pak004_932bdb768b3eeeec3fcd3540acd32aa0.pcap

MD5932bdb768b3eeeec3fcd3540acd32aa0
Submission Date2021-10-04 07:56:18
Tags(not set)
Alert 6
Showing 1-6 of 6 items.
#
TimestampSrc IpDest IpAlert SignatureP
1
2012-09-21T07:42:34.494625-0700173.194.41.188172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
2
2012-09-21T07:42:36.845858-0700173.194.41.188172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
3
2012-09-21T07:42:37.398726-070080.239.254.72172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
4
2012-09-21T07:42:39.445690-0700173.194.41.188172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
5
2012-09-21T07:42:39.570006-0700173.194.41.188172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
6
2012-09-21T07:43:36.151476-070080.239.254.42172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
DNS 327
Showing 101-120 of 327 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
101
2012-09-21T07:42:33.761188-0700172.18.1.100172.18.3.11answermetrics.sky.comA(not set)
102
2012-09-21T07:41:54.484296-0700172.18.3.11172.18.1.100querynewsvote.bbc.co.ukA(not set)
103
2012-09-21T07:41:54.484950-0700172.18.1.100172.18.3.11answernewsvote.bbc.co.ukA(not set)
104
2012-09-21T07:42:11.797679-0700172.18.3.11172.18.1.100queryp5-vuomjve4ezg7a-ygiznq2tllkmxoic-759258-i1-v6exp3-ds.metric.gstatic.comA(not set)
105
2012-09-21T07:42:11.797708-0700172.18.3.11172.18.1.100queryp5-vuomjve4ezg7a-ygiznq2tllkmxoic-759258-i2-v6exp3-v4.metric.gstatic.comA(not set)
106
2012-09-21T07:42:33.957459-0700172.18.3.11172.18.1.100queryad-emea.doubleclick.netA(not set)
107
2012-09-21T07:42:11.821050-0700172.18.1.100172.18.3.11answerp5-vuomjve4ezg7a-ygiznq2tllkmxoic-759258-i2-v6exp3-v4.metric.gstatic.comA(not set)
108
2012-09-21T07:42:11.827066-0700172.18.1.100172.18.3.11answerp5-vuomjve4ezg7a-ygiznq2tllkmxoic-759258-i1-v6exp3-ds.metric.gstatic.comA(not set)
109
2012-09-21T07:42:20.491265-0700172.18.3.11172.18.1.100querywebcache.googleusercontent.comA(not set)
110
2012-09-21T07:42:20.491265-0700172.18.3.11172.18.1.100querywww.imdb.comA(not set)
111
2012-09-21T07:42:20.498740-0700172.18.3.11172.18.1.100queryid.google.co.ukA(not set)
112
2012-09-21T07:42:20.511113-0700172.18.1.100172.18.3.11answerwww.imdb.comA(not set)
113
2012-09-21T07:42:20.511852-0700172.18.3.11172.18.1.100querygroups.csail.mit.eduA(not set)
114
2012-09-21T07:42:34.026283-0700172.18.1.100172.18.3.11answerad-emea.doubleclick.netA(not set)
115
2012-09-21T07:42:20.521335-0700172.18.1.100172.18.3.11answerid.google.co.ukA(not set)
116
2012-09-21T07:42:20.544909-0700172.18.1.100172.18.3.11answergroups.csail.mit.eduA(not set)
117
2012-09-21T07:42:20.545682-0700172.18.3.11172.18.1.100queryorchestralworks.blogspot.comA(not set)
118
2012-09-21T07:42:20.547953-0700172.18.3.11172.18.1.100querywww.usethekey.org.ukA(not set)
119
2012-09-21T07:42:20.559264-0700172.18.1.100172.18.3.11answerwebcache.googleusercontent.comA(not set)
120
2012-09-21T07:42:20.565598-0700172.18.1.100172.18.3.11answerwww.usethekey.org.ukA(not set)
TLS 8
Showing 1-8 of 8 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2012-09-21T07:42:39.608580-0700172.18.3.11173.194.41.168TLSv1plusone.google.com
2
2012-09-21T07:42:39.469797-0700172.18.3.11173.194.41.174TLSv1apis.google.com
3
2012-09-21T07:42:39.679741-0700172.18.3.11173.194.41.175TLSv1ssl.gstatic.com
4
2012-09-21T07:42:40.459911-0700172.18.3.112.23.130.110TLSv1s-static.ak.facebook.com
5
2012-09-21T07:42:47.097613-0700172.18.3.11173.194.41.185TLSv1googleads.g.doubleclick.net
6
2012-09-21T07:42:40.801600-0700172.18.3.11173.252.101.16TLSv1www.facebook.com
7
2012-09-21T07:42:59.520623-0700172.18.3.11173.194.67.95TLSv1ajax.googleapis.com
8
2012-09-21T07:43:34.176791-0700172.18.3.11173.194.41.163TLSv1sb-ssl.google.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 687
Showing 61-80 of 687 items.
#
TimestampSourceHostnamePortMethodURLStatus
61
2012-09-21T07:41:44.826843-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63035000/jpg/_63035008_63031171.jpg200
62
2012-09-21T07:41:44.834048-0700172.18.3.11static.bbci.co.uk80GET/frameworks/barlesque/2.10.0/desktop/3.5/img/blq-search_grey_alpha.png200
63
2012-09-21T07:41:44.979458-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63025000/jpg/_63025403_post.jpg200
64
2012-09-21T07:41:44.868677-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63007000/jpg/_63007925_63003380.jpg200
65
2012-09-21T07:41:45.037413-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63012000/jpg/_63012843_lynher_dairies_220511_0465.jpg200
66
2012-09-21T07:41:45.087322-0700172.18.3.11news.bbcimg.co.uk80GET/js/map/map_0_0_32.js200
67
2012-09-21T07:41:44.873271-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63001000/jpg/_63001711_63001544.jpg200
68
2012-09-21T07:41:44.834057-0700172.18.3.11node1.bbcimg.co.uk80GET/iplayer/images/episode/b01mxyyc_150_84.jpg200
69
2012-09-21T07:41:44.905789-0700172.18.3.11static.bbci.co.uk80GET/frameworks/jquery/0.1.8/sharedmodules/jquery-1.6.2.js200
70
2012-09-21T07:41:44.910416-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/62937000/jpg/_62937264_62934668.jpg200
71
2012-09-21T07:41:44.843648-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63030000/jpg/_63030020_photo(5).jpg200
72
2012-09-21T07:41:44.844035-0700172.18.3.11static.bbci.co.uk80GET/frameworks/barlesque/2.10.0/desktop/3.5/script/barlesque.js200
73
2012-09-21T07:41:44.914523-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/62960000/jpg/_62960904_62960902.jpg200
74
2012-09-21T07:41:44.953927-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63025000/jpg/_63025721_trav.jpg200
75
2012-09-21T07:41:44.847059-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63035000/jpg/_63035362_000145217-1.jpg200
76
2012-09-21T07:41:44.957724-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63014000/jpg/_63014224_jex_1517346_de27-1.jpg200
77
2012-09-21T07:41:45.128132-0700172.18.3.11news.bbcimg.co.uk80GET/js/view/0_0_32/view.js200
78
2012-09-21T07:41:44.850881-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63033000/jpg/_63033568_hi016036863.jpg200
79
2012-09-21T07:41:44.887840-0700172.18.3.11node1.bbcimg.co.uk80GET/glow/glow/1.7.7/core/core.js200
80
2012-09-21T07:41:45.000780-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63017000/jpg/_63017897_136238087.jpg200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 405
Showing 1-20 of 405 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2012-09-21T07:41:39.704863-0700954277252052231flow172.18.3.1158234255.255.255.2551947UDPpcapanalyzer
2
2012-09-21T07:41:39.704863-0700118968389913127flow172.18.3.116405172.18.3.4980TCPpcapanalyzer
3
2012-09-21T07:41:40.359876-0700268514856517983flow172.18.3.1150167172.18.1.10053UDPpcapanalyzer
4
2012-09-21T07:42:33.881814-0700751578418267952flow172.18.3.1158234172.18.255.2551947UDPpcapanalyzer
5
2012-09-21T07:42:33.881814-0700268514856473418flow172.18.1.10053172.18.3.1150167UDPpcapanalyzer
6
2012-09-21T07:43:38.102668-0700141053112448034flow172.18.3.1158471172.18.1.10053UDPpcapanalyzer
7
2012-09-21T07:43:38.102668-07001126275663755394flow172.18.3.1156951172.18.1.10053UDPpcapanalyzer
8
2012-09-21T07:43:38.102668-0700563830371169239flow172.18.3.116599204.152.194.21880TCPpcapanalyzer
9
2012-09-21T07:43:38.102668-07001267732563203033flow172.18.3.1162003172.18.1.10053UDPpcapanalyzer
10
2012-09-21T07:43:38.102668-0700845689741651186flow172.18.3.1156536172.18.1.10053UDPpcapanalyzer
11
2012-09-21T07:43:38.102668-07001690230639403618flow172.18.3.11648464.236.124.22980TCPpcapanalyzer
12
2012-09-21T07:43:38.102668-07001972334825587849flow172.18.3.1149568172.18.1.10053UDPpcapanalyzer
13
2012-09-21T07:43:38.102668-0700284116325262502flow172.18.3.1160687172.18.1.10053UDPpcapanalyzer
14
2012-09-21T07:43:38.102668-0700426541739252755flow172.18.3.1153110172.18.1.10053UDPpcapanalyzer
15
2012-09-21T07:43:38.102668-07001834479260316737flow172.18.3.11643380.239.254.2480TCPpcapanalyzer
16
2012-09-21T07:43:38.102668-0700145799055393495flow172.18.3.1163879172.18.1.10053UDPpcapanalyzer
17
2012-09-21T07:43:38.102668-0700568043728287493flow172.18.3.1164864172.18.1.10053UDPpcapanalyzer
18
2012-09-21T07:43:38.102668-0700568110305485653flow172.18.3.116586213.174.142.2980TCPpcapanalyzer
19
2012-09-21T07:43:38.102668-07001975551755764055flow172.18.3.116410173.194.65.9480TCPpcapanalyzer
20
2012-09-21T07:43:38.102668-0700287150723368471flow172.18.3.116519194.60.187.23080TCPpcapanalyzer
File 654
Showing 61-80 of 654 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
61
2012-09-21T07:41:44.834048-070080.239.217.171172.18.3.11/frameworks/barlesque/2.10.0/desktop/3.5/img/blq-search_grey_alpha.pngPNG image data, 13 x 13, 8-bit/color RGBA, non-interlaced188
62
2012-09-21T07:41:44.979458-070080.239.254.24172.18.3.11/media/images/63025000/jpg/_63025403_post.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 144x81, frames 35117
63
2012-09-21T07:41:44.868677-070080.239.254.24172.18.3.11/media/images/63007000/jpg/_63007925_63003380.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 144x81, frames 36163
64
2012-09-21T07:41:45.037413-070080.239.254.24172.18.3.11/media/images/63012000/jpg/_63012843_lynher_dairies_220511_0465.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 144x81, frames 36038
65
2012-09-21T07:41:45.087322-070080.239.254.24172.18.3.11/js/map/map_0_0_32.jsASCII text, with very long lines, with no line terminators889
66
2012-09-21T07:41:44.873271-070080.239.254.24172.18.3.11/media/images/63001000/jpg/_63001711_63001544.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 144x81, frames 35968
67
2012-09-21T07:41:44.834057-070080.239.254.34172.18.3.11/iplayer/images/episode/b01mxyyc_150_84.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 150x84, frames 35292
68
2012-09-21T07:41:44.905789-070080.239.217.171172.18.3.11/frameworks/jquery/0.1.8/sharedmodules/jquery-1.6.2.jsASCII text, with very long lines133644
69
2012-09-21T07:41:44.910416-070080.239.254.24172.18.3.11/media/images/62937000/jpg/_62937264_62934668.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 144x81, frames 35200
70
2012-09-21T07:41:44.843648-070080.239.254.24172.18.3.11/media/images/63030000/jpg/_63030020_photo(5).jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 144x81, frames 36076
71
2012-09-21T07:41:44.844035-070080.239.217.171172.18.3.11/frameworks/barlesque/2.10.0/desktop/3.5/script/barlesque.jsUTF-8 Unicode text, with very long lines, with no line terminators16858
72
2012-09-21T07:41:44.914523-070080.239.254.24172.18.3.11/media/images/62960000/jpg/_62960904_62960902.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, xresolution=50, yresolution=58, resolutionunit=2], baseline, precision 8, 144x81, frames 35053
73
2012-09-21T07:41:44.953927-070080.239.254.24172.18.3.11/media/images/63025000/jpg/_63025721_trav.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 144x81, frames 33974
74
2012-09-21T07:41:44.847059-070080.239.254.24172.18.3.11/media/images/63035000/jpg/_63035362_000145217-1.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 144x81, frames 34457
75
2012-09-21T07:41:44.957724-070080.239.254.24172.18.3.11/media/images/63014000/jpg/_63014224_jex_1517346_de27-1.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 144x81, frames 35087
76
2012-09-21T07:41:44.850881-070080.239.254.24172.18.3.11/media/images/63033000/jpg/_63033568_hi016036863.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 144x81, frames 34747
77
2012-09-21T07:41:44.887840-070080.239.254.34172.18.3.11/glow/glow/1.7.7/core/core.jsASCII text, with very long lines98133
78
2012-09-21T07:41:45.000780-070080.239.254.24172.18.3.11/media/images/63017000/jpg/_63017897_136238087.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 112x63, frames 34520
79
2012-09-21T07:41:45.128132-070080.239.254.24172.18.3.11/js/view/0_0_32/view.jsHTML document, ASCII text, with very long lines, with no line terminators9927
80
2012-09-21T07:41:45.004622-070080.239.254.24172.18.3.11/media/images/63021000/jpg/_63021371_eatrich144_getty.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 112x63, frames 34997

Comments(not set)

Update Download PCAP Delete