941727-18b07ae4189d72796e4d90b995cd2bc9.pcap

MD53049426ae99169869a4dbc8ded81c789
Submission Date2019-08-22 12:57:46
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 26
Showing 1-20 of 26 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2019-08-22T12:09:40.690374-0700192.168.1.138.8.8.8querycrl.microsoft.comA(not set)
2
2019-08-22T12:09:40.744293-07008.8.8.8192.168.1.13answercrl.microsoft.comA(not set)
3
2019-08-22T12:10:06.744718-0700192.168.1.138.8.8.8querycrl.microsoft.comA(not set)
4
2019-08-22T12:10:06.774122-07008.8.8.8192.168.1.13answercrl.microsoft.comA(not set)
5
2019-08-22T12:10:06.777314-0700192.168.1.138.8.8.8querycrl.microsoft.comA(not set)
6
2019-08-22T12:09:40.633863-0700192.168.1.138.8.8.8querycrl.microsoft.comA(not set)
7
2019-08-22T12:09:40.686350-07008.8.8.8192.168.1.13answercrl.microsoft.comA(not set)
8
2019-08-22T12:13:52.114758-0700192.168.1.138.8.8.8queryteredo.ipv6.microsoft.comA(not set)
9
2019-08-22T12:13:52.134470-07008.8.8.8192.168.1.13answerteredo.ipv6.microsoft.comA(not set)
10
2019-08-22T12:16:28.013542-0700192.168.1.138.8.8.8queryteredo.ipv6.microsoft.comA(not set)
11
2019-08-22T12:16:28.046151-07008.8.8.8192.168.1.13answerteredo.ipv6.microsoft.comA(not set)
12
2019-08-22T12:17:12.843240-0700192.168.1.138.8.8.8queryteredo.ipv6.microsoft.comA(not set)
13
2019-08-22T12:17:12.863598-07008.8.8.8192.168.1.13answerteredo.ipv6.microsoft.comA(not set)
14
2019-08-22T12:10:06.851689-07008.8.8.8192.168.1.13answercrl.microsoft.comA(not set)
15
2019-08-22T12:14:26.577958-0700192.168.1.138.8.8.8queryteredo.ipv6.microsoft.comA(not set)
16
2019-08-22T12:14:26.610347-07008.8.8.8192.168.1.13answerteredo.ipv6.microsoft.comA(not set)
17
2019-08-22T12:10:15.795386-0700192.168.1.138.8.8.8queryteredo.ipv6.microsoft.comA(not set)
18
2019-08-22T12:10:15.836333-07008.8.8.8192.168.1.13answerteredo.ipv6.microsoft.comA(not set)
19
2019-08-22T12:11:14.054666-0700192.168.1.138.8.8.8queryteredo.ipv6.microsoft.comA(not set)
20
2019-08-22T12:11:14.096575-07008.8.8.8192.168.1.13answerteredo.ipv6.microsoft.comA(not set)
TLS 0
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
No results found.
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 3
Showing 1-3 of 3 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2019-08-22T12:09:40.785392-0700192.168.1.13crl.microsoft.com80GET/pki/crl/products/MicRooCerAut_2010-06-23.crl200
2
2019-08-22T12:09:46.020202-0700192.168.1.13crl.microsoft.com80GET/pki/crl/products/MicTimStaPCA_2010-07-01.crl200
3
2019-08-22T12:10:07.098654-0700192.168.1.13crl.microsoft.com80GET/pki/crl/products/CodeSignPCA2.crl200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 33
Showing 1-20 of 33 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2019-08-22T12:14:47.958187-0700583681369865728flow192.168.1.134918023.54.112.21780TCPpcapanalyzer
2
2019-08-22T12:14:47.958187-0700725239204121287flow192.168.1.133702192.168.1.1562477UDPpcapanalyzer
3
2019-08-22T12:14:47.958187-07001870419221453655flow192.168.1.153702192.168.1.1355228UDPpcapanalyzer
4
2019-08-22T12:14:47.958187-0700899924102523911flow192.168.1.13640978.8.8.853UDPpcapanalyzer
5
2019-08-22T12:14:47.958187-07001055023961524302flow192.168.1.134917923.10.249.2580TCPpcapanalyzer
6
2019-08-22T12:14:47.958187-07001203956249058904flow192.168.1.1349201224.0.0.2525355UDPpcapanalyzer
7
2019-08-22T12:14:47.958187-07001486298807757484flow192.168.1.1363782224.0.0.2525355UDPpcapanalyzer
8
2019-08-22T12:14:47.958187-070095450958170310flow192.168.1.13644148.8.8.853UDPpcapanalyzer
9
2019-08-22T12:14:47.958187-0700520472345717781flow192.168.1.1349183192.168.1.155357TCPpcapanalyzer
10
2019-08-22T12:14:47.958187-07001369978212613581flow192.168.1.13491788.252.5.12680TCPpcapanalyzer
11
2019-08-22T12:14:47.958187-07002233571578830079flow192.168.1.1361552224.0.0.2525355UDPpcapanalyzer
12
2019-08-22T12:14:47.958187-07001536395305956827flow192.168.1.1351977224.0.0.2525355UDPpcapanalyzer
13
2019-08-22T12:14:47.958187-07001401683656837858flow192.168.1.1355883224.0.0.2525355UDPpcapanalyzer
14
2019-08-22T12:14:47.958187-0700145452973610378flow192.168.1.13552278.8.8.853UDPpcapanalyzer
15
2019-08-22T12:14:47.958187-07001977634495642542flow192.168.1.203702192.168.1.1355228UDPpcapanalyzer
16
2019-08-22T12:14:47.958187-07002144554086980878flow192.168.1.13578828.8.8.853UDPpcapanalyzer
17
2019-08-22T12:14:47.958187-07001307125685098980flow192.168.1.133702192.168.1.1855648UDPpcapanalyzer
18
2019-08-22T12:14:47.958187-07001733001752834943flow192.168.1.13600738.8.8.853UDPpcapanalyzer
19
2019-08-22T12:14:47.958187-0700188845048739046flow192.168.1.13625078.8.8.853UDPpcapanalyzer
20
2019-08-22T12:14:47.958187-07001737374025518354flow192.168.1.133702192.168.1.2061159UDPpcapanalyzer
File 3
Showing 1-3 of 3 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2019-08-22T12:09:40.785392-070023.10.249.25192.168.1.13/pki/crl/products/MicRooCerAut_2010-06-23.crldata824
2
2019-08-22T12:09:46.020202-070023.10.249.25192.168.1.13/pki/crl/products/MicTimStaPCA_2010-07-01.crldata555
3
2019-08-22T12:10:07.098654-070023.10.249.25192.168.1.13/pki/crl/products/CodeSignPCA2.crldata558

Comments(not set)

Update Download PCAP Delete