7eb581a7b3325ed95e2613227501a83a.pcap

MD5360fa0b8a87c7b426d3288513880f8cd
Submission Date2019-08-22 03:54:44
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 32
Showing 1-20 of 32 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2018-11-07T20:10:28.884879-0800192.168.122.1318.8.8.8querywww.msn.comA(not set)
2
2018-11-07T20:10:28.932107-08008.8.8.8192.168.122.131answerwww.msn.comA(not set)
3
2018-11-07T20:10:28.587870-0800192.168.122.1318.8.8.8querygo.microsoft.comA(not set)
4
2018-11-07T20:10:28.703493-08008.8.8.8192.168.122.131answergo.microsoft.comA(not set)
5
2018-11-07T20:10:29.423004-0800192.168.122.1318.8.8.8query203.33.253.131.in-addr.arpaPTR(not set)
6
2018-11-07T20:10:29.426135-0800192.168.122.1318.8.8.8query107.60.77.23.in-addr.arpaPTR(not set)
7
2018-11-07T20:10:29.428441-0800192.168.122.1318.8.8.8querystatic-global-s-msn-com.akamaized.netA(not set)
8
2018-11-07T20:10:29.470309-08008.8.8.8192.168.122.131answer203.33.253.131.in-addr.arpaPTR(not set)
9
2018-11-07T20:10:29.472428-08008.8.8.8192.168.122.131answer107.60.77.23.in-addr.arpaPTR(not set)
10
2018-11-07T20:10:29.514560-08008.8.8.8192.168.122.131answerstatic-global-s-msn-com.akamaized.netA(not set)
11
2018-11-07T20:10:29.634636-0800192.168.122.1318.8.8.8query95.52.133.202.in-addr.arpaPTR(not set)
12
2018-11-07T20:10:29.637001-0800192.168.122.1318.8.8.8queryacdn.adnxs.comA(not set)
13
2018-11-07T20:10:29.694673-08008.8.8.8192.168.122.131answeracdn.adnxs.comA(not set)
14
2018-11-07T20:10:30.514864-0800192.168.122.1318.8.8.8query55.31.81.40.in-addr.arpaPTR(not set)
15
2018-11-07T20:10:30.571221-08008.8.8.8192.168.122.131answer55.31.81.40.in-addr.arpaPTR(not set)
16
2018-11-07T20:10:31.049962-0800192.168.122.1318.8.8.8query200.197.79.204.in-addr.arpaPTR(not set)
17
2018-11-07T20:10:31.096498-08008.8.8.8192.168.122.131answer200.197.79.204.in-addr.arpaPTR(not set)
18
2018-11-07T20:10:29.694655-08008.8.8.8192.168.122.131answer95.52.133.202.in-addr.arpaPTR(not set)
19
2018-11-07T20:10:30.525489-0800192.168.122.1318.8.8.8query108.9.101.151.in-addr.arpaPTR(not set)
20
2018-11-07T20:10:30.573453-08008.8.8.8192.168.122.131answer108.9.101.151.in-addr.arpaPTR(not set)
TLS 2
Showing 1-2 of 2 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2018-11-07T20:11:31.872085-0800192.168.122.13123.56.20.228TLSv1fpdownload.macromedia.com
2
2018-11-07T20:11:32.177346-0800192.168.122.131172.217.31.206TLSv1clients2.google.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 15
Showing 1-15 of 15 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2018-11-07T20:10:29.076849-0800192.168.122.131www.msn.com80GET/?ocid=iehp302
2
2018-11-07T20:10:29.534227-0800192.168.122.131static-global-s-msn-com.akamaized.net80GET/hp-eas/en-in/homepage/_sc/css/b443689a-d5b56e59/direction=ltr.locales=en-in.themes=start.dpi=resolution1x/9f-59bb6e-6204581/58-35d7ea-a30bb732/98-fb481a-68ddb2ab/7b-ea130f-97607c48/34-11fa92-c5c4da4c/21-ab6cb9-df70287e/f9-d99a65-f6fc6aac/58-f6b6fa-354b4712/31-7697c0-86d1547f/f0-580f99-5e6072c9/d8-e51467-485137c9/12-c738a0-7b357fab/5e-84d5a9-be2f1ee4/a7-2018ec-9c7be37e/e5-56d104-f66cd75c/6d-fdcfb3-cb4af9db/75-6ce29a-8a01ca32?ver=20181027_12592070&fdhead=galnativead,muidflt12cf,muidflt15cf,muidflt26cf,intflex-samdr,adflt-gal0p5sec,muidflt54cf,muidflt55cf,mmxios1cf,bingmsncombined1cf,pneedge3cf,startedge2cf,moneyedge3cf,platagyhp2cf,audexhz3cf,moneyhz3cf,artgly4cf,article3cf,gallery3cf,testingmsnprog&ocid=iehp&csopd=20181107210048&csopdb=20181101191902200
3
2018-11-07T20:10:29.593383-0800192.168.122.131static-global-s-msn-com.akamaized.net80GET/hp-eas/sc/eb/65a47c.eot?200
4
2018-11-07T20:10:29.099711-0800192.168.122.131go.microsoft.com80GET/fwlink/?LinkId=69157302
5
2018-11-07T20:10:29.541348-0800192.168.122.131www.msn.com80GET/en-in/?ocid=iehp200
6
2018-11-07T20:10:29.723585-0800192.168.122.131static-global-s-msn-com.akamaized.net80GET/img-resizer/tenant/amp/entityid/BBPsDeK.img?h=250&w=206&m=6&q=60&u=t&o=t&l=f&f=jpg&x=2734&y=1455200
7
2018-11-07T20:10:29.698394-0800192.168.122.131static-global-s-msn-com.akamaized.net80GET/hp-eas/en-in/homepage/_sc/js/b443689a-5b711d85/direction=ltr.locales=en-in.themes=start.dpi=resolution1x/cc-414e22-9801e9b6/10-7cb5b8-ebe9b254/75-7193b4-5599dabd/9e-a7a255-68ddb2ab/98-7b1b43-602edd85/74-935043-d1f8fb43/30-ea66ac-f9c98504/f1-d6770c-68ddb2ab/11-e49b2d-26952ce9/9e-639daf-68ddb2ab?ver=20181027_12592070&fdhead=galnativead,muidflt12cf,muidflt15cf,muidflt26cf,intflex-samdr,adflt-gal0p5sec,muidflt54cf,muidflt55cf,mmxios1cf,bingmsncombined1cf,pneedge3cf,startedge2cf,moneyedge3cf,platagyhp2cf,audexhz3cf,moneyhz3cf,artgly4cf,article3cf,gallery3cf,testingmsnprog&ocid=iehp&csopd=20181107210048&csopdb=20181101191902200
8
2018-11-07T20:10:29.702171-0800192.168.122.131static-global-s-msn-com.akamaized.net80GET/img-resizer/tenant/amp/entityid/BBih5H.img?m=6&o=true&u=true&n=true&w=30&h=30200
9
2018-11-07T20:10:29.866191-0800192.168.122.131acdn.adnxs.com80GET/ast/ast.js200
10
2018-11-07T20:10:29.910899-0800192.168.122.131static-global-s-msn-com.akamaized.net80GET/img-resizer/tenant/amp/entityid/BBPsRt4.img?h=250&w=206&m=6&q=60&u=t&o=t&l=f&f=jpg&x=1460&y=1595200
11
2018-11-07T20:10:30.482951-0800192.168.122.131static-global-s-msn-com.akamaized.net80GET/hp-eas/sc/2b/a5ea21.ico200
12
2018-11-07T20:10:30.675690-0800192.168.122.131c.msn.com80GET/c.gif?udc=true&rid=4e738fac115f43d28cdf2a485a01e33a&rnd=636772470291801943&rf=&tp=http%253A%252F%252Fwww.msn.com%252Fen-in%252F%253Focid%253Diehp&di=9&lng=en-in&activityId=4e738fac115f43d28cdf2a485a01e33a&d.dgk=midlevel.pc.ms.ie8&d.imd=0&st.dpt=&st.sdpt=&subcvs=homepage&pg.n=startpage&pg.t=hp&pg.c=&pg.p=prime&anoncknm=&issso=0&aadState=0302
13
2018-11-07T20:10:30.895452-0800192.168.122.131c.bing.com80GET/c.gif?udc=true&rid=4e738fac115f43d28cdf2a485a01e33a&rnd=636772470291801943&rf=&tp=http%253A%252F%252Fwww.msn.com%252Fen-in%252F%253Focid%253Diehp&di=9&lng=en-in&activityId=4e738fac115f43d28cdf2a485a01e33a&d.dgk=midlevel.pc.ms.ie8&d.imd=0&st.dpt=&st.sdpt=&subcvs=homepage&pg.n=startpage&pg.t=hp&pg.c=&pg.p=prime&anoncknm=&issso=0&aadState=0&CtsSyncId=86C5F66E80044F609A81B309961A3CAE&RedC=c.msn.com&MXFR=2AA241AC77DB61E926494DF676CD6023302
14
2018-11-07T20:10:31.002935-0800192.168.122.131c.msn.com80GET/c.gif?udc=true&rid=4e738fac115f43d28cdf2a485a01e33a&rnd=636772470291801943&rf=&tp=http%253A%252F%252Fwww.msn.com%252Fen-in%252F%253Focid%253Diehp&di=9&lng=en-in&activityId=4e738fac115f43d28cdf2a485a01e33a&d.dgk=midlevel.pc.ms.ie8&d.imd=0&st.dpt=&st.sdpt=&subcvs=homepage&pg.n=startpage&pg.t=hp&pg.c=&pg.p=prime&anoncknm=&issso=0&aadState=0&CtsSyncId=86C5F66E80044F609A81B309961A3CAE&MUID=2AA241AC77DB61E926494DF676CD6023200
15
2018-11-07T20:10:29.954594-0800192.168.122.131static-global-s-msn-com.akamaized.net80GET/img-resizer/tenant/amp/entityid/BBPsP4X.img?h=250&w=206&m=6&q=60&u=t&o=t&l=f&f=jpg200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 35
Showing 1-20 of 35 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2018-11-07T20:11:32.947140-08006767647308191flow192.168.122.13113740.81.31.55137UDPpcapanalyzer
2
2018-11-07T20:11:32.947140-08001005983198790057flow192.168.122.131137151.101.9.108137UDPpcapanalyzer
3
2018-11-07T20:11:32.947140-0800429826220785807flow192.168.122.131506968.8.8.853UDPpcapanalyzer
4
2018-11-07T20:11:32.947140-08002126879472805131flow192.168.122.13168255.255.255.25567UDPpcapanalyzer
5
2018-11-07T20:11:32.947140-08001286745215027791flow192.168.122.131137192.168.122.255137UDPpcapanalyzer
6
2018-11-07T20:11:32.947140-08001005734090752810flow192.168.122.131628748.8.8.853UDPpcapanalyzer
7
2018-11-07T20:11:32.947140-080023440710271127flow192.168.122.131655068.8.8.853UDPpcapanalyzer
8
2018-11-07T20:11:32.947140-08001012464308501334flow192.168.122.131587048.8.8.853UDPpcapanalyzer
9
2018-11-07T20:11:32.947140-08001719982856974092flow192.168.122.131615088.8.8.853UDPpcapanalyzer
10
2018-11-07T20:11:32.947140-0800172390176013078flow192.168.122.13149858131.253.33.20380TCPpcapanalyzer
11
2018-11-07T20:11:32.947140-08001439667525494172flow192.168.122.1314986523.56.20.228443TCPpcapanalyzer
12
2018-11-07T20:11:32.947140-08001443378373230678flow192.168.122.131602478.8.8.853UDPpcapanalyzer
13
2018-11-07T20:11:32.947140-0800460161574896817flow192.168.122.131605678.8.8.853UDPpcapanalyzer
14
2018-11-07T20:11:32.947140-0800181418197354905flow192.168.122.131653548.8.8.853UDPpcapanalyzer
15
2018-11-07T20:11:32.947140-0800468781574240329flow192.168.122.131639128.8.8.853UDPpcapanalyzer
16
2018-11-07T20:11:32.947140-08002018981300237404flow192.168.122.131574378.8.8.853UDPpcapanalyzer
17
2018-11-07T20:11:32.947140-08001743600882211632flow192.168.122.131532398.8.8.853UDPpcapanalyzer
18
2018-11-07T20:11:32.947140-08001333238231837028flow192.168.122.13149861202.133.52.9580TCPpcapanalyzer
19
2018-11-07T20:11:32.947140-08002037986530540287flow192.168.122.13149862202.133.52.9580TCPpcapanalyzer
20
2018-11-07T20:11:32.947140-08001196052681448502flow192.168.122.13149859202.133.52.9580TCPpcapanalyzer
File 12
Showing 1-12 of 12 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2018-11-07T20:10:29.076849-0800131.253.33.203192.168.122.131/HTML document, ASCII text, with CRLF line terminators152
2
2018-11-07T20:10:29.534227-0800202.133.52.95192.168.122.131/hp-eas/en-in/homepage/_sc/css/b443689a-d5b56e59/direction=ltr.locales=en-in.themes=start.dpi=resolution1x/9f-59bb6e-6204581/58-35d7ea-a30bb732/98-fb481a-68ddb2ab/7b-ea130f-97607c48/34-11fa92-c5c4da4c/21-ab6cb9-df70287e/f9-d99a65-f6fc6aac/58-f6b6fa-354b4712/31-7697c0-86d1547f/f0-580f99-5e6072c9/d8-e51467-485137c9/12-c738a0-7b357fab/5e-84d5a9-be2f1ee4/a7-2018ec-9c7be37e/e5-56d104-f66cd75c/6d-fdcfb3-cb4af9db/75-6ce29a-8a01ca32UTF-8 Unicode text, with very long lines114878
3
2018-11-07T20:10:29.593383-0800202.133.52.95192.168.122.131/hp-eas/sc/eb/65a47c.eotEmbedded OpenType (EOT)42780
4
2018-11-07T20:10:29.541348-0800131.253.33.203192.168.122.131/en-in/HTML document, ASCII text, with very long lines, with CRLF, LF line terminators315824
5
2018-11-07T20:10:29.723585-0800202.133.52.95192.168.122.131/img-resizer/tenant/amp/entityid/BBPsDeK.imgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames 36273
6
2018-11-07T20:10:29.698394-0800202.133.52.95192.168.122.131/hp-eas/en-in/homepage/_sc/js/b443689a-5b711d85/direction=ltr.locales=en-in.themes=start.dpi=resolution1x/cc-414e22-9801e9b6/10-7cb5b8-ebe9b254/75-7193b4-5599dabd/9e-a7a255-68ddb2ab/98-7b1b43-602edd85/74-935043-d1f8fb43/30-ea66ac-f9c98504/f1-d6770c-68ddb2ab/11-e49b2d-26952ce9/9e-639daf-68ddb2abASCII text, with very long lines, with no line terminators235265
7
2018-11-07T20:10:29.866191-0800151.101.9.108192.168.122.131/ast/ast.jsASCII text, with very long lines, with no line terminators87114
8
2018-11-07T20:10:29.910899-0800202.133.52.95192.168.122.131/img-resizer/tenant/amp/entityid/BBPsRt4.imgJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 206x250, frames 35559
9
2018-11-07T20:10:30.482951-0800202.133.52.95192.168.122.131/hp-eas/sc/2b/a5ea21.icoPNG image data, 32 x 32, 8-bit/color RGB, non-interlaced758
10
2018-11-07T20:10:29.702171-0800202.133.52.95192.168.122.131/img-resizer/tenant/amp/entityid/BBih5H.imgPNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced930
11
2018-11-07T20:10:31.002935-080040.81.31.55192.168.122.131/c.gifGIF image data, version 89a, 1 x 142
12
2018-11-07T20:10:29.954594-0800202.133.52.95192.168.122.131/img-resizer/tenant/amp/entityid/BBPsP4X.imgJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames 38505

Comments(not set)

Update Download PCAP Delete