7eb581a7b3325ed95e2613227501a83a.pcap

MD5360fa0b8a87c7b426d3288513880f8cd
Submission Date2019-08-22 03:54:44
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 32
Showing 1-20 of 32 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2018-11-07T20:10:29.423004-0800192.168.122.1318.8.8.8query203.33.253.131.in-addr.arpaPTR(not set)
2
2018-11-07T20:10:29.426135-0800192.168.122.1318.8.8.8query107.60.77.23.in-addr.arpaPTR(not set)
3
2018-11-07T20:10:29.470309-08008.8.8.8192.168.122.131answer203.33.253.131.in-addr.arpa(not set)(not set)
4
2018-11-07T20:10:29.472428-08008.8.8.8192.168.122.131answer107.60.77.23.in-addr.arpa(not set)(not set)
5
2018-11-07T20:10:29.428441-0800192.168.122.1318.8.8.8querystatic-global-s-msn-com.akamaized.netA(not set)
6
2018-11-07T20:10:29.637001-0800192.168.122.1318.8.8.8queryacdn.adnxs.comA(not set)
7
2018-11-07T20:10:29.694673-08008.8.8.8192.168.122.131answeracdn.adnxs.com(not set)(not set)
8
2018-11-07T20:10:29.514560-08008.8.8.8192.168.122.131answerstatic-global-s-msn-com.akamaized.net(not set)(not set)
9
2018-11-07T20:10:29.634636-0800192.168.122.1318.8.8.8query95.52.133.202.in-addr.arpaPTR(not set)
10
2018-11-07T20:10:29.694655-08008.8.8.8192.168.122.131answer95.52.133.202.in-addr.arpa(not set)(not set)
11
2018-11-07T20:10:28.587870-0800192.168.122.1318.8.8.8querygo.microsoft.comA(not set)
12
2018-11-07T20:10:28.703493-08008.8.8.8192.168.122.131answergo.microsoft.com(not set)(not set)
13
2018-11-07T20:10:28.884879-0800192.168.122.1318.8.8.8querywww.msn.comA(not set)
14
2018-11-07T20:10:28.932107-08008.8.8.8192.168.122.131answerwww.msn.com(not set)(not set)
15
2018-11-07T20:10:30.098390-0800192.168.122.1318.8.8.8queryc.msn.comA(not set)
16
2018-11-07T20:10:30.358462-08008.8.8.8192.168.122.131answerc.msn.com(not set)(not set)
17
2018-11-07T20:10:30.527721-0800192.168.122.1318.8.8.8queryc.bing.comA(not set)
18
2018-11-07T20:10:30.573094-08008.8.8.8192.168.122.131answerc.bing.com(not set)(not set)
19
2018-11-07T20:10:30.514864-0800192.168.122.1318.8.8.8query55.31.81.40.in-addr.arpaPTR(not set)
20
2018-11-07T20:10:30.571221-08008.8.8.8192.168.122.131answer55.31.81.40.in-addr.arpa(not set)(not set)
TLS 2
Showing 1-2 of 2 items.
#
TimestampSource IPDestination IPTLS VersionIssuer
1
2018-11-07T20:11:31.872085-0800192.168.122.13123.56.20.228TLSv1C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
2
2018-11-07T20:11:32.177346-0800192.168.122.131172.217.31.206TLSv1C=US, O=Google Trust Services, CN=Google Internet Authority G3
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 15
Showing 1-15 of 15 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2018-11-07T20:10:29.076849-0800192.168.122.131www.msn.com80GET/?ocid=iehp302
2
2018-11-07T20:10:29.723585-0800192.168.122.131static-global-s-msn-com.akamaized.net80GET/img-resizer/tenant/amp/entityid/BBPsDeK.img?h=250&w=206&m=6&q=60&u=t&o=t&l=f&f=jpg&x=2734&y=1455200
3
2018-11-07T20:10:29.910899-0800192.168.122.131static-global-s-msn-com.akamaized.net80GET/img-resizer/tenant/amp/entityid/BBPsRt4.img?h=250&w=206&m=6&q=60&u=t&o=t&l=f&f=jpg&x=1460&y=1595200
4
2018-11-07T20:10:30.241708-0800192.168.122.131static-global-s-msn-com.akamaized.net80GET/hp-eas/sc/2b/a5ea21.ico(not set)
5
2018-11-07T20:10:30.675690-0800192.168.122.131c.msn.com80GET/c.gif?udc=true&rid=4e738fac115f43d28cdf2a485a01e33a&rnd=636772470291801943&rf=&tp=http%253A%252F%252Fwww.msn.com%252Fen-in%252F%253Focid%253Diehp&di=9&lng=en-in&activityId=4e738fac115f43d28cdf2a485a01e33a&d.dgk=midlevel.pc.ms.ie8&d.imd=0&st.dpt=&st.sdpt=&subcvs=homepage&pg.n=startpage&pg.t=hp&pg.c=&pg.p=prime&anoncknm=&issso=0&aadState=0302
6
2018-11-07T20:10:29.099711-0800192.168.122.131go.microsoft.com80GET/fwlink/?LinkId=69157302
7
2018-11-07T20:10:29.866191-0800192.168.122.131acdn.adnxs.com80GET/ast/ast.js200
8
2018-11-07T20:10:30.895452-0800192.168.122.131c.bing.com80GET/c.gif?udc=true&rid=4e738fac115f43d28cdf2a485a01e33a&rnd=636772470291801943&rf=&tp=http%253A%252F%252Fwww.msn.com%252Fen-in%252F%253Focid%253Diehp&di=9&lng=en-in&activityId=4e738fac115f43d28cdf2a485a01e33a&d.dgk=midlevel.pc.ms.ie8&d.imd=0&st.dpt=&st.sdpt=&subcvs=homepage&pg.n=startpage&pg.t=hp&pg.c=&pg.p=prime&anoncknm=&issso=0&aadState=0&CtsSyncId=86C5F66E80044F609A81B309961A3CAE&RedC=c.msn.com&MXFR=2AA241AC77DB61E926494DF676CD6023302
9
2018-11-07T20:10:31.002935-0800192.168.122.131c.msn.com80GET/c.gif?udc=true&rid=4e738fac115f43d28cdf2a485a01e33a&rnd=636772470291801943&rf=&tp=http%253A%252F%252Fwww.msn.com%252Fen-in%252F%253Focid%253Diehp&di=9&lng=en-in&activityId=4e738fac115f43d28cdf2a485a01e33a&d.dgk=midlevel.pc.ms.ie8&d.imd=0&st.dpt=&st.sdpt=&subcvs=homepage&pg.n=startpage&pg.t=hp&pg.c=&pg.p=prime&anoncknm=&issso=0&aadState=0&CtsSyncId=86C5F66E80044F609A81B309961A3CAE&MUID=2AA241AC77DB61E926494DF676CD6023200
10
2018-11-07T20:10:29.534227-0800192.168.122.131static-global-s-msn-com.akamaized.net80GET/hp-eas/en-in/homepage/_sc/css/b443689a-d5b56e59/direction=ltr.locales=en-in.themes=start.dpi=resolution1x/9f-59bb6e-6204581/58-35d7ea-a30bb732/98-fb481a-68ddb2ab/7b-ea130f-97607c48/34-11fa92-c5c4da4c/21-ab6cb9-df70287e/f9-d99a65-f6fc6aac/58-f6b6fa-354b4712/31-7697c0-86d1547f/f0-580f99-5e6072c9/d8-e51467-485137c9/12-c738a0-7b357fab/5e-84d5a9-be2f1ee4/a7-2018ec-9c7be37e/e5-56d104-f66cd75c/6d-fdcfb3-cb4af9db/75-6ce29a-8a01ca32?ver=20181027_12592070&fdhead=galnativead,muidflt12cf,muidflt15cf,muidflt26cf,intflex-samdr,adflt-gal0p5sec,muidflt54cf,muidflt55cf,mmxios1cf,bingmsncombined1cf,pneedge3cf,startedge2cf,moneyedge3cf,platagyhp2cf,audexhz3cf,moneyhz3cf,artgly4cf,article3cf,gallery3cf,testingmsnprog&ocid=iehp&csopd=20181107210048&csopdb=20181101191902200
11
2018-11-07T20:10:29.541348-0800192.168.122.131www.msn.com80GET/en-in/?ocid=iehp200
12
2018-11-07T20:10:29.593383-0800192.168.122.131static-global-s-msn-com.akamaized.net80GET/hp-eas/sc/eb/65a47c.eot?200
13
2018-11-07T20:10:29.698394-0800192.168.122.131static-global-s-msn-com.akamaized.net80GET/hp-eas/en-in/homepage/_sc/js/b443689a-5b711d85/direction=ltr.locales=en-in.themes=start.dpi=resolution1x/cc-414e22-9801e9b6/10-7cb5b8-ebe9b254/75-7193b4-5599dabd/9e-a7a255-68ddb2ab/98-7b1b43-602edd85/74-935043-d1f8fb43/30-ea66ac-f9c98504/f1-d6770c-68ddb2ab/11-e49b2d-26952ce9/9e-639daf-68ddb2ab?ver=20181027_12592070&fdhead=galnativead,muidflt12cf,muidflt15cf,muidflt26cf,intflex-samdr,adflt-gal0p5sec,muidflt54cf,muidflt55cf,mmxios1cf,bingmsncombined1cf,pneedge3cf,startedge2cf,moneyedge3cf,platagyhp2cf,audexhz3cf,moneyhz3cf,artgly4cf,article3cf,gallery3cf,testingmsnprog&ocid=iehp&csopd=20181107210048&csopdb=20181101191902200
14
2018-11-07T20:10:29.702171-0800192.168.122.131static-global-s-msn-com.akamaized.net80GET/img-resizer/tenant/amp/entityid/BBih5H.img?m=6&o=true&u=true&n=true&w=30&h=30200
15
2018-11-07T20:10:29.954594-0800192.168.122.131static-global-s-msn-com.akamaized.net80GET/img-resizer/tenant/amp/entityid/BBPsP4X.img?h=250&w=206&m=6&q=60&u=t&o=t&l=f&f=jpg200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 35
Showing 1-20 of 35 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2018-11-07T20:10:28.587870-08001558517856433244flow192.168.122.131574378.8.8.853UDPpcapanalyzer
2
2018-11-07T20:10:28.587870-0800722605551487385flow192.168.122.131653548.8.8.853UDPpcapanalyzer
3
2018-11-07T20:11:32.846626-08001876478580340809flow192.168.122.131639128.8.8.853UDPpcapanalyzer
4
2018-11-07T20:11:32.846626-0800350820297453324flow192.168.122.131615088.8.8.853UDPpcapanalyzer
5
2018-11-07T20:11:32.846626-0800222954826037342flow192.168.122.131585078.8.8.853UDPpcapanalyzer
6
2018-11-07T20:11:32.846626-08002080390742573199flow192.168.122.131506968.8.8.853UDPpcapanalyzer
7
2018-11-07T20:11:32.846626-0800518611784876457flow192.168.122.131137151.101.9.108137UDPpcapanalyzer
8
2018-11-07T20:11:32.846626-08001795982303345055flow192.168.122.13113740.81.31.55137UDPpcapanalyzer
9
2018-11-07T20:11:32.846626-0800847653524308119flow192.168.122.131655068.8.8.853UDPpcapanalyzer
10
2018-11-07T20:11:32.846626-08001131701190508668flow192.168.122.131522748.8.8.853UDPpcapanalyzer
11
2018-11-07T20:11:32.846626-0800148016236608278flow192.168.122.13149858131.253.33.20380TCPpcapanalyzer
12
2018-11-07T20:11:32.846626-0800573656086451768flow23.58.14.146443192.168.122.13149888TCPpcapanalyzer
13
2018-11-07T20:11:32.846626-0800445558686080054flow192.168.122.13149859202.133.52.9580TCPpcapanalyzer
14
2018-11-07T20:11:32.846626-08001854149045369599flow192.168.122.13149862202.133.52.9580TCPpcapanalyzer
15
2018-11-07T20:11:32.846626-08001010170795894172flow192.168.122.1314986523.56.20.228443TCPpcapanalyzer
16
2018-11-07T20:11:32.846626-08002139747190676599flow192.168.122.13149860151.101.9.10880TCPpcapanalyzer
17
2018-11-07T20:11:32.846626-08001719686504229220flow192.168.122.13149861202.133.52.9580TCPpcapanalyzer
18
2018-11-07T20:11:32.846626-08002142959826272342flow192.168.122.131602478.8.8.853UDPpcapanalyzer
19
2018-11-07T20:11:32.846626-080033293369591379flow192.168.122.131546638.8.8.853UDPpcapanalyzer
20
2018-11-07T20:11:32.846626-08002145717199557003flow192.168.122.13149867104.121.240.166443TCPpcapanalyzer
File 12
Showing 1-12 of 12 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2018-11-07T20:10:29.723585-0800202.133.52.95192.168.122.131/img-resizer/tenant/amp/entityid/BBPsDeK.imgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames 36273
2
2018-11-07T20:10:29.910899-0800202.133.52.95192.168.122.131/img-resizer/tenant/amp/entityid/BBPsRt4.imgJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 206x250, frames 35559
3
2018-11-07T20:10:30.482951-0800202.133.52.95192.168.122.131/hp-eas/sc/2b/a5ea21.icoPNG image data, 32 x 32, 8-bit/color RGB, non-interlaced758
4
2018-11-07T20:10:29.076849-0800131.253.33.203192.168.122.131/HTML document, ASCII text, with CRLF line terminators152
5
2018-11-07T20:10:29.866191-0800151.101.9.108192.168.122.131/ast/ast.jsASCII text, with very long lines, with no line terminators87114
6
2018-11-07T20:10:31.002935-080040.81.31.55192.168.122.131/c.gifGIF image data, version 89a, 1 x 142
7
2018-11-07T20:10:29.534227-0800202.133.52.95192.168.122.131/hp-eas/en-in/homepage/_sc/css/b443689a-d5b56e59/direction=ltr.locales=en-in.themes=start.dpi=resolution1x/9f-59bb6e-6204581/58-35d7ea-a30bb732/98-fb481a-68ddb2ab/7b-ea130f-97607c48/34-11fa92-c5c4da4c/21-ab6cb9-df70287e/f9-d99a65-f6fc6aac/58-f6b6fa-354b4712/31-7697c0-86d1547f/f0-580f99-5e6072c9/d8-e51467-485137c9/12-c738a0-7b357fab/5e-84d5a9-be2f1ee4/a7-2018ec-9c7be37e/e5-56d104-f66cd75c/6d-fdcfb3-cb4af9db/75-6ce29a-8a01ca32UTF-8 Unicode text, with very long lines114878
8
2018-11-07T20:10:29.541348-0800131.253.33.203192.168.122.131/en-in/HTML document, ASCII text, with very long lines, with CRLF, LF line terminators315824
9
2018-11-07T20:10:29.593383-0800202.133.52.95192.168.122.131/hp-eas/sc/eb/65a47c.eotEmbedded OpenType (EOT)42780
10
2018-11-07T20:10:29.698394-0800202.133.52.95192.168.122.131/hp-eas/en-in/homepage/_sc/js/b443689a-5b711d85/direction=ltr.locales=en-in.themes=start.dpi=resolution1x/cc-414e22-9801e9b6/10-7cb5b8-ebe9b254/75-7193b4-5599dabd/9e-a7a255-68ddb2ab/98-7b1b43-602edd85/74-935043-d1f8fb43/30-ea66ac-f9c98504/f1-d6770c-68ddb2ab/11-e49b2d-26952ce9/9e-639daf-68ddb2abASCII text, with very long lines, with no line terminators235265
11
2018-11-07T20:10:29.702171-0800202.133.52.95192.168.122.131/img-resizer/tenant/amp/entityid/BBih5H.imgPNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced930
12
2018-11-07T20:10:29.954594-0800202.133.52.95192.168.122.131/img-resizer/tenant/amp/entityid/BBPsP4X.imgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames 38505

Comments(not set)

Update Download PCAP Delete