linear_pcap_log_aug21.pcap

MD5ce816dbde5b7c9da467f973eaa61a120
Submission Date2019-08-21 21:41:44
Tags(not set)
Alert 1
Showing 1-1 of 1 item.
#
TimestampSrc IpDest IpAlert SignatureP
1
2019-08-21T21:36:42.376819-0700192.168.0.10369.74.69.105ET POLICY Outgoing Basic Auth Base64 HTTP Password detected unencrypted*
DNS 35
Showing 1-20 of 35 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2019-08-21T21:37:28.941554-0700192.168.0.103192.168.0.1queryfonts.gstatic.comA(not set)
2
2019-08-21T21:37:28.949036-0700192.168.0.1192.168.0.103answerfonts.gstatic.com(not set)(not set)
3
2019-08-21T21:37:44.338633-0700192.168.0.103192.168.0.1querymdc.ott.eng.alticeusa.netAAAA(not set)
4
2019-08-21T21:37:44.730071-0700192.168.0.1192.168.0.103answermdc.ott.eng.alticeusa.net(not set)(not set)
5
2019-08-21T21:37:58.695599-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netA(not set)
6
2019-08-21T21:38:03.699754-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netA(not set)
7
2019-08-21T21:38:14.107333-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netA(not set)
8
2019-08-21T21:38:19.110797-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netA(not set)
9
2019-08-21T21:38:19.113151-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netAAAA(not set)
10
2019-08-21T21:38:24.116943-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netA(not set)
11
2019-08-21T21:38:24.948799-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netAAAA(not set)
12
2019-08-21T21:38:29.119968-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netA(not set)
13
2019-08-21T21:38:29.950319-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netAAAA(not set)
14
2019-08-21T21:38:54.975061-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netA(not set)
15
2019-08-21T21:38:59.979745-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netA(not set)
16
2019-08-21T21:37:58.695507-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netAAAA(not set)
17
2019-08-21T21:37:58.995431-0700192.168.0.1192.168.0.103answerdev.live.ott.optimum.net(not set)(not set)
18
2019-08-21T21:37:58.996555-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netAAAA(not set)
19
2019-08-21T21:38:08.705893-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netAAAA(not set)
20
2019-08-21T21:38:08.705991-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netA(not set)
TLS 29
Showing 1-20 of 29 items.
#
TimestampSource IPDestination IPTLS VersionIssuer
1
2019-08-21T21:36:46.266006-0700192.168.0.103172.82.241.227TLS 1.2C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA
2
2019-08-21T21:36:50.029670-0700192.168.0.10369.121.105.194TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
3
2019-08-21T21:36:52.753952-0700192.168.0.10369.121.105.193TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
4
2019-08-21T21:37:48.013227-0700192.168.0.10369.118.14.0TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
5
2019-08-21T21:38:24.389804-0700192.168.0.10369.118.14.0TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
6
2019-08-21T21:38:38.398356-0700192.168.0.10369.118.14.0TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
7
2019-08-21T21:37:29.022722-0700192.168.0.103172.217.26.195TLS 1.2C=US, O=Google Trust Services, CN=Google Internet Authority G3
8
2019-08-21T21:37:46.588154-0700192.168.0.10369.118.14.0TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
9
2019-08-21T21:38:03.410178-0700192.168.0.10369.118.14.0TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
10
2019-08-21T21:38:03.415711-0700192.168.0.10369.118.14.0TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
11
2019-08-21T21:38:12.895320-0700192.168.0.10369.118.14.0TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
12
2019-08-21T21:38:17.401920-0700192.168.0.10369.118.14.0TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
13
2019-08-21T21:38:19.757827-0700192.168.0.10369.118.14.0TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
14
2019-08-21T21:38:33.796422-0700192.168.0.10369.118.14.0TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
15
2019-08-21T21:38:34.716293-0700192.168.0.10369.118.14.0TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
16
2019-08-21T21:38:40.947500-0700192.168.0.10369.118.14.0TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
17
2019-08-21T21:38:41.961680-0700192.168.0.10354.225.73.101TLS 1.2C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Domain Validation Secure Server CA
18
2019-08-21T21:37:48.013490-0700192.168.0.10369.118.14.0TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
19
2019-08-21T21:37:56.417199-0700192.168.0.10369.118.14.0TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
20
2019-08-21T21:37:56.417483-0700192.168.0.10369.118.14.0TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 116
Showing 1-20 of 116 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2019-08-21T21:36:45.924053-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/clientConfigSvc/getConfig200
2
2019-08-21T21:36:45.924427-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/notificationSvc/reminder200
3
2019-08-21T21:36:43.397472-0700192.168.0.103dev.mobile.iptv.optimum.net80POST/api/registerSvc/201
4
2019-08-21T21:36:46.447278-0700192.168.0.103dev.mobile.iptv.optimum.net80POST/api/notificationSvc/device200
5
2019-08-21T21:36:43.909092-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/ipCheckSvc/ipcheck200
6
2019-08-21T21:36:46.928698-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/dvrSvc/home/(CIDX)/recordingList?lineupId=504-6B70&inProgress=true&future=true&pageSize=0&past=true&expandFolders=true&sortAlpha=false&page=1&folderized=false200
7
2019-08-21T21:36:44.422269-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/accountSvc200
8
2019-08-21T21:36:47.643263-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/authChSvc/v2/authorizedChannels200
9
2019-08-21T21:36:50.185798-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/settingsSvc/settings?username=laboxtest15200
10
2019-08-21T21:36:45.855065-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/guideSvc/channel/504-6B70/list200
11
2019-08-21T21:36:42.377350-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/clientConfigSvc/getConfig200
12
2019-08-21T21:36:50.796523-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/vodSvc/vodclub/myod/mycontinuewatch200
13
2019-08-21T21:36:50.802705-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/settingsSvc/settings?username=laboxtest15200
14
2019-08-21T21:36:46.436009-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/clientConfigSvc/getMessages200
15
2019-08-21T21:36:46.866054-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/settingsSvc/settings?username=laboxtest15200
16
2019-08-21T21:36:46.818283-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/logosSvc/avatars/smartphone/3x200
17
2019-08-21T21:36:50.766959-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/vodSvc/vodclub/myod/myactiverentals200
18
2019-08-21T21:36:50.160632-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/settingsSvc/settings?username=laboxtest15200
19
2019-08-21T21:36:50.813140-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/vodSvc/vodclub/myod/myfavs200
20
2019-08-21T21:36:51.000564-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/ipCheckSvc/ipcheck200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 114
Showing 1-20 of 114 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2019-08-21T21:39:02.044884-07001970559384984787flow192.168.0.10357577192.168.0.153UDPpcapanalyzer
2
2019-08-21T21:39:02.044884-07002111601819968225flow192.168.0.10752693239.255.255.2501900UDPpcapanalyzer
3
2019-08-21T21:39:02.044884-0700706267043262063flow192.168.0.1037797192.168.0.153UDPpcapanalyzer
4
2019-08-21T21:39:02.044884-07001131664227017061flowfe80:0000:0000:0000:dd03:e264:e528:6242546ff02:0000:0000:0000:0000:0000:0001:0002547UDPpcapanalyzer
5
2019-08-21T21:39:02.044884-0700146568373987130flow192.168.0.1035346369.74.69.10580TCPpcapanalyzer
6
2019-08-21T21:39:02.044884-07001414754111044095flow192.168.0.10349405192.168.0.153UDPpcapanalyzer
7
2019-08-21T21:39:02.044884-0700289193501955149flow192.168.0.10068255.255.255.25567UDPpcapanalyzer
8
2019-08-21T21:39:02.044884-07008918974700252flow192.168.0.10350070192.168.0.153UDPpcapanalyzer
9
2019-08-21T21:39:02.044884-07001416480682140879flow192.168.0.1045353224.0.0.2515353UDPpcapanalyzer
10
2019-08-21T21:39:02.044884-07002120900420485000flow23.23.157.227443192.168.0.10345571TCPpcapanalyzer
11
2019-08-21T21:39:02.044884-0700996690581032192flow192.168.0.10352775172.217.26.195443TCPpcapanalyzer
12
2019-08-21T21:39:02.044884-07001418935257043919flow192.168.0.10168255.255.255.25567UDPpcapanalyzer
13
2019-08-21T21:39:02.044884-0700575465959212653flow192.168.0.1035846069.74.69.10580TCPpcapanalyzer
14
2019-08-21T21:39:02.044884-0700859547982531881flow192.168.0.1033528469.118.14.0443TCPpcapanalyzer
15
2019-08-21T21:39:02.044884-07001705160466530183flow192.168.0.1035611169.121.105.193443TCPpcapanalyzer
16
2019-08-21T21:39:02.044884-0700157542023027565flow192.168.0.1035699454.225.73.101443TCPpcapanalyzer
17
2019-08-21T21:39:02.044884-0700721481964626757flow192.168.0.10346743192.168.0.153UDPpcapanalyzer
18
2019-08-21T21:39:02.044884-07001568997121967398flow192.168.0.1033527969.118.14.0443TCPpcapanalyzer
19
2019-08-21T21:39:02.044884-07001006163129428992flow192.168.0.1033686769.74.69.10580TCPpcapanalyzer
20
2019-08-21T21:39:02.044884-0700726249378970175flow192.168.0.10339715192.168.0.153UDPpcapanalyzer
File 118
Showing 1-20 of 118 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2019-08-21T21:36:45.924053-070069.74.69.105192.168.0.103/api/clientConfigSvc/getConfigASCII text, with very long lines, with no line terminators10914
2
2019-08-21T21:36:43.394257-0700192.168.0.10369.74.69.105/api/registerSvc/ASCII text, with no line terminators219
3
2019-08-21T21:36:45.924427-070069.74.69.105192.168.0.103/api/notificationSvc/reminderASCII text, with no line terminators2
4
2019-08-21T21:36:46.446591-0700192.168.0.10369.74.69.105/api/notificationSvc/deviceASCII text, with no line terminators176
5
2019-08-21T21:36:43.397472-070069.74.69.105192.168.0.103/api/registerSvc/ASCII text, with no line terminators233
6
2019-08-21T21:36:46.447278-070069.74.69.105192.168.0.103/api/notificationSvc/deviceASCII text, with very long lines, with no line terminators374
7
2019-08-21T21:36:43.909092-070069.74.69.105192.168.0.103/api/ipCheckSvc/ipcheckASCII text, with no line terminators48
8
2019-08-21T21:36:46.928698-070069.74.69.105192.168.0.103/api/dvrSvc/home/(CIDX)/recordingListASCII text, with very long lines, with no line terminators9677
9
2019-08-21T21:36:44.422269-070069.74.69.105192.168.0.103/api/accountSvcASCII text, with very long lines, with no line terminators452
10
2019-08-21T21:36:47.643263-070069.74.69.105192.168.0.103/api/authChSvc/v2/authorizedChannelsASCII text, with very long lines, with no line terminators74575
11
2019-08-21T21:36:50.185798-070069.74.69.105192.168.0.103/api/settingsSvc/settingsASCII text, with no line terminators282
12
2019-08-21T21:36:45.855065-070069.74.69.105192.168.0.103/api/guideSvc/channel/504-6B70/listUTF-8 Unicode text, with very long lines, with no line terminators112344
13
2019-08-21T21:36:42.377350-070069.74.69.105192.168.0.103/api/clientConfigSvc/getConfigASCII text, with very long lines, with no line terminators6394
14
2019-08-21T21:36:50.796523-070069.74.69.105192.168.0.103/api/vodSvc/vodclub/myod/mycontinuewatchASCII text, with very long lines, with no line terminators1993
15
2019-08-21T21:36:46.436009-070069.74.69.105192.168.0.103/api/clientConfigSvc/getMessagesASCII text, with very long lines, with no line terminators13412
16
2019-08-21T21:36:46.818283-070069.74.69.105192.168.0.103avatars.tar.gzgzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)73722
17
2019-08-21T21:36:46.866054-070069.74.69.105192.168.0.103/api/settingsSvc/settingsASCII text, with no line terminators282
18
2019-08-21T21:36:50.802705-070069.74.69.105192.168.0.103/api/settingsSvc/settingsASCII text, with no line terminators282
19
2019-08-21T21:36:50.766959-070069.74.69.105192.168.0.103/api/vodSvc/vodclub/myod/myactiverentalsASCII text, with no line terminators171
20
2019-08-21T21:36:50.160632-070069.74.69.105192.168.0.103/api/settingsSvc/settingsASCII text, with no line terminators282

Comments(not set)

Update Download PCAP Delete