capture-17.pcap

MD59101e2daf5742db46b4f4f458786d38d
Submission Date2018-10-03 06:17:59
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 114
Showing 1-20 of 114 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2018-10-03T06:01:06.047272-070092.208.144.1588.8.4.4querywww.google.comA(not set)
2
2018-10-03T06:01:06.096567-07008.8.4.492.208.144.158answerwww.google.comA(not set)
3
2018-10-03T06:01:06.344343-070092.208.144.158176.95.16.251queryimpression-europe.liftoff.ioA(not set)
4
2018-10-03T06:01:06.369885-0700176.95.16.25192.208.144.158answerimpression-europe.liftoff.ioA(not set)
5
2018-10-03T06:01:06.029315-070092.208.144.1588.8.8.8querywww.google.comA(not set)
6
2018-10-03T06:01:06.066020-07008.8.8.892.208.144.158answerwww.google.comA(not set)
7
2018-10-03T06:01:17.822315-070092.208.144.158176.95.16.251queryclients3.google.comAAAA(not set)
8
2018-10-03T06:01:17.849028-0700176.95.16.25192.208.144.158answerclients3.google.comAAAA(not set)
9
2018-10-03T06:01:18.074276-070092.208.144.158176.95.16.251queryclients3.google.comA(not set)
10
2018-10-03T06:01:18.105649-0700176.95.16.25192.208.144.158answerclients3.google.comA(not set)
11
2018-10-03T06:01:19.776276-070092.208.144.158176.95.16.251query2.android.pool.ntp.orgA(not set)
12
2018-10-03T06:01:19.803298-0700176.95.16.25192.208.144.158answer2.android.pool.ntp.orgA(not set)
13
2018-10-03T06:01:19.401329-070092.208.144.158176.95.16.251query2.android.pool.ntp.orgAAAA(not set)
14
2018-10-03T06:01:19.428444-0700176.95.16.25192.208.144.158answer2.android.pool.ntp.orgAAAA(not set)
15
2018-10-03T06:01:19.337067-070092.208.144.158176.95.16.251queryg.whatsapp.netAAAA(not set)
16
2018-10-03T06:01:19.363382-0700176.95.16.25192.208.144.158answerg.whatsapp.netAAAA(not set)
17
2018-10-03T06:01:19.373320-070092.208.144.158176.95.16.251queryg.whatsapp.netA(not set)
18
2018-10-03T06:01:19.399858-0700176.95.16.25192.208.144.158answerg.whatsapp.netA(not set)
19
2018-10-03T06:01:21.407356-070092.208.144.158176.95.16.251querymedia-frx5-1.cdn.whatsapp.netAAAA(not set)
20
2018-10-03T06:01:21.434569-0700176.95.16.25192.208.144.158answermedia-frx5-1.cdn.whatsapp.netAAAA(not set)
TLS 45
Showing 1-20 of 45 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2018-10-03T06:00:55.105276-070092.208.144.158212.222.128.77TLS 1.2www.busplaner.de
2
2018-10-03T06:01:04.111684-070092.208.144.158212.222.128.77TLS 1.2www.busplaner.de
3
2018-10-03T06:01:07.726247-070092.208.144.15852.57.128.25TLS 1.2impression-europe.liftoff.io
4
2018-10-03T06:01:10.130595-070092.208.144.15852.57.128.25TLS 1.2impression-europe.liftoff.io
5
2018-10-03T06:01:15.239398-070092.208.144.158110.74.183.44TLS 1.2pcap.honeynet.org.my
6
2018-10-03T06:01:24.049922-070092.208.144.158185.60.216.53TLS 1.2media-frx5-1.cdn.whatsapp.net
7
2018-10-03T06:01:29.646305-070092.208.144.15852.48.82.18TLS 1.2api.samsungcloud.com
8
2018-10-03T06:01:29.617270-070092.208.144.15852.48.82.18TLS 1.2api.samsungcloud.com
9
2018-10-03T06:01:29.648238-070092.208.144.15852.48.82.18TLS 1.2api.samsungcloud.com
10
2018-10-03T06:01:31.776349-070092.208.144.15852.43.196.49TLS 1.2cmdts.ksmobile.com
11
2018-10-03T06:01:31.487833-070092.208.144.15852.48.82.18TLS 1.2api.samsungcloud.com
12
2018-10-03T06:01:31.648166-070092.208.144.15852.48.82.18TLS 1.2api.samsungcloud.com
13
2018-10-03T06:01:33.050108-070092.208.144.15852.48.82.18TLS 1.2api.samsungcloud.com
14
2018-10-03T06:01:39.549434-070092.208.144.15852.48.82.18TLS 1.2api.samsungcloud.com
15
2018-10-03T06:01:39.585499-070092.208.144.15852.48.82.18TLS 1.2api.samsungcloud.com
16
2018-10-03T06:01:40.916811-070092.208.144.15852.48.82.18TLS 1.2api.samsungcloud.com
17
2018-10-03T06:01:41.061686-070092.208.144.15852.48.82.18TLS 1.2api.samsungcloud.com
18
2018-10-03T06:01:41.024492-070092.208.144.15852.48.82.18TLS 1.2api.samsungcloud.com
19
2018-10-03T06:01:41.762380-070092.208.144.15817.248.148.45TLS 1.2p17-keyvalueservice.icloud.com
20
2018-10-03T06:01:41.932572-070092.208.144.15817.248.148.107TLS 1.2gateway.icloud.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 2
Showing 1-2 of 2 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2018-10-03T06:01:19.036310-070092.208.144.158clients3.google.com80GET/generate_204204
2
2018-10-03T06:01:19.341846-070092.208.144.158clients3.google.com80GET/generate_204204
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 181
Showing 1-20 of 181 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2018-10-03T06:02:36.664376-07001608966647564692flow92.208.144.1584622452.114.76.35443TCPpcapanalyzer
2
2018-10-03T06:02:36.664376-07001549425515967910flow103.235.47.748092.208.144.15835972TCPpcapanalyzer
3
2018-10-03T06:02:36.664376-07002015755885173864flow23.21.49.19744392.208.144.15837212TCPpcapanalyzer
4
2018-10-03T06:02:36.664376-07001709872609485711flow103.235.47.7444392.208.144.15841195TCPpcapanalyzer
5
2018-10-03T06:02:36.664376-07001743192965713444flow13.107.3.12844392.208.144.15836378TCPpcapanalyzer
6
2018-10-03T06:02:36.664376-07001095894149583638flow103.235.47.748092.208.144.15855852TCPpcapanalyzer
7
2018-10-03T06:02:36.664376-07001788148388191973flow212.222.128.7744392.208.144.15864572TCPpcapanalyzer
8
2018-10-03T06:02:36.664376-0700820114299862695flow92.208.144.158613315.72.255.55222TCPpcapanalyzer
9
2018-10-03T06:02:36.664376-0700330921820020931flow92.123.40.15944392.208.144.15853951TCPpcapanalyzer
10
2018-10-03T06:02:36.664376-0700329676279799477flow92.208.144.15843931157.240.20.15443TCPpcapanalyzer
11
2018-10-03T06:02:36.664376-07001062350455815625flow52.86.81.14144392.208.144.15839074TCPpcapanalyzer
12
2018-10-03T06:02:36.664376-0700523332060289917flow223.87.73.2245674092.208.144.15823TCPpcapanalyzer
13
2018-10-03T06:02:36.664376-07001830028615759216flow92.208.144.15856838216.58.207.138443TCPpcapanalyzer
14
2018-10-03T06:02:36.664376-0700567136432163134flow92.208.144.15852642172.217.21.98443TCPpcapanalyzer
15
2018-10-03T06:02:36.664376-07001557379796741494flow92.208.144.15842658172.217.21.98443TCPpcapanalyzer
16
2018-10-03T06:02:36.664376-070011526577509491flow92.208.144.1583535292.123.42.12443TCPpcapanalyzer
17
2018-10-03T06:02:36.664376-0700585999928276746flow52.57.128.2544392.208.144.15847537TCPpcapanalyzer
18
2018-10-03T06:02:36.664376-0700732282219668703flow92.208.144.1585930874.125.23.120443TCPpcapanalyzer
19
2018-10-03T06:02:36.664376-0700732780435747109flow92.208.144.1583991154.165.173.4443TCPpcapanalyzer
20
2018-10-03T06:02:36.664376-070040801074532339flow92.208.144.1583535092.123.42.12443TCPpcapanalyzer
File 0
#
TimestampSourceDestinationFile NameFile MagicFile Size
No results found.

Comments(not set)

Update Download PCAP Delete