pak004_932bdb768b3eeeec3fcd3540acd32aa0.pcap

MD5932bdb768b3eeeec3fcd3540acd32aa0
Submission Date2021-10-04 07:56:18
Tags(not set)
Alert 6
Showing 1-6 of 6 items.
#
TimestampSrc IpDest IpAlert SignatureP
1
2012-09-21T07:42:34.494625-0700173.194.41.188172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
2
2012-09-21T07:42:36.845858-0700173.194.41.188172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
3
2012-09-21T07:42:37.398726-070080.239.254.72172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
4
2012-09-21T07:42:39.445690-0700173.194.41.188172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
5
2012-09-21T07:42:39.570006-0700173.194.41.188172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
6
2012-09-21T07:43:36.151476-070080.239.254.42172.18.3.11ET INFO Observed Interesting Content-Type Inbound (application/x-sh)*
DNS 327
Showing 161-180 of 327 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
161
2012-09-21T07:42:39.428980-0700172.18.1.100172.18.3.11answerapis.google.comA(not set)
162
2012-09-21T07:42:34.410332-0700172.18.3.11172.18.1.100queryweather-news.sky.comA(not set)
163
2012-09-21T07:42:35.209416-0700172.18.3.11172.18.1.100querywww.sky.comA(not set)
164
2012-09-21T07:42:35.209508-0700172.18.3.11172.18.1.100querygo.sky.comA(not set)
165
2012-09-21T07:42:35.283145-0700172.18.1.100172.18.3.11answerwww.sky.comA(not set)
166
2012-09-21T07:42:34.548717-0700172.18.1.100172.18.3.11answerweather-news.sky.comA(not set)
167
2012-09-21T07:42:35.306022-0700172.18.1.100172.18.3.11answergo.sky.comA(not set)
168
2012-09-21T07:42:35.322011-0700172.18.3.11172.18.1.100queryuservideos.sky.comA(not set)
169
2012-09-21T07:42:35.341734-0700172.18.1.100172.18.3.11answeruservideos.sky.comA(not set)
170
2012-09-21T07:42:35.209396-0700172.18.3.11172.18.1.100querywww.facebook.comA(not set)
171
2012-09-21T07:42:35.227144-0700172.18.1.100172.18.3.11answerwww.facebook.comA(not set)
172
2012-09-21T07:42:35.227763-0700172.18.3.11172.18.1.100querygo.microsoft.comA(not set)
173
2012-09-21T07:42:35.245814-0700172.18.1.100172.18.3.11answergo.microsoft.comA(not set)
174
2012-09-21T07:42:35.303057-0700172.18.3.11172.18.1.100queryskynewspanel.comA(not set)
175
2012-09-21T07:42:35.307048-0700172.18.3.11172.18.1.100queryaccessibility.sky.comA(not set)
176
2012-09-21T07:42:35.312258-0700172.18.3.11172.18.1.100queryyourphotos.news.sky.comA(not set)
177
2012-09-21T07:42:35.321165-0700172.18.1.100172.18.3.11answerskynewspanel.comA(not set)
178
2012-09-21T07:42:35.324507-0700172.18.1.100172.18.3.11answeraccessibility.sky.comA(not set)
179
2012-09-21T07:42:35.325397-0700172.18.3.11172.18.1.100querywww.skynewsarabia.comA(not set)
180
2012-09-21T07:42:35.342790-0700172.18.3.11172.18.1.100queryskyliving.sky.comA(not set)
TLS 8
Showing 1-8 of 8 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2012-09-21T07:42:39.608580-0700172.18.3.11173.194.41.168TLSv1plusone.google.com
2
2012-09-21T07:42:39.469797-0700172.18.3.11173.194.41.174TLSv1apis.google.com
3
2012-09-21T07:42:39.679741-0700172.18.3.11173.194.41.175TLSv1ssl.gstatic.com
4
2012-09-21T07:42:40.459911-0700172.18.3.112.23.130.110TLSv1s-static.ak.facebook.com
5
2012-09-21T07:42:47.097613-0700172.18.3.11173.194.41.185TLSv1googleads.g.doubleclick.net
6
2012-09-21T07:42:40.801600-0700172.18.3.11173.252.101.16TLSv1www.facebook.com
7
2012-09-21T07:42:59.520623-0700172.18.3.11173.194.67.95TLSv1ajax.googleapis.com
8
2012-09-21T07:43:34.176791-0700172.18.3.11173.194.41.163TLSv1sb-ssl.google.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 687
Showing 121-140 of 687 items.
#
TimestampSourceHostnamePortMethodURLStatus
121
2012-09-21T07:41:45.192088-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63038000/jpg/_63038944_63038940.jpg200
122
2012-09-21T07:41:45.343096-0700172.18.3.11node1.bbcimg.co.uk80GET/glow/glow/1.7.7/widgets/widgets.css200
123
2012-09-21T07:41:45.755079-0700172.18.3.11news.bbcimg.co.uk80GET/view/3_0_2/cream/hi/shared/img/personalisation-help-icon.gif200
124
2012-09-21T07:41:45.380382-0700172.18.3.11open.live.bbc.co.uk80GET/wurfldemi/useragent.jsonp?callback=define&ua=Mozilla%2F5.0%20(Windows%20NT%206.1%3B%20rv%3A15.0)%20Gecko%2F20100101%20Firefox%2F15.0.1200
125
2012-09-21T07:41:45.755079-0700172.18.3.11emp.bbci.co.uk80GET/emp/releases/worldwide/revisions/749603_749269_749444_6/embed.js?mediaset=journalism-pc200
126
2012-09-21T07:41:45.419584-0700172.18.3.11news.bbcimg.co.uk80GET/view/1_4_35/cream/hi/news/img/news_masthead.gif200
127
2012-09-21T07:41:54.628471-0700172.18.3.11open.bbci.co.uk80GET/buzz/shares?callback=sharetools.counts.receive&url=http%3A%2F%2Fwww.bbc.co.uk%2Fnews%2Ftechnology-19674761&title=BBC%20News%20-%20Microsoft%20releases%20fix%20for%20IE%20bug200
128
2012-09-21T07:41:54.664473-0700172.18.3.11static.bbci.co.uk80GET/modules/sharetools/v1/img/sprite-0.3.2.png200
129
2012-09-21T07:41:45.419729-0700172.18.3.11news.bbcimg.co.uk80GET/view/1_4_35/cream/hi/news/img/nav-divider.png200
130
2012-09-21T07:41:45.437473-0700172.18.3.11static.bbci.co.uk80GET/frameworks/barlesque/2.10.0/desktop/3.5/img/blq-sprite_alpha.png200
131
2012-09-21T07:41:45.458829-0700172.18.3.11news.bbcimg.co.uk80GET/js/net/json/jsonloader/2_13_1/jsonloader.js200
132
2012-09-21T07:42:01.789711-0700172.18.3.11www.google.co.uk80GET/200
133
2012-09-21T07:42:01.999716-0700172.18.3.11www.google.co.uk80GET/csi?v=3&s=webhp&action=&e=17259,18168,28290,28663,37102,39523,39977,4000116,4000354,4000473,4000519,4000545,4000553,4000833,4000841,4000949,4000974,4001007&ei=H3tcUJzaJYWf0QW184CYBw&imc=1&imn=1&imp=0&rt=xjsls.77,prt.81,xjses.129,xjsee.173,xjs.175,ol.177,iml.81,wsrt.95,cst.0,dnst.0,rqst.153,rspt.84204
134
2012-09-21T07:41:49.835585-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63027000/jpg/_63027505_016036297-1.jpg200
135
2012-09-21T07:41:49.865359-0700172.18.3.11emp.bbci.co.uk80GET/emp/bump?emp=worldwide&enableClear=1301
136
2012-09-21T07:41:49.878108-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/62942000/jpg/_62942737_114158299.jpg200
137
2012-09-21T07:42:05.489948-0700172.18.3.11www.google.co.uk80GET/s?hl=en&sugexp=les%3B&gs_nf=1&cp=1&gs_id=5&xhr=t&q=T&pf=p&output=search&sclient=psy-ab&oq=&gs_l=&pbx=1&bav=on.2,or.r_gc.r_pw.r_qf.&fp=ff301ef4d48490c5&biw=1680&bih=920&tch=1&ech=1&psi=H3tcUJzaJYWf0QW184CYBw.1348238521751.1200
138
2012-09-21T07:41:49.919419-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/62998000/jpg/_62998791_3yz8e6jh.jpg200
139
2012-09-21T07:41:49.952254-0700172.18.3.11www.bbc.co.uk80GET/news/technology/200
140
2012-09-21T07:41:49.968528-0700172.18.3.11news.bbcimg.co.uk80GET/media/images/63031000/jpg/_63031637_robot_snake.jpg200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 405
Showing 101-120 of 405 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
101
2012-09-21T07:43:38.102668-0700317148924455330flow172.18.3.1162086172.18.1.10053UDPpcapanalyzer
102
2012-09-21T07:43:38.102668-0700317505404535623flow172.18.3.1160129172.18.1.10053UDPpcapanalyzer
103
2012-09-21T07:43:38.102668-07001022071167481237flow172.18.3.11654180.239.254.7280TCPpcapanalyzer
104
2012-09-21T07:43:38.102668-0700461081870133518flow172.18.3.116624212.58.244.8080TCPpcapanalyzer
105
2012-09-21T07:43:38.102668-0700603157237283739flow172.18.3.1159271172.18.1.10053UDPpcapanalyzer
106
2012-09-21T07:43:38.102668-07001447899994763112flow172.18.3.1159719172.18.1.10053UDPpcapanalyzer
107
2012-09-21T07:43:38.102668-07001729585423898531flow172.18.3.1162216172.18.1.10053UDPpcapanalyzer
108
2012-09-21T07:43:38.102668-07001729858155126471flow172.18.3.11647980.239.221.4380TCPpcapanalyzer
109
2012-09-21T07:43:38.102668-0700181780146840091flow172.18.3.116614184.169.78.3380TCPpcapanalyzer
110
2012-09-21T07:43:38.102668-0700182514582651992flow172.18.3.11651280.239.254.7280TCPpcapanalyzer
111
2012-09-21T07:43:38.102668-07001308738759375622flow172.18.3.1153282172.18.1.10053UDPpcapanalyzer
112
2012-09-21T07:43:38.102668-07001590314666852096flow172.18.3.1157711172.18.1.10053UDPpcapanalyzer
113
2012-09-21T07:43:38.102668-07002153449301487112flow172.18.3.11641980.239.217.17180TCPpcapanalyzer
114
2012-09-21T07:43:38.102668-07001168439354346679flow172.18.3.11643980.239.254.3480TCPpcapanalyzer
115
2012-09-21T07:43:38.102668-0700605697710469140flow172.18.3.1165312.23.143.14480TCPpcapanalyzer
116
2012-09-21T07:43:38.102668-07001168705645550523flow172.18.3.1162912172.18.1.10053UDPpcapanalyzer
117
2012-09-21T07:43:38.102668-07001591051254964750flow172.18.3.11652598.124.224.24380TCPpcapanalyzer
118
2012-09-21T07:43:38.102668-0700183684964815672flow172.18.3.11662980.239.178.13980TCPpcapanalyzer
119
2012-09-21T07:43:38.102668-07002154568140140281flow172.18.3.116409173.194.65.9480TCPpcapanalyzer
120
2012-09-21T07:43:38.102668-0700606816546231684flow172.18.3.1151485172.18.1.10053UDPpcapanalyzer
File 654
Showing 141-160 of 654 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
141
2012-09-21T07:42:05.644569-0700173.194.65.94172.18.3.11/sASCII text, with very long lines, with no line terminators1161
142
2012-09-21T07:42:05.651815-0700173.194.41.175172.18.3.11/gb/images/j_e6a6aca6.pngPNG image data, 381 x 45, 8-bit/color RGBA, non-interlaced15130
143
2012-09-21T07:41:45.494531-070080.239.254.24172.18.3.11/view/3_0_2/cream/hi/shared/img/gvl3-icons-0-2.pngPNG image data, 1344 x 48, 8-bit/color RGBA, non-interlaced16784
144
2012-09-21T07:41:49.979235-0700212.58.244.130172.18.3.11/o.gifGIF image data, version 89a, 1 x 143
145
2012-09-21T07:42:05.831689-0700173.194.65.94172.18.3.11/sASCII text, with very long lines, with no line terminators1167
146
2012-09-21T07:41:50.062268-070080.239.254.10172.18.3.11/modules/comments/getcount/ASCII text, with very long lines, with no line terminators501
147
2012-09-21T07:42:05.938968-0700173.194.65.94172.18.3.11/sASCII text, with very long lines, with no line terminators1185
148
2012-09-21T07:41:45.498271-070080.239.254.24172.18.3.11/view/3_0_2/cream/hi/shared/img/livestats-sprite-ko.pngPNG image data, 650 x 96, 8-bit/color RGBA, non-interlaced4729
149
2012-09-21T07:41:50.101114-070080.239.254.42172.18.3.11/emp/worldwide/embed.jsHTML document, ASCII text317
150
2012-09-21T07:42:06.076947-0700173.194.65.94172.18.3.11/sASCII text, with very long lines, with no line terminators1206
151
2012-09-21T07:41:50.192329-0700212.58.244.66172.18.3.11/news/special/shared/js/istats/v2/istats.jsASCII text, with CRLF line terminators539
152
2012-09-21T07:42:06.146127-0700173.194.65.94172.18.3.11/sASCII text, with very long lines, with no line terminators1170
153
2012-09-21T07:41:45.500514-070080.239.254.24172.18.3.11/view/3_0_2/cream/hi/shared/img/market-data-down.pngPNG image data, 9 x 7, 8-bit/color RGBA, non-interlaced180
154
2012-09-21T07:41:45.535215-070080.239.254.24172.18.3.11/view/1_4_35/cream/hi/news/img/services.gifGIF image data, version 89a, 554 x 351128
155
2012-09-21T07:41:54.045062-0700212.58.244.66172.18.3.11/news/technology-19674761HTML document, ASCII text, with CRLF, LF line terminators61765
156
2012-09-21T07:42:06.659693-0700173.194.65.94172.18.3.11/sASCII text, with very long lines, with no line terminators122597
157
2012-09-21T07:41:45.538245-070080.239.254.24172.18.3.11/view/3_0_2/cream/hi/shared/img/carousel-prev-next-3.pngPNG image data, 96 x 181, 8-bit/color RGBA, non-interlaced1594
158
2012-09-21T07:41:45.620655-0700212.58.244.80172.18.3.11/wurfldemi/network.jsonpASCII text, with no line terminators73
159
2012-09-21T07:42:06.706940-0700173.194.65.94172.18.3.11/sASCII text, with very long lines, with no line terminators1286
160
2012-09-21T07:41:54.080921-070080.239.254.24172.18.3.11/view/3_0_2/cream/hi/shared/story.cssASCII text, with very long lines, with no line terminators24536

Comments(not set)

Update Download PCAP Delete