linear_pcap_log_aug21.pcap

MD5ce816dbde5b7c9da467f973eaa61a120
Submission Date2019-08-21 21:41:44
Tags(not set)
Alert 2
Showing 1-2 of 2 items.
#
TimestampSrc IpDest IpAlert SignatureP
1
2019-08-21T21:36:42.376819-0700192.168.0.10369.74.69.105ET POLICY Outgoing Basic Auth Base64 HTTP Password detected unencrypted*
2
2019-08-21T21:36:42.376819-0700192.168.0.10369.74.69.105ET POLICY Outgoing Basic Auth Base64 HTTP Password detected unencrypted*
DNS 70
Showing 1-20 of 70 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2019-08-21T21:37:44.730495-0700192.168.0.103192.168.0.1querymdc.ott.eng.alticeusa.netA(not set)
2
2019-08-21T21:37:45.140359-0700192.168.0.1192.168.0.103answermdc.ott.eng.alticeusa.netA(not set)
3
2019-08-21T21:38:08.705893-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netAAAA(not set)
4
2019-08-21T21:38:08.705991-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netA(not set)
5
2019-08-21T21:38:09.103164-0700192.168.0.1192.168.0.103answerdev.live.ott.optimum.netAAAA(not set)
6
2019-08-21T21:38:09.104229-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netAAAA(not set)
7
2019-08-21T21:38:13.710382-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netA(not set)
8
2019-08-21T21:38:19.113151-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netAAAA(not set)
9
2019-08-21T21:38:24.948799-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netAAAA(not set)
10
2019-08-21T21:38:29.950319-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netAAAA(not set)
11
2019-08-21T21:38:41.367324-0700192.168.0.103192.168.0.1querye.crashlytics.comA(not set)
12
2019-08-21T21:38:41.375719-0700192.168.0.1192.168.0.103answere.crashlytics.comA(not set)
13
2019-08-21T21:38:44.965590-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netAAAA(not set)
14
2019-08-21T21:38:49.969784-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netAAAA(not set)
15
2019-08-21T21:37:58.695507-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netAAAA(not set)
16
2019-08-21T21:37:58.995431-0700192.168.0.1192.168.0.103answerdev.live.ott.optimum.netAAAA(not set)
17
2019-08-21T21:37:58.996555-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netAAAA(not set)
18
2019-08-21T21:38:14.107333-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netA(not set)
19
2019-08-21T21:38:19.110797-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netA(not set)
20
2019-08-21T21:38:34.955531-0700192.168.0.103192.168.0.1querydev.live.ott.optimum.netA(not set)
TLS 58
Showing 1-20 of 58 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2019-08-21T21:36:46.266006-0700192.168.0.103172.82.241.227TLS 1.2optimumclassifieds.sc.omtrdc.net
2
2019-08-21T21:36:50.029670-0700192.168.0.10369.121.105.194TLS 1.2nagrasdp.wb4.ott.eng.cv.net
3
2019-08-21T21:36:52.753952-0700192.168.0.10369.121.105.193TLS 1.2nagraclm.wb4.ott.eng.cv.net
4
2019-08-21T21:37:29.022722-0700192.168.0.103172.217.26.195TLS 1.2fonts.gstatic.com
5
2019-08-21T21:37:46.588154-0700192.168.0.10369.118.14.0TLS 1.2mdc.ott.eng.alticeusa.net
6
2019-08-21T21:38:03.410178-0700192.168.0.10369.118.14.0TLS 1.2mdc.ott.eng.alticeusa.net
7
2019-08-21T21:38:03.415711-0700192.168.0.10369.118.14.0TLS 1.2mdc.ott.eng.alticeusa.net
8
2019-08-21T21:38:04.341610-0700192.168.0.10369.118.14.0TLS 1.2mdc.ott.eng.alticeusa.net
9
2019-08-21T21:38:12.895320-0700192.168.0.10369.118.14.0TLS 1.2mdc.ott.eng.alticeusa.net
10
2019-08-21T21:38:26.920309-0700192.168.0.10369.118.14.0TLS 1.2mdc.ott.eng.alticeusa.net
11
2019-08-21T21:38:38.398356-0700192.168.0.10369.118.14.0TLS 1.2mdc.ott.eng.alticeusa.net
12
2019-08-21T21:38:43.825196-0700192.168.0.10369.118.14.0TLS 1.2mdc.ott.eng.alticeusa.net
13
2019-08-21T21:37:48.013227-0700192.168.0.10369.118.14.0TLS 1.2mdc.ott.eng.alticeusa.net
14
2019-08-21T21:38:47.711567-0700192.168.0.10369.118.14.0TLS 1.2mdc.ott.eng.alticeusa.net
15
2019-08-21T21:38:52.323454-0700192.168.0.10369.118.14.0TLS 1.2mdc.ott.eng.alticeusa.net
16
2019-08-21T21:38:10.440068-0700192.168.0.10369.118.14.0TLS 1.2mdc.ott.eng.alticeusa.net
17
2019-08-21T21:38:17.401920-0700192.168.0.10369.118.14.0TLS 1.2mdc.ott.eng.alticeusa.net
18
2019-08-21T21:38:19.757827-0700192.168.0.10369.118.14.0TLS 1.2mdc.ott.eng.alticeusa.net
19
2019-08-21T21:38:24.389804-0700192.168.0.10369.118.14.0TLS 1.2mdc.ott.eng.alticeusa.net
20
2019-08-21T21:38:33.796422-0700192.168.0.10369.118.14.0TLS 1.2mdc.ott.eng.alticeusa.net
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 232
Showing 1-20 of 232 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2019-08-21T21:36:42.377350-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/clientConfigSvc/getConfig200
2
2019-08-21T21:36:43.397472-0700192.168.0.103dev.mobile.iptv.optimum.net80POST/api/registerSvc/201
3
2019-08-21T21:36:45.924427-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/notificationSvc/reminder200
4
2019-08-21T21:36:43.909092-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/ipCheckSvc/ipcheck200
5
2019-08-21T21:36:50.760187-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/dvrSvc/home/(CIDX)/recordingList?lineupId=504-6B70&inProgress=true&future=false&pageSize=0&past=true&expandFolders=true&sortAlpha=false&page=1&folderized=false200
6
2019-08-21T21:36:44.422269-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/accountSvc200
7
2019-08-21T21:36:50.796523-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/vodSvc/vodclub/myod/mycontinuewatch200
8
2019-08-21T21:36:46.447278-0700192.168.0.103dev.mobile.iptv.optimum.net80POST/api/notificationSvc/device200
9
2019-08-21T21:36:50.823582-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/dvrSvc/home/(CIDX)/seriesList?lineupId=504-6B70200
10
2019-08-21T21:36:56.886823-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/settingsSvc/settings?username=laboxtest15200
11
2019-08-21T21:36:57.582258-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/ipCheckSvc/ipcheck200
12
2019-08-21T21:36:46.818283-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/logosSvc/avatars/smartphone/3x200
13
2019-08-21T21:36:45.855065-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/guideSvc/channel/504-6B70/list200
14
2019-08-21T21:36:46.928698-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/dvrSvc/home/(CIDX)/recordingList?lineupId=504-6B70&inProgress=true&future=true&pageSize=0&past=true&expandFolders=true&sortAlpha=false&page=1&folderized=false200
15
2019-08-21T21:36:45.924053-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/clientConfigSvc/getConfig200
16
2019-08-21T21:36:50.185798-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/settingsSvc/settings?username=laboxtest15200
17
2019-08-21T21:36:59.756155-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/guideSvc/program/104234924/image?width=314&height=176&categoryPrecedence=Banner-L1T,Banner-L1,Banner,Iconic-SN,Iconic-SE,Staple200
18
2019-08-21T21:36:46.436009-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/clientConfigSvc/getMessages200
19
2019-08-21T21:36:59.763771-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/guideSvc/program/97330953/image?width=314&height=176&categoryPrecedence=Banner-L1T,Banner-L1,Banner,Iconic-SN,Iconic-SE,Staple200
20
2019-08-21T21:36:46.866054-0700192.168.0.103dev.mobile.iptv.optimum.net80GET/api/settingsSvc/settings?username=laboxtest15200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 228
Showing 1-20 of 228 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2019-08-21T21:39:01.225403-07002111088567684393flow192.168.0.1033528469.118.14.0443TCPpcapanalyzer
2
2019-08-21T21:39:01.225403-07001971280935020492flow192.168.0.1034881069.74.69.10580TCPpcapanalyzer
3
2019-08-21T21:39:01.225403-07001550397770936138flow192.168.0.1033530169.118.14.0443TCPpcapanalyzer
4
2019-08-21T21:39:01.225403-0700425754133525208flow192.168.0.1035274569.74.69.10580TCPpcapanalyzer
5
2019-08-21T21:39:01.225403-07001975812125929582flowfe80:0000:0000:0000:d4e0:eb16:9af3:1d58546ff02:0000:0000:0000:0000:0000:0001:0002547UDPpcapanalyzer
6
2019-08-21T21:39:01.225403-07001978621041416924flow192.168.0.10350070192.168.0.153UDPpcapanalyzer
7
2019-08-21T21:39:01.225403-07001276593598081302flow192.168.0.1035316969.74.69.10580TCPpcapanalyzer
8
2019-08-21T21:39:01.225403-0700433268179269112flow192.168.0.1035148469.74.69.10580TCPpcapanalyzer
9
2019-08-21T21:39:01.225403-07001138946346142655flow192.168.0.10749658239.255.255.2501900UDPpcapanalyzer
10
2019-08-21T21:39:01.225403-07001140284220114934flow192.168.0.1033859269.74.69.10580TCPpcapanalyzer
11
2019-08-21T21:39:01.225403-07001283834912171581flowfe80:0000:0000:0000:0845:1d68:4cc9:75825353ff02:0000:0000:0000:0000:0000:0000:00fb5353UDPpcapanalyzer
12
2019-08-21T21:39:01.225403-07001846902979659227flow192.168.0.1035752269.74.69.10580TCPpcapanalyzer
13
2019-08-21T21:39:01.225403-07001847375431456575flow192.168.0.1033529869.118.14.0443TCPpcapanalyzer
14
2019-08-21T21:39:01.225403-0700159255707631510flow192.168.0.1035056769.121.105.194443TCPpcapanalyzer
15
2019-08-21T21:39:01.225403-07002130727300622138flow192.168.0.1035346369.74.69.10580TCPpcapanalyzer
16
2019-08-21T21:39:01.225403-0700583372996537967flow192.168.0.1037797192.168.0.153UDPpcapanalyzer
17
2019-08-21T21:39:01.225403-0700865664016615243flow192.168.0.1033528769.118.14.0443TCPpcapanalyzer
18
2019-08-21T21:39:01.225403-07001569926984481279flow192.168.0.10349405192.168.0.153UDPpcapanalyzer
19
2019-08-21T21:39:01.225403-07002133375148239237flow192.168.0.1033593969.74.69.10580TCPpcapanalyzer
20
2019-08-21T21:39:01.225403-0700590270710702752flow192.168.0.10341345172.217.26.174443TCPpcapanalyzer
File 236
Showing 1-20 of 236 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2019-08-21T21:36:43.394257-0700192.168.0.10369.74.69.105/api/registerSvc/ASCII text, with no line terminators219
2
2019-08-21T21:36:42.377350-070069.74.69.105192.168.0.103/api/clientConfigSvc/getConfigASCII text, with very long lines, with no line terminators6394
3
2019-08-21T21:36:43.397472-070069.74.69.105192.168.0.103/api/registerSvc/ASCII text, with no line terminators233
4
2019-08-21T21:36:50.760187-070069.74.69.105192.168.0.103/api/dvrSvc/home/(CIDX)/recordingListASCII text, with very long lines, with no line terminators9677
5
2019-08-21T21:36:45.924427-070069.74.69.105192.168.0.103/api/notificationSvc/reminderASCII text, with no line terminators2
6
2019-08-21T21:36:43.909092-070069.74.69.105192.168.0.103/api/ipCheckSvc/ipcheckASCII text, with no line terminators48
7
2019-08-21T21:36:44.422269-070069.74.69.105192.168.0.103/api/accountSvcASCII text, with very long lines, with no line terminators452
8
2019-08-21T21:36:50.796523-070069.74.69.105192.168.0.103/api/vodSvc/vodclub/myod/mycontinuewatchASCII text, with very long lines, with no line terminators1993
9
2019-08-21T21:36:46.446591-0700192.168.0.10369.74.69.105/api/notificationSvc/deviceASCII text, with no line terminators176
10
2019-08-21T21:36:46.447278-070069.74.69.105192.168.0.103/api/notificationSvc/deviceASCII text, with very long lines, with no line terminators374
11
2019-08-21T21:36:50.823582-070069.74.69.105192.168.0.103/api/dvrSvc/home/(CIDX)/seriesListASCII text, with no line terminators121
12
2019-08-21T21:36:56.886823-070069.74.69.105192.168.0.103/api/settingsSvc/settingsASCII text, with no line terminators282
13
2019-08-21T21:36:46.818283-070069.74.69.105192.168.0.103avatars.tar.gzgzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)73722
14
2019-08-21T21:36:57.582258-070069.74.69.105192.168.0.103/api/ipCheckSvc/ipcheckASCII text, with no line terminators48
15
2019-08-21T21:36:45.855065-070069.74.69.105192.168.0.103/api/guideSvc/channel/504-6B70/listUTF-8 Unicode text, with very long lines, with no line terminators112344
16
2019-08-21T21:36:45.924053-070069.74.69.105192.168.0.103/api/clientConfigSvc/getConfigASCII text, with very long lines, with no line terminators10914
17
2019-08-21T21:36:46.928698-070069.74.69.105192.168.0.103/api/dvrSvc/home/(CIDX)/recordingListASCII text, with very long lines, with no line terminators9677
18
2019-08-21T21:36:59.756155-070069.74.69.105192.168.0.103/api/guideSvc/program/104234924/imageJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 314x177, frames 312593
19
2019-08-21T21:36:46.436009-070069.74.69.105192.168.0.103/api/clientConfigSvc/getMessagesASCII text, with very long lines, with no line terminators13412
20
2019-08-21T21:36:59.763771-070069.74.69.105192.168.0.103/api/guideSvc/program/97330953/imageJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 314x177, frames 323216

Comments(not set)

Update Download PCAP Delete