pak004_932bdb768b3eeeec3fcd3540acd32aa0.pcap

MD5932bdb768b3eeeec3fcd3540acd32aa0
Submission Date2021-10-04 07:56:18
Tags(not set)
Alert 6
Showing 1-6 of 6 items.
#
TimestampSrc IpDest IpAlert SignatureP
1
2012-09-21T07:42:34.494625-0700173.194.41.188172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
2
2012-09-21T07:42:36.845858-0700173.194.41.188172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
3
2012-09-21T07:42:37.398726-070080.239.254.72172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
4
2012-09-21T07:42:39.445690-0700173.194.41.188172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
5
2012-09-21T07:42:39.570006-0700173.194.41.188172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
6
2012-09-21T07:43:36.151476-070080.239.254.42172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
DNS 327
Showing 1-20 of 327 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2012-09-21T07:41:39.704863-0700172.18.3.11172.18.1.100querywww.google.co.ukA(not set)
2
2012-09-21T07:41:40.288015-0700172.18.3.11172.18.1.100queryplay.google.comA(not set)
3
2012-09-21T07:41:40.309850-0700172.18.3.11172.18.1.100querywww.youtube.comA(not set)
4
2012-09-21T07:41:40.337901-0700172.18.1.100172.18.3.11answerplay.google.comA(not set)
5
2012-09-21T07:41:40.339156-0700172.18.3.11172.18.1.100querynews.google.co.ukA(not set)
6
2012-09-21T07:41:40.339186-0700172.18.3.11172.18.1.100querymail.google.comA(not set)
7
2012-09-21T07:41:40.339973-0700172.18.1.100172.18.3.11answerwww.youtube.comA(not set)
8
2012-09-21T07:41:40.339974-0700172.18.1.100172.18.3.11answermail.google.comA(not set)
9
2012-09-21T07:41:40.340579-0700172.18.3.11172.18.1.100querydocs.google.comA(not set)
10
2012-09-21T07:41:40.341765-0700172.18.3.11172.18.1.100querybooks.google.co.ukA(not set)
11
2012-09-21T07:41:40.342098-0700172.18.1.100172.18.3.11answerbooks.google.co.ukA(not set)
12
2012-09-21T07:41:40.342539-0700172.18.3.11172.18.1.100querywww.blogger.comA(not set)
13
2012-09-21T07:41:40.363758-0700172.18.1.100172.18.3.11answernews.google.co.ukA(not set)
14
2012-09-21T07:41:40.363759-0700172.18.1.100172.18.3.11answerwww.blogger.comA(not set)
15
2012-09-21T07:41:40.365252-0700172.18.3.11172.18.1.100querypicasaweb.google.co.ukA(not set)
16
2012-09-21T07:41:40.380116-0700172.18.1.100172.18.3.11answerdocs.google.comA(not set)
17
2012-09-21T07:41:40.409792-0700172.18.1.100172.18.3.11answerpicasaweb.google.co.ukA(not set)
18
2012-09-21T07:41:40.287910-0700172.18.3.11172.18.1.100querymaps.google.co.ukA(not set)
19
2012-09-21T07:41:40.337900-0700172.18.1.100172.18.3.11answermaps.google.co.ukA(not set)
20
2012-09-21T07:41:40.381273-0700172.18.3.11172.18.1.100queryaccounts.google.comA(not set)
TLS 8
Showing 1-8 of 8 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2012-09-21T07:42:39.608580-0700172.18.3.11173.194.41.168TLSv1plusone.google.com
2
2012-09-21T07:42:39.469797-0700172.18.3.11173.194.41.174TLSv1apis.google.com
3
2012-09-21T07:42:39.679741-0700172.18.3.11173.194.41.175TLSv1ssl.gstatic.com
4
2012-09-21T07:42:40.459911-0700172.18.3.112.23.130.110TLSv1s-static.ak.facebook.com
5
2012-09-21T07:42:47.097613-0700172.18.3.11173.194.41.185TLSv1googleads.g.doubleclick.net
6
2012-09-21T07:42:40.801600-0700172.18.3.11173.252.101.16TLSv1www.facebook.com
7
2012-09-21T07:42:59.520623-0700172.18.3.11173.194.67.95TLSv1ajax.googleapis.com
8
2012-09-21T07:43:34.176791-0700172.18.3.11173.194.41.163TLSv1sb-ssl.google.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 687
Showing 101-120 of 687 items.
#
TimestampSourceHostnamePortMethodURLStatus
101
2012-09-21T07:41:45.613716-0700172.18.3.11static.bbci.co.uk80GET/frameworks/swfobject/0.1.3/sharedmodules/swfobject-2.js200
102
2012-09-21T07:41:49.858813-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/62965000/jpg/_62965186_baxter.jpg200
103
2012-09-21T07:41:49.871861-0700172.18.3.11newsimg.bbc.co.uk80GET/news/special/2012/newsspec_4095/widget/js/widget.js200
104
2012-09-21T07:41:44.988509-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63015000/jpg/_63015644_62984454.jpg200
105
2012-09-21T07:41:45.518295-0700172.18.3.11news.bbcimg.co.uk80GET/view/3_0_2/cream/hi/shared/img/market-data-up.png200
106
2012-09-21T07:41:49.900410-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63033000/jpg/_63033678_0qc5dm92.jpg200
107
2012-09-21T07:41:49.952148-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/62962000/jpg/_62962077_jex_1515425_de54-1.jpg200
108
2012-09-21T07:41:49.961316-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/49545000/gif/_49545337_tob304x171.gif200
109
2012-09-21T07:41:45.539921-0700172.18.3.11www.bbc.co.uk80GET/js/app/ticker/ticker_initialiser.js?cachebuster=cb134823850546098384200
110
2012-09-21T07:41:49.992035-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/62972000/jpg/_62972523_62971152.jpg200
111
2012-09-21T07:41:45.555128-0700172.18.3.11www.bbc.co.uk80GET/news/10284448/ticker.sjson?jsoncallback=bbc.fmtj.net.json.model.getFeedById(0).callback&client=bbcfmtj&cachebuster=cb1348238505539445200
112
2012-09-21T07:41:44.995976-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63012000/jpg/_63012475_ngahuia.jpg200
113
2012-09-21T07:41:45.026796-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63018000/jpg/_63018999_london_met_uni_afp.jpg200
114
2012-09-21T07:41:50.199326-0700172.18.3.11www.bbc.co.uk80GET/news/special/2012/newsspec_4095/js/jquery.placeholder.js200
115
2012-09-21T07:41:50.207293-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63009000/jpg/_63009359_jex_1514529_de27-1.jpg200
116
2012-09-21T07:41:45.037350-0700172.18.3.11node1.bbcimg.co.uk80GET/glow/glow/1.7.7/widgets/widgets.js200
117
2012-09-21T07:41:50.219327-0700172.18.3.11newsimg.bbc.co.uk80GET/news/special/2012/newsspec_4095/img/search.png200
118
2012-09-21T07:41:54.123780-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/62959000/jpg/_62959824_hacked.jpg200
119
2012-09-21T07:41:45.715077-0700172.18.3.11static.bbc.co.uk80GET/frameworks/barlesque/1.3.2/newnav/img/search_icon.png200
120
2012-09-21T07:41:54.355412-0700172.18.3.11static.bbci.co.uk80GET/modules/sharetools/v1/style/slim.css200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 405
Showing 161-180 of 405 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
161
2012-09-21T07:43:38.102668-07001463600247564879flow172.18.3.11647480.239.254.13880TCPpcapanalyzer
162
2012-09-21T07:43:38.102668-07002027121431617043flow172.18.3.11647780.239.221.4380TCPpcapanalyzer
163
2012-09-21T07:43:38.102668-0700901872211608047flow172.18.3.1152490172.18.1.10053UDPpcapanalyzer
164
2012-09-21T07:43:38.102668-0700620893308581305flow172.18.3.11663980.239.149.4480TCPpcapanalyzer
165
2012-09-21T07:43:38.102668-0700621408697317743flow172.18.3.11644987.249.105.5880TCPpcapanalyzer
166
2012-09-21T07:43:38.102668-07001606785871149356flow172.18.3.1161801172.18.1.10053UDPpcapanalyzer
167
2012-09-21T07:43:38.102668-070058699269040922flow172.18.3.116626212.58.244.8080TCPpcapanalyzer
168
2012-09-21T07:43:38.102668-0700621928388892889flow172.18.3.116460212.58.244.7580TCPpcapanalyzer
169
2012-09-21T07:43:38.102668-0700340481332420894flow172.18.3.11652464.236.124.22980TCPpcapanalyzer
170
2012-09-21T07:43:38.102668-0700763142621311496flow172.18.3.1149369172.18.1.10053UDPpcapanalyzer
171
2012-09-21T07:43:38.102668-07001889175675006049flow172.18.3.116605213.174.142.2980TCPpcapanalyzer
172
2012-09-21T07:43:38.102668-07001326403956875693flow172.18.3.11645680.239.254.2480TCPpcapanalyzer
173
2012-09-21T07:43:38.102668-07001326880701218610flow172.18.3.1152464172.18.1.10053UDPpcapanalyzer
174
2012-09-21T07:43:38.102668-0700905389791076026flow172.18.3.1164110172.18.1.10053UDPpcapanalyzer
175
2012-09-21T07:43:38.102668-07002172787395330868flow172.18.3.11654398.124.224.24380TCPpcapanalyzer
176
2012-09-21T07:43:38.102668-0700624803872458189flow172.18.3.1163166172.18.1.10053UDPpcapanalyzer
177
2012-09-21T07:43:38.102668-0700766061051761553flow172.18.3.1153765172.18.1.10053UDPpcapanalyzer
178
2012-09-21T07:43:38.102668-07001892061890523973flow172.18.3.116557173.252.101.16443TCPpcapanalyzer
179
2012-09-21T07:43:38.102668-07001329605854638704flow172.18.3.11642480.239.217.17180TCPpcapanalyzer
180
2012-09-21T07:43:38.102668-0700907563040781089flow172.18.3.11642580.239.254.3480TCPpcapanalyzer
File 654
Showing 21-40 of 654 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
21
2012-09-21T07:41:44.784015-070080.239.254.24172.18.3.11/media/images/63016000/jpg/_63016864_015817028-1.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 144x81, frames 36384
22
2012-09-21T07:41:40.539980-0700173.194.65.94172.18.3.11/images/nav_logo114.pngPNG image data, 167 x 389, 8-bit/color RGBA, non-interlaced28765
23
2012-09-21T07:41:44.824073-070080.239.217.171172.18.3.11/frameworks/pulsesurvey/0.7.0/style/pulse.cssASCII text1655
24
2012-09-21T07:41:44.829691-070080.239.254.24172.18.3.11/media/images/63006000/jpg/_63006491_mark_simpson_alexis.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 144x81, frames 33835
25
2012-09-21T07:41:44.832049-070080.239.217.171172.18.3.11/frameworks/barlesque/2.10.0/desktop/3.5/img/blocks/dark.pngPNG image data, 84 x 24, 8-bit/color RGBA, non-interlaced1023
26
2012-09-21T07:41:44.631020-070080.239.254.24172.18.3.11/js/core/3_3_1/bbc_fmtj.jsHTML document, ASCII text, with very long lines, with no line terminators3687
27
2012-09-21T07:41:44.635419-070080.239.254.24172.18.3.11/js/common/3_2_1/bbc_fmtj_common.jsASCII text, with very long lines, with no line terminators10211
28
2012-09-21T07:41:44.658278-070080.239.254.24172.18.3.11/js/locationservices/locator/v4_0/locator.jsASCII text, with very long lines, with no line terminators28180
29
2012-09-21T07:41:44.662475-070080.239.254.34172.18.3.11/iplayer/images/episode/b01mw2k0_150_84.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 150x84, frames 310657
30
2012-09-21T07:41:44.591707-070080.239.217.171172.18.3.11/frameworks/pulsesurvey/0.7.0/script/pulse.jsHTML document, ASCII text, with very long lines, with no line terminators3354
31
2012-09-21T07:41:44.872073-070080.239.254.34172.18.3.11/glow/glow/map.1.7.7.jsASCII text, with very long lines2657
32
2012-09-21T07:41:44.671542-070080.239.254.24172.18.3.11/js/app/av/emp/2_0_55/compatibility.jsASCII text6728
33
2012-09-21T07:41:44.672003-070080.239.254.24172.18.3.11/view/3_0_2/cream/hi/shared/layout/index.cssASCII text, with very long lines, with no line terminators642
34
2012-09-21T07:41:44.598825-070080.239.254.24172.18.3.11/view/3_0_2/cream/hi/shared/type.cssASCII text, with very long lines, with CRLF line terminators8963
35
2012-09-21T07:41:44.694044-0700212.58.244.66172.18.3.11/survey/pulse/conf.jsUTF-8 Unicode (with BOM) text7069
36
2012-09-21T07:41:44.703557-070080.239.254.24172.18.3.11/media/images/63038000/jpg/_63038623_bn-144x81.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 144x80, frames 37291
37
2012-09-21T07:41:44.712917-070080.239.254.24172.18.3.11/media/images/63034000/jpg/_63034549_63034035.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 144x81, frames 37945
38
2012-09-21T07:41:44.601796-070080.239.254.24172.18.3.11/view/3_0_2/cream/hi/shared/global.cssUTF-8 Unicode (with BOM) text, with very long lines, with no line terminators21147
39
2012-09-21T07:41:44.632489-070080.239.217.171172.18.3.11/frameworks/requirejs/0.11.1/sharedmodules/require.jsC source, ASCII text, with very long lines, with no line terminators24258
40
2012-09-21T07:41:44.751352-070080.239.254.24172.18.3.11/media/images/63039000/jpg/_63039407_shapoor_zadra_getty.jpgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, xresolution=50, yresolution=58, resolutionunit=2], baseline, precision 8, 144x81, frames 35587

Comments(not set)

Update Download PCAP Delete