pak004_932bdb768b3eeeec3fcd3540acd32aa0.pcap

MD5932bdb768b3eeeec3fcd3540acd32aa0
Submission Date2021-10-04 07:56:18
Tags(not set)
Alert 6
Showing 1-6 of 6 items.
#
TimestampSrc IpDest IpAlert SignatureP
1
2012-09-21T07:42:34.494625-0700173.194.41.188172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
2
2012-09-21T07:42:36.845858-0700173.194.41.188172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
3
2012-09-21T07:42:37.398726-070080.239.254.72172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
4
2012-09-21T07:42:39.445690-0700173.194.41.188172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
5
2012-09-21T07:42:39.570006-0700173.194.41.188172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
6
2012-09-21T07:43:36.151476-070080.239.254.42172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
DNS 327
Showing 181-200 of 327 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
181
2012-09-21T07:42:35.348677-0700172.18.1.100172.18.3.11answerwww.skynewsarabia.comA(not set)
182
2012-09-21T07:42:35.366987-0700172.18.1.100172.18.3.11answeryourphotos.news.sky.comA(not set)
183
2012-09-21T07:42:35.458077-0700172.18.1.100172.18.3.11answerskyliving.sky.comA(not set)
184
2012-09-21T07:42:36.917543-0700172.18.3.11172.18.1.100querymp.apmebf.comA(not set)
185
2012-09-21T07:42:36.935262-0700172.18.1.100172.18.3.11answermp.apmebf.comA(not set)
186
2012-09-21T07:42:37.398689-0700172.18.3.11172.18.1.100queryatemda.comA(not set)
187
2012-09-21T07:42:37.417114-0700172.18.1.100172.18.3.11answeratemda.comA(not set)
188
2012-09-21T07:42:36.595238-0700172.18.3.11172.18.1.100queryad.doubleclick.netA(not set)
189
2012-09-21T07:42:36.595920-0700172.18.1.100172.18.3.11answerad.doubleclick.netA(not set)
190
2012-09-21T07:42:37.077693-0700172.18.3.11172.18.1.100queryimg.mediaplex.comA(not set)
191
2012-09-21T07:42:37.078030-0700172.18.1.100172.18.3.11answerimg.mediaplex.comA(not set)
192
2012-09-21T07:42:39.925906-0700172.18.3.11172.18.1.100queryp.twitter.comA(not set)
193
2012-09-21T07:42:39.926242-0700172.18.1.100172.18.3.11answerp.twitter.comA(not set)
194
2012-09-21T07:42:39.408475-0700172.18.3.11172.18.1.100queryplatform.twitter.comA(not set)
195
2012-09-21T07:42:39.426110-0700172.18.1.100172.18.3.11answerplatform.twitter.comA(not set)
196
2012-09-21T07:42:39.489539-0700172.18.3.11172.18.1.100queryodb.outbrain.comA(not set)
197
2012-09-21T07:42:39.507495-0700172.18.1.100172.18.3.11answerodb.outbrain.comA(not set)
198
2012-09-21T07:42:37.569751-0700172.18.3.11172.18.1.100querytu.connect.wunderloop.netA(not set)
199
2012-09-21T07:42:37.569838-0700172.18.3.11172.18.1.100querydas.uk.experian.comA(not set)
200
2012-09-21T07:42:37.589416-0700172.18.1.100172.18.3.11answerdas.uk.experian.comA(not set)
TLS 8
Showing 1-8 of 8 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2012-09-21T07:42:39.608580-0700172.18.3.11173.194.41.168TLSv1plusone.google.com
2
2012-09-21T07:42:39.469797-0700172.18.3.11173.194.41.174TLSv1apis.google.com
3
2012-09-21T07:42:39.679741-0700172.18.3.11173.194.41.175TLSv1ssl.gstatic.com
4
2012-09-21T07:42:40.459911-0700172.18.3.112.23.130.110TLSv1s-static.ak.facebook.com
5
2012-09-21T07:42:47.097613-0700172.18.3.11173.194.41.185TLSv1googleads.g.doubleclick.net
6
2012-09-21T07:42:40.801600-0700172.18.3.11173.252.101.16TLSv1www.facebook.com
7
2012-09-21T07:42:59.520623-0700172.18.3.11173.194.67.95TLSv1ajax.googleapis.com
8
2012-09-21T07:43:34.176791-0700172.18.3.11173.194.41.163TLSv1sb-ssl.google.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 687
Showing 81-100 of 687 items.
#
TimestampSourceHostnamePortMethodURLStatus
81
2012-09-21T07:41:45.004622-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63021000/jpg/_63021371_eatrich144_getty.jpg200
82
2012-09-21T07:41:44.893419-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/62967000/jpg/_62967972_hi016012954.jpg200
83
2012-09-21T07:41:44.897784-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/62987000/jpg/_62987391_hi016011678.jpg200
84
2012-09-21T07:41:45.254892-0700172.18.3.11sa.bbc.co.uk80GET/bbc/bbc/s?name=news.page&cps_asset_id=10263779&page_type=index&section=front-page&app_version=6.2.104-RC6&first_pub=2010-06-10T14:18:30+00:00&last_editorial_update=2012-09-21T14:32:05+00:00&title=&comments_box=false&cps_media_type=&cps_media_state=&app_type=web&ml_name=SSI&ml_version=0.11.1&language=en-GB&bbc_mc=not_set&screen_resolution=1680x1050&blq_s=3.5&blq_r=3.5&blq_v=journalism-domestic&ns__t=1348238505204&ns_c=UTF-8&ns_ti=BBC%20News%20-%20Home&ns_jspageurl=http%3A//www.bbc.co.uk/news/&ns_referrer=302
85
2012-09-21T07:41:44.904783-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63018000/jpg/_63018262_hi016017809.jpg200
86
2012-09-21T07:41:45.380959-0700172.18.3.11news.bbcimg.co.uk80GET/js/view/0_0_32/news-index.js200
87
2012-09-21T07:41:44.933637-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63025000/jpg/_63025125_016028534-1.jpg200
88
2012-09-21T07:41:45.414479-0700172.18.3.11sa.bbc.co.uk80GET/bbc/bbc/s?name=news.page&ns_m2=yes&ns_setsiteck=505C7B0F67BF00B2&cps_asset_id=10263779&page_type=index&section=front-page&app_version=6.2.104-RC6&first_pub=2010-06-10T14:18:30+00:00&last_editorial_update=2012-09-21T14:32:05+00:00&title=&comments_box=false&cps_media_type=&cps_media_state=&app_type=web&ml_name=SSI&ml_version=0.11.1&language=en-GB&bbc_mc=not_set&screen_resolution=1680x1050&blq_s=3.5&blq_r=3.5&blq_v=journalism-domestic&ns__t=1348238505204&ns_c=UTF-8&ns_ti=BBC%20News%20-%20Home&ns_jspageurl=http%3A//www.bbc.co.uk/news/&ns_referrer=200
89
2012-09-21T07:41:44.936981-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63028000/jpg/_63028641_binoche640.jpg200
90
2012-09-21T07:41:45.380433-0700172.18.3.11static.bbci.co.uk80GET/frameworks/demi/0.9.8/sharedmodules/demi-1.js200
91
2012-09-21T07:41:44.950703-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63012000/jpg/_63012675_63012074.jpg200
92
2012-09-21T07:41:45.418689-0700172.18.3.11static.bbci.co.uk80GET/frameworks/barlesque/2.10.0/desktop/3.5/img/bbccookies/cookie_prompt_sprite.png200
93
2012-09-21T07:41:45.435571-0700172.18.3.11news.bbcimg.co.uk80GET/view/1_4_35/cream/hi/news/img/subnav-divider.png200
94
2012-09-21T07:41:45.435721-0700172.18.3.11news.bbcimg.co.uk80GET/view/3_0_2/cream/hi/shared/img/transparencies/rgba-0-0-0-07.png200
95
2012-09-21T07:41:45.481766-0700172.18.3.11news.bbcimg.co.uk80GET/view/3_0_2/cream/hi/shared/img/search.png200
96
2012-09-21T07:41:45.478856-0700172.18.3.11news.bbcimg.co.uk80GET/view/1_4_35/cream/hi/news/img/red-masthead.png200
97
2012-09-21T07:41:45.521161-0700172.18.3.11news.bbcimg.co.uk80GET/view/3_0_2/cream/hi/shared/img/programmes-iplayer-brand.png200
98
2012-09-21T07:41:45.524575-0700172.18.3.11news.bbcimg.co.uk80GET/view/1_4_35/cream/hi/news/img/languages-sprite.gif200
99
2012-09-21T07:41:45.566662-0700172.18.3.11static.bbci.co.uk80GET/frameworks/istats/0.11.1/modules/istats-1.js200
100
2012-09-21T07:41:45.508437-0700172.18.3.11emp.bbci.co.uk80GET/emp/worldwide/embed.js?mediaset=journalism-pc301
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 405
Showing 161-180 of 405 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
161
2012-09-21T07:43:38.102668-07001463600247564879flow172.18.3.11647480.239.254.13880TCPpcapanalyzer
162
2012-09-21T07:43:38.102668-07002027121431617043flow172.18.3.11647780.239.221.4380TCPpcapanalyzer
163
2012-09-21T07:43:38.102668-0700901872211608047flow172.18.3.1152490172.18.1.10053UDPpcapanalyzer
164
2012-09-21T07:43:38.102668-0700620893308581305flow172.18.3.11663980.239.149.4480TCPpcapanalyzer
165
2012-09-21T07:43:38.102668-0700621408697317743flow172.18.3.11644987.249.105.5880TCPpcapanalyzer
166
2012-09-21T07:43:38.102668-07001606785871149356flow172.18.3.1161801172.18.1.10053UDPpcapanalyzer
167
2012-09-21T07:43:38.102668-070058699269040922flow172.18.3.116626212.58.244.8080TCPpcapanalyzer
168
2012-09-21T07:43:38.102668-0700621928388892889flow172.18.3.116460212.58.244.7580TCPpcapanalyzer
169
2012-09-21T07:43:38.102668-0700340481332420894flow172.18.3.11652464.236.124.22980TCPpcapanalyzer
170
2012-09-21T07:43:38.102668-0700763142621311496flow172.18.3.1149369172.18.1.10053UDPpcapanalyzer
171
2012-09-21T07:43:38.102668-07001889175675006049flow172.18.3.116605213.174.142.2980TCPpcapanalyzer
172
2012-09-21T07:43:38.102668-07001326403956875693flow172.18.3.11645680.239.254.2480TCPpcapanalyzer
173
2012-09-21T07:43:38.102668-07001326880701218610flow172.18.3.1152464172.18.1.10053UDPpcapanalyzer
174
2012-09-21T07:43:38.102668-0700905389791076026flow172.18.3.1164110172.18.1.10053UDPpcapanalyzer
175
2012-09-21T07:43:38.102668-07002172787395330868flow172.18.3.11654398.124.224.24380TCPpcapanalyzer
176
2012-09-21T07:43:38.102668-0700624803872458189flow172.18.3.1163166172.18.1.10053UDPpcapanalyzer
177
2012-09-21T07:43:38.102668-0700766061051761553flow172.18.3.1153765172.18.1.10053UDPpcapanalyzer
178
2012-09-21T07:43:38.102668-07001892061890523973flow172.18.3.116557173.252.101.16443TCPpcapanalyzer
179
2012-09-21T07:43:38.102668-07001329605854638704flow172.18.3.11642480.239.217.17180TCPpcapanalyzer
180
2012-09-21T07:43:38.102668-0700907563040781089flow172.18.3.11642580.239.254.3480TCPpcapanalyzer
File 654
Showing 121-140 of 654 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
121
2012-09-21T07:41:45.755079-070080.239.254.24172.18.3.11/view/3_0_2/cream/hi/shared/img/personalisation-help-icon.gifGIF image data, version 89a, 13 x 13139
122
2012-09-21T07:41:45.755079-070080.239.254.42172.18.3.11/emp/releases/worldwide/revisions/749603_749269_749444_6/embed.jsASCII text26972
123
2012-09-21T07:41:54.355412-070080.239.217.171172.18.3.11/modules/sharetools/v1/style/slim.cssASCII text, with very long lines, with no line terminators12713
124
2012-09-21T07:41:45.380382-0700212.58.244.80172.18.3.11/wurfldemi/useragent.jsonpASCII text, with no line terminators286
125
2012-09-21T07:41:45.419584-070080.239.254.24172.18.3.11/view/1_4_35/cream/hi/news/img/news_masthead.gifGIF image data, version 89a, 124 x 34970
126
2012-09-21T07:41:54.628471-070080.239.254.83172.18.3.11/buzz/sharesASCII text, with no line terminators111
127
2012-09-21T07:41:54.664473-070080.239.217.171172.18.3.11/modules/sharetools/v1/img/sprite-0.3.2.pngPNG image data, 444 x 517, 8-bit colormap, non-interlaced8494
128
2012-09-21T07:41:45.419729-070080.239.254.24172.18.3.11/view/1_4_35/cream/hi/news/img/nav-divider.pngPNG image data, 1 x 10, 8-bit colormap, non-interlaced126
129
2012-09-21T07:41:45.437473-070080.239.217.171172.18.3.11/frameworks/barlesque/2.10.0/desktop/3.5/img/blq-sprite_alpha.pngPNG image data, 84 x 454, 8-bit gray+alpha, non-interlaced2207
130
2012-09-21T07:42:01.789711-0700173.194.65.94172.18.3.11/HTML document, ASCII text, with very long lines97447
131
2012-09-21T07:41:45.458829-070080.239.254.24172.18.3.11/js/net/json/jsonloader/2_13_1/jsonloader.jsASCII text, with very long lines, with no line terminators11611
132
2012-09-21T07:41:49.835585-070080.239.254.24172.18.3.11/media/images/63027000/jpg/_63027505_016036297-1.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 304x171, frames 39996
133
2012-09-21T07:41:49.865359-070080.239.254.42172.18.3.11/emp/bumpHTML document, ASCII text305
134
2012-09-21T07:41:49.878108-070080.239.254.24172.18.3.11/media/images/62942000/jpg/_62942737_114158299.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, xresolution=50, yresolution=58, resolutionunit=2], baseline, precision 8, 144x81, frames 35373
135
2012-09-21T07:42:05.489948-0700173.194.65.94172.18.3.11/sASCII text, with very long lines, with no line terminators1146
136
2012-09-21T07:41:49.919419-070080.239.254.24172.18.3.11/media/images/62998000/jpg/_62998791_3yz8e6jh.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 144x81, frames 34053
137
2012-09-21T07:41:49.952254-0700212.58.244.66172.18.3.11/news/technology/HTML document, ASCII text, with CRLF, LF line terminators72331
138
2012-09-21T07:41:49.968528-070080.239.254.24172.18.3.11/media/images/63031000/jpg/_63031637_robot_snake.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, xresolution=50, yresolution=58, resolutionunit=2], baseline, precision 8, 336x189, frames 39360
139
2012-09-21T07:41:45.463328-070080.239.254.24172.18.3.11/js/app/personalisation_panel/1_9_1/personalisation_panel.jsASCII text, with very long lines, with no line terminators17277
140
2012-09-21T07:41:49.972423-070087.249.105.58172.18.3.11/bbc/bbc/sGIF image data, version 89a, 1 x 143

Comments(not set)

Update Download PCAP Delete