Aug 22 23-17-32.pcap

MD5ed0b9986b9319b5041370668e21d5a16
Submission Date2019-08-23 10:57:06
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 110
Showing 1-20 of 110 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2019-08-22T13:19:51.103362-0700192.168.1.70192.168.1.1querywww.google.comA(not set)
2
2019-08-22T13:18:47.974875-0700192.168.1.70192.168.1.1querywww.google.comA(not set)
3
2019-08-22T13:17:43.836079-0700192.168.1.70192.168.1.1querywww.google.comA(not set)
4
2019-08-22T13:19:51.103822-0700192.168.1.1192.168.1.70answerwww.google.com(not set)(not set)
5
2019-08-22T13:20:51.224253-0700192.168.1.70192.168.1.1querywww.google.comA(not set)
6
2019-08-22T13:18:47.975343-0700192.168.1.1192.168.1.70answerwww.google.com(not set)(not set)
7
2019-08-22T13:20:51.224761-0700192.168.1.1192.168.1.70answerwww.google.com(not set)(not set)
8
2019-08-22T13:18:53.045297-0700192.168.1.70192.168.1.1querydls1prd.di.atlas.samsung.comA(not set)
9
2019-08-22T13:18:53.054752-0700192.168.1.1192.168.1.70answerdls1prd.di.atlas.samsung.com(not set)(not set)
10
2019-08-22T13:24:22.376808-0700192.168.1.70192.168.1.1queryplay.googleapis.comA(not set)
11
2019-08-22T13:24:22.377262-0700192.168.1.1192.168.1.70answerplay.googleapis.com(not set)(not set)
12
2019-08-22T13:22:08.791523-0700192.168.1.70192.168.1.1querycdp.cloud.unity3d.comA(not set)
13
2019-08-22T13:22:08.801551-0700192.168.1.1192.168.1.70answercdp.cloud.unity3d.com(not set)(not set)
14
2019-08-22T13:25:06.776160-0700192.168.1.70192.168.1.1querywww.google.comA(not set)
15
2019-08-22T13:25:06.776620-0700192.168.1.1192.168.1.70answerwww.google.com(not set)(not set)
16
2019-08-22T13:26:06.895077-0700192.168.1.70192.168.1.1querywww.google.comA(not set)
17
2019-08-22T13:26:06.895545-0700192.168.1.1192.168.1.70answerwww.google.com(not set)(not set)
18
2019-08-22T13:26:32.229881-0700192.168.1.70192.168.1.1querysemanticlocation-pa.googleapis.comA(not set)
19
2019-08-22T13:26:32.239320-0700192.168.1.1192.168.1.70answersemanticlocation-pa.googleapis.com(not set)(not set)
20
2019-08-22T13:28:22.558424-0700192.168.1.70192.168.1.1queryz.moatads.comA(not set)
TLS 58
Showing 1-20 of 58 items.
#
TimestampSource IPDestination IPTLS VersionIssuer
1
2019-08-22T13:17:42.207723-0700192.168.1.70203.119.169.227TLS 1.2C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2
2
2019-08-22T13:18:53.296712-0700192.168.1.70108.128.20.177TLS 1.2C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Organization Validation Secure Server CA
3
2019-08-22T13:24:36.967351-0700192.168.1.70173.194.222.121TLS 1.2C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3
4
2019-08-22T13:22:09.015761-0700192.168.1.7035.186.194.186TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA
5
2019-08-22T13:28:26.718855-0700192.168.1.7023.32.85.67TLS 1.2C=US, O=DigiCert Inc, CN=DigiCert ECC Secure Server CA
6
2019-08-22T13:28:28.397916-0700192.168.1.70217.69.139.244TLS 1.2C=US, O=DigiCert Inc, OU=www.digicert.com, CN=GeoTrust RSA CA 2018
7
2019-08-22T13:28:28.414619-0700192.168.1.7052.85.241.28TLS 1.2C=US, O=Amazon, OU=Server CA 1B, CN=Amazon
8
2019-08-22T13:24:21.605010-0700192.168.1.70173.194.221.95TLS 1.2(not set)
9
2019-08-22T13:24:22.742224-0700192.168.1.7064.233.162.95TLS 1.2C=US, O=Google Trust Services, CN=Google Internet Authority G3
10
2019-08-22T13:24:36.084277-0700192.168.1.70173.194.222.121TLS 1.2C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3
11
2019-08-22T13:25:09.054997-0700192.168.1.7054.201.24.85TLS 1.2C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Domain Validation Secure Server CA
12
2019-08-22T13:28:42.622810-0700192.168.1.7094.100.180.197TLS 1.2C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2
13
2019-08-22T13:28:42.811272-0700192.168.1.7084.201.155.164TLS 1.2C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2
14
2019-08-22T13:28:42.844130-0700192.168.1.70194.226.130.226TLS 1.2C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2
15
2019-08-22T13:28:21.559349-0700192.168.1.70107.178.240.159TLS 1.2C=US, O=DigiCert Inc, OU=www.digicert.com, CN=RapidSSL RSA CA 2018
16
2019-08-22T13:28:43.227909-0700192.168.1.7035.190.72.161TLS 1.2C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3
17
2019-08-22T13:28:22.224069-0700192.168.1.70130.211.34.183TLS 1.2C=US, O=DigiCert Inc, OU=www.digicert.com, CN=RapidSSL RSA CA 2018
18
2019-08-22T13:28:45.234183-0700192.168.1.7052.85.241.118TLS 1.2C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Domain Validation Secure Server CA
19
2019-08-22T13:28:45.871562-0700192.168.1.70194.226.130.226TLS 1.2C=BE, O=GlobalSign nv-sa, CN=GlobalSign Organization Validation CA - SHA256 - G2
20
2019-08-22T13:28:25.713152-0700192.168.1.7031.13.92.10TLS 1.2C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 5
Showing 1-5 of 5 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2019-08-22T13:33:41.452271-0700192.168.1.70clients3.google.com80GET/generate_204204
2
2019-08-22T13:17:45.370079-0700192.168.1.70acs.m.taobao.com80GET/gw/mtop.common.getTimestamp/*200
3
2019-08-22T13:29:45.061475-0700192.168.1.70acs.m.taobao.com80GET/gw/mtop.common.getTimestamp/*200
4
2019-08-22T13:29:39.554338-0700192.168.1.7062.128.98.1580POST/amdc/mobileDispatch?appkey=21371601&deviceId=WUBChYh08SoDAFT3Z1dOglPe&platform=android&v=4.0200
5
2019-08-22T13:33:41.444892-0700192.168.1.70clients3.google.com80GET/generate_204204
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 165
Showing 1-20 of 165 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2019-08-22T13:35:24.435174-07001408096353800171flow192.168.1.7039100194.226.130.226443TCPpcapanalyzer
2
2019-08-22T13:35:24.435174-0700893279995821flow192.168.1.7037123192.168.1.153UDPpcapanalyzer
3
2019-08-22T13:35:24.435174-0700564612008081095flow192.168.1.7060510192.168.1.153UDPpcapanalyzer
4
2019-08-22T13:35:24.435174-0700424166594974669flow192.168.1.7031854192.168.1.153UDPpcapanalyzer
5
2019-08-22T13:35:24.435174-07001832069759520405flow192.168.1.7057301203.119.169.5443TCPpcapanalyzer
6
2019-08-22T13:35:24.435174-07001410132154161128flow192.168.1.705663054.201.24.85443TCPpcapanalyzer
7
2019-08-22T13:35:24.435174-0700706577840262028flow64.233.165.95443192.168.1.7050077TCPpcapanalyzer
8
2019-08-22T13:35:24.435174-0700144345138064711flow192.168.1.7043345108.128.20.177443TCPpcapanalyzer
9
2019-08-22T13:35:24.435174-07001129606379357278flow192.168.1.709693192.168.1.153UDPpcapanalyzer
10
2019-08-22T13:35:24.435174-07001692586397150175flow192.168.1.701731192.168.1.153UDPpcapanalyzer
11
2019-08-22T13:35:24.435174-07001975959719502946flow74.125.131.95443192.168.1.7040895TCPpcapanalyzer
12
2019-08-22T13:35:24.435174-07001133334414354542flow192.168.1.7028309192.168.1.153UDPpcapanalyzer
13
2019-08-22T13:35:24.435174-07001415294717718353flow192.168.1.706077123.32.85.67443TCPpcapanalyzer
14
2019-08-22T13:35:24.435174-0700289734134970583flow192.168.1.7043422108.128.20.177443TCPpcapanalyzer
15
2019-08-22T13:35:24.435174-07001134335107136818flow173.194.221.95443192.168.1.7053162TCPpcapanalyzer
16
2019-08-22T13:35:24.435174-07002120047311348670flow192.168.1.7030258192.168.1.153UDPpcapanalyzer
17
2019-08-22T13:35:24.435174-07001275871510253204flow192.168.1.704801531.13.92.48443TCPpcapanalyzer
18
2019-08-22T13:35:24.435174-07001839019012547637flow192.168.1.704457894.100.180.197443TCPpcapanalyzer
19
2019-08-22T13:35:24.435174-0700995809556870857flow192.168.1.7032560192.168.1.153UDPpcapanalyzer
20
2019-08-22T13:35:24.435174-0700152441188368466flow192.168.1.704477252.0.252.15242TCPpcapanalyzer
File 4
Showing 1-4 of 4 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2019-08-22T13:29:45.061475-0700205.204.101.196192.168.1.70/gw/mtop.common.getTimestamp/*UTF-8 Unicode text, with no line terminators109
2
2019-08-22T13:17:45.370079-0700198.11.132.178192.168.1.70/gw/mtop.common.getTimestamp/*UTF-8 Unicode text, with no line terminators109
3
2019-08-22T13:29:39.549792-0700192.168.1.7062.128.98.15/amdc/mobileDispatchASCII text, with very long lines, with no line terminators447
4
2019-08-22T13:29:39.554338-070062.128.98.15192.168.1.70/amdc/mobileDispatchASCII text, with very long lines, with no line terminators3072

Comments(not set)

Update Download PCAP Delete