port4.root.2.pcap

MD5185d59f11156e97d237d5b7321c243a5
Submission Date2019-10-09 07:57:11
Tags
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 146
Showing 21-40 of 146 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
21
2019-04-18T10:13:00.244769-0700172.24.10.188172.24.1.1queryctldl.windowsupdate.comA(not set)
22
2019-04-18T10:13:00.878334-0700172.24.1.1172.24.10.188answerctldl.windowsupdate.comA(not set)
23
2019-04-18T10:13:04.700469-0700172.24.10.202208.91.112.53querywww.gstatic.comAAAA(not set)
24
2019-04-18T10:13:05.496316-0700208.91.112.53172.24.10.202answerwww.gstatic.comAAAA(not set)
25
2019-04-18T10:13:05.666771-0700172.24.10.188172.24.1.1queryctldl.windowsupdate.comA(not set)
26
2019-04-18T10:13:05.666809-0700172.24.1.1172.24.10.188answerctldl.windowsupdate.comA(not set)
27
2019-04-18T10:13:05.887640-0700172.24.10.202208.91.112.53queryyt3.ggpht.comA(not set)
28
2019-04-18T10:13:06.577884-0700208.91.112.53172.24.10.202answeryt3.ggpht.comA(not set)
29
2019-04-18T10:13:06.579694-0700172.24.10.202208.91.112.53queryphotos-ugc.l.googleusercontent.comA(not set)
30
2019-04-18T10:13:03.909068-0700172.24.10.202208.91.112.53querywww.gstatic.comA(not set)
31
2019-04-18T10:13:03.931752-0700172.24.10.202208.91.112.53queryclients1.google.comA(not set)
32
2019-04-18T10:13:04.256990-0700172.24.10.202208.91.112.53queryi.ytimg.comA(not set)
33
2019-04-18T10:13:04.698704-0700208.91.112.53172.24.10.202answerwww.gstatic.comA(not set)
34
2019-04-18T10:13:04.899676-0700172.24.10.202208.91.112.53queryclients1.google.comA(not set)
35
2019-04-18T10:13:05.080214-0700208.91.112.53172.24.10.202answeri.ytimg.comA(not set)
36
2019-04-18T10:13:05.694266-0700208.91.112.53172.24.10.202answerclients1.google.comA(not set)
37
2019-04-18T10:13:05.904482-0700172.24.10.202208.91.112.53queryytimg-edge-static.l.google.comAAAA(not set)
38
2019-04-18T10:13:06.417066-0700172.24.10.202208.91.112.53queryclients.l.google.comAAAA(not set)
39
2019-04-18T10:13:06.593102-0700208.91.112.53172.24.10.202answerytimg-edge-static.l.google.comAAAA(not set)
40
2019-04-18T10:13:08.053692-0700172.24.10.202208.91.112.53querygstaticadssl.l.google.comAAAA(not set)
TLS 70
Showing 1-20 of 70 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2019-04-18T10:12:58.767206-0700172.24.10.188172.217.10.142TLS 1.3play.google.com
2
2019-04-18T10:12:56.515235-0700172.24.10.18713.107.5.88TLS 1.2evoke-windowsservices-tas.msedge.net
3
2019-04-18T10:12:57.199332-0700172.24.10.202172.24.1.1TLS 1.2(not set)
4
2019-04-18T10:12:57.217448-0700172.24.10.188172.217.12.138TLS 1.3taskassist-pa.clients6.google.com
5
2019-04-18T10:12:58.043105-0700172.24.10.18954.203.74.83TLS 1.2jd.sital.space
6
2019-04-18T10:12:59.168418-0700172.24.10.188172.217.6.197TLS 1.3mail.google.com
7
2019-04-18T10:12:59.313219-0700172.24.10.202172.24.1.1TLS 1.2(not set)
8
2019-04-18T10:12:59.589214-0700172.24.10.188172.217.10.142TLS 1.3play.google.com
9
2019-04-18T10:12:58.013540-0700172.24.10.188172.217.11.33TLS 1.3lh3.googleusercontent.com
10
2019-04-18T10:13:00.219933-0700172.24.10.18852.189.181.71TLS 1.2c.urs.microsoft.com
11
2019-04-18T10:13:00.225018-0700172.24.10.18852.189.181.71TLS 1.2c.urs.microsoft.com
12
2019-04-18T10:13:04.347766-0700172.24.10.202172.24.1.1TLS 1.2(not set)
13
2019-04-18T10:13:05.830606-0700172.24.10.202172.217.10.3TLS 1.3www.gstatic.com
14
2019-04-18T10:13:06.223844-0700172.24.10.202172.217.12.182TLS 1.3i.ytimg.com
15
2019-04-18T10:13:02.219215-0700172.24.10.202172.24.1.1TLS 1.2(not set)
16
2019-04-18T10:13:05.496671-0700172.24.10.202172.217.10.3TLS 1.3www.gstatic.com
17
2019-04-18T10:13:05.883193-0700172.24.10.202172.217.12.182TLS 1.3i.ytimg.com
18
2019-04-18T10:13:06.250672-0700172.24.10.202172.217.10.238TLS 1.3clients1.google.com
19
2019-04-18T10:13:07.282282-0700172.24.10.202172.24.1.1TLS 1.2(not set)
20
2019-04-18T10:13:09.384421-0700172.24.10.202172.24.1.1TLS 1.2(not set)
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 6
Showing 1-6 of 6 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2019-04-18T10:13:01.178504-0700172.24.10.188ocsp.digicert.com80GET/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTBL0V27RVZ7LBduom%2FnYB45SPUEwQU5Z1ZMIJHWMys%2BghUNoZ7OrUETfACEA8sEMlbBsCTf7jUSfg%2BhWk%3D403
2
2019-04-18T10:13:01.405210-0700172.24.10.188crl3.digicert.com80GET/Omniroot2025.crl403
3
2019-04-18T10:13:14.888688-0700172.24.10.188ctldl.windowsupdate.com80GET/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab?8a97ea108abed56a403
4
2019-04-18T10:13:15.112128-0700172.24.10.188ctldl.windowsupdate.com80GET/msdownload/update/v3/static/trustedr/en/pinrulesstl.cab?ca6d4fc72938aef6403
5
2019-04-18T10:13:30.002254-0700172.24.10.188ctldl.windowsupdate.com80GET/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab?e19f463c081a8e2e403
6
2019-04-18T10:13:30.002254-0700172.24.10.188ctldl.windowsupdate.com80GET/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab?6d2dfc8dc96beec7403
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 222
Showing 81-100 of 222 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
81
2019-04-18T10:13:30.002254-0700195965134429762flow172.24.10.2026450074.125.96.137443TCPpcapanalyzer
82
2019-04-18T10:13:30.002254-07002026080762907140flow173.194.207.189443172.24.10.18962360TCPpcapanalyzer
83
2019-04-18T10:13:30.002254-07001041622717976230flow172.24.10.18852577172.217.12.138443TCPpcapanalyzer
84
2019-04-18T10:13:30.002254-07002168046612949702flow172.24.10.1885261713.68.93.109443TCPpcapanalyzer
85
2019-04-18T10:13:30.002254-0700338712667345569flow172.24.10.2026448474.125.102.121443TCPpcapanalyzer
86
2019-04-18T10:13:30.002254-07001325451338764570flow172.24.10.20264478103.233.38.147443TCPpcapanalyzer
87
2019-04-18T10:13:30.002254-0700340795724420719flow172.24.10.18752260208.91.112.5253UDPpcapanalyzer
88
2019-04-18T10:13:30.002254-07001889603881092219flow172.24.10.18852578172.217.10.142443TCPpcapanalyzer
89
2019-04-18T10:13:30.002254-07002030702148691185flow172.24.10.20264486172.217.10.132443TCPpcapanalyzer
90
2019-04-18T10:13:30.002254-07001186698123991150flow172.24.10.20250735208.91.112.5353UDPpcapanalyzer
91
2019-04-18T10:13:30.002254-07001468911834615079flow172.24.10.2026356931.13.67.16443TCPpcapanalyzer
92
2019-04-18T10:13:30.002254-070061554132418054flow172.24.10.18852458172.24.1.153UDPpcapanalyzer
93
2019-04-18T10:13:30.002254-07002172783961147190flow172.24.10.1885260313.68.93.109443TCPpcapanalyzer
94
2019-04-18T10:13:30.002254-0700906378493734556flow172.24.10.20264455172.24.1.1450TCPpcapanalyzer
95
2019-04-18T10:13:30.002254-07001611818282186618flow172.24.10.2026365352.173.26.181443TCPpcapanalyzer
96
2019-04-18T10:13:30.002254-070063912067970779flow172.24.10.18852585172.217.10.142443TCPpcapanalyzer
97
2019-04-18T10:13:30.002254-07001753646692211219flow172.24.10.20264453172.24.1.1450TCPpcapanalyzer
98
2019-04-18T10:13:30.002254-0700628403916544484flow172.24.10.20264492172.217.10.132443TCPpcapanalyzer
99
2019-04-18T10:13:30.002254-0700629301564592890flow172.24.10.20252271208.91.112.5353UDPpcapanalyzer
100
2019-04-18T10:13:30.002254-07002037041518443122flow172.24.10.18852573172.217.12.138443TCPpcapanalyzer
File 6
Showing 1-6 of 6 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2019-04-18T10:13:01.178504-070072.21.91.29172.24.10.188/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTBL0V27RVZ7LBduom/nYB45SPUEwQU5Z1ZMIJHWMys+ghUNoZ7OrUETfACEA8sEMlbBsCTf7jUSfg+hWk=HTML document, ASCII text, with CRLF, LF line terminators3551
2
2019-04-18T10:13:01.405210-070072.21.91.29172.24.10.188/Omniroot2025.crlHTML document, ASCII text3447
3
2019-04-18T10:13:14.888688-07008.253.151.120172.24.10.188/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cabHTML document, ASCII text3515
4
2019-04-18T10:13:15.112128-07008.253.151.120172.24.10.188/msdownload/update/v3/static/trustedr/en/pinrulesstl.cabHTML document, ASCII text3509
5
2019-04-18T10:13:30.002254-070013.107.4.50172.24.10.188/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cabHTML document, ASCII text3515
6
2019-04-18T10:13:30.002254-070013.107.4.50172.24.10.188/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cabHTML document, ASCII text3515

Comments

Update Download PCAP Delete