886181-07001409366351481420flow192.168.178.11216080192.168.178.153UDPpcapanalyzer
7
2021-07-21T16:27:04.886181-0700424719329012382flow192.168.178.11249344204.79.197.200443TCPpcapanalyzer
8
2021-07-21T16:27:04.886181-07002113586367517666flow192.168.178.11233045172.217.170.10443UDPpcapanalyzer
9
2021-07-21T16:27:04.886181-0700707439846043929flow192.168.178.11250172157.240.240.17443TCPpcapanalyzer
10
2021-07-21T16:27:04.886181-07001692675279005712flow192.168.178.11242044192.0.78.22443TCPpcapanalyzer
11
2021-07-21T16:27:04.886181-07001974347823915173flow192.168.178.11254516192.168.178.153UDPpcapanalyzer
12
2021-07-21T16:27:04.886181-0700989421627196038flow192.168.178.1122874192.168.178.153UDPpcapanalyzer
13
2021-07-21T16:27:04.886181-07001130842017173170flow192.168.178.11249064185.29.132.68443TCPpcapanalyzer
14
2021-07-21T16:27:04.886181-07001975687854140770flow192.168.178.1124244835.244.159.8443TCPpcapanalyzer
15
2021-07-21T16:27:04.886181-07001412776553668931flow192.168.178.11254044169.254.1.180TCPpcapanalyzer
16
2021-07-21T16:27:04.886181-07001694479165443952flow192.168.178.1125774035.190.60.146443TCPpcapanalyzer
17
2021-07-21T16:27:04.886181-07001131774025101639flow192.168.178.11219381192.168.178.153UDPpcapanalyzer
18
2021-07-21T16:27:04.886181-07001554763887320711flow216.58.223.142443192.168.178.11237644TCPpcapanalyzer
19
2021-07-21T16:27:04.886181-0700288964002663406flow192.168.178.1124417067.202.110.23443TCPpcapanalyzer
20
2021-07-21T16:27:04.886181-0700149484939718189flow192.168.178.1126041635.156.143.112443TCPpcapanalyzer
File 54
Showing 1-20 of 54 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2021-07-21T16:24:44.521864-0700192.124.249.31192.168.178.112/repository/gdig2.crtdata1236
2
2021-07-21T16:24:49.951118-0700192.168.178.1192.168.178.112/js/avmcore.jsASCII text, with very long lines76752
3
2021-07-21T16:24:48.562328-0700192.168.178.1192.168.178.112/html/capture.htmlHTML document, ASCII text147
4
2021-07-21T16:24:48.810785-0700192.168.178.1192.168.178.112/js/directPageCall.jsASCII text, with very long lines437
5
2021-07-21T16:24:49.838956-0700192.168.178.1192.168.178.112/HTML document, ASCII text7290
6
2021-07-21T16:24:49.919859-0700192.168.178.1192.168.178.112/js/browser.jsASCII text, with very long lines459
7
2021-07-21T16:26:18.540073-0700192.168.178.1192.168.178.112/css/box.cssASCII text, with very long lines, with no line terminators131706
8
2021-07-21T16:24:49.905566-0700192.168.178.1192.168.178.112/css/rd/login.cssASCII text, with very long lines, with no line terminators12506
9
2021-07-21T16:26:18.564078-0700192.168.178.1192.168.178.112/js/avmold.jsASCII text, with very long lines28384
10
2021-07-21T16:24:49.966450-0700192.168.178.1192.168.178.112/js/box-login.jsASCII text, with very long lines, with no line terminators3222
11
2021-07-21T16:24:50.040503-0700192.168.178.1192.168.178.112/js/vendor.jsASCII text, with very long lines, with no line terminators265696
12
2021-07-21T16:24:50.063400-0700192.168.178.1192.168.178.112/js/login.jsASCII text, with very long lines22964
13
2021-07-21T16:26:18.642298-0700192.168.178.1192.168.178.112/js/box.jsASCII text, with very long lines, with no line terminators321369
14
2021-07-21T16:26:18.667406-0700192.168.178.1192.168.178.112/css/rd/icons.cssASCII text, with very long lines, with no line terminators4800
15
2021-07-21T16:24:50.343290-0700192.168.178.1192.168.178.112/css/rd/fonts/metaWebProBold.woffWeb Open Font Format, flavor 65536, length 41252, version 7.50441252
16
2021-07-21T16:24:50.257118-0700192.168.178.1192.168.178.112/css/rd/logos/logo_fritzDiamond.svgASCII text, with very long lines, with no line terminators22010
17
2021-07-21T16:24:50.418329-0700192.168.178.1192.168.178.112/css/rd/icons/ic_eye_slash.svgHTML document, ASCII text, with very long lines1858
18
2021-07-21T16:26:18.801889-0700192.168.178.1192.168.178.112/css/rd/icons/ic_triangleOpen_right_white.svgASCII text, with no line terminators206
19
2021-07-21T16:24:50.342957-0700192.168.178.1192.168.178.112/css/rd/fonts/sourcesanspro.woffWeb Open Font Format, flavor 65536, length 31400, version 1.131400
20
2021-07-21T16:26:18.812421-0700192.168.178.1192.168.178.112/css/rd/icons/ic_dots_vertical_white.svgASCII text, with very long lines, with no line terminators479

Comments(not set)

Update Download PCAP Delete