port4.root.2.pcap

MD5185d59f11156e97d237d5b7321c243a5
Submission Date2019-10-09 07:57:11
Tags
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 146
Showing 21-40 of 146 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
21
2019-04-18T10:13:00.244769-0700172.24.10.188172.24.1.1queryctldl.windowsupdate.comA(not set)
22
2019-04-18T10:13:00.878334-0700172.24.1.1172.24.10.188answerctldl.windowsupdate.comA(not set)
23
2019-04-18T10:13:04.700469-0700172.24.10.202208.91.112.53querywww.gstatic.comAAAA(not set)
24
2019-04-18T10:13:05.496316-0700208.91.112.53172.24.10.202answerwww.gstatic.comAAAA(not set)
25
2019-04-18T10:13:05.666771-0700172.24.10.188172.24.1.1queryctldl.windowsupdate.comA(not set)
26
2019-04-18T10:13:05.666809-0700172.24.1.1172.24.10.188answerctldl.windowsupdate.comA(not set)
27
2019-04-18T10:13:05.887640-0700172.24.10.202208.91.112.53queryyt3.ggpht.comA(not set)
28
2019-04-18T10:13:06.577884-0700208.91.112.53172.24.10.202answeryt3.ggpht.comA(not set)
29
2019-04-18T10:13:06.579694-0700172.24.10.202208.91.112.53queryphotos-ugc.l.googleusercontent.comA(not set)
30
2019-04-18T10:13:03.909068-0700172.24.10.202208.91.112.53querywww.gstatic.comA(not set)
31
2019-04-18T10:13:03.931752-0700172.24.10.202208.91.112.53queryclients1.google.comA(not set)
32
2019-04-18T10:13:04.256990-0700172.24.10.202208.91.112.53queryi.ytimg.comA(not set)
33
2019-04-18T10:13:04.698704-0700208.91.112.53172.24.10.202answerwww.gstatic.comA(not set)
34
2019-04-18T10:13:04.899676-0700172.24.10.202208.91.112.53queryclients1.google.comA(not set)
35
2019-04-18T10:13:05.080214-0700208.91.112.53172.24.10.202answeri.ytimg.comA(not set)
36
2019-04-18T10:13:05.694266-0700208.91.112.53172.24.10.202answerclients1.google.comA(not set)
37
2019-04-18T10:13:05.904482-0700172.24.10.202208.91.112.53queryytimg-edge-static.l.google.comAAAA(not set)
38
2019-04-18T10:13:06.417066-0700172.24.10.202208.91.112.53queryclients.l.google.comAAAA(not set)
39
2019-04-18T10:13:06.593102-0700208.91.112.53172.24.10.202answerytimg-edge-static.l.google.comAAAA(not set)
40
2019-04-18T10:13:08.053692-0700172.24.10.202208.91.112.53querygstaticadssl.l.google.comAAAA(not set)
TLS 70
Showing 21-40 of 70 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
21
2019-04-18T10:13:10.241515-0700172.24.10.202172.24.1.1TLS 1.2(not set)
22
2019-04-18T10:13:07.120994-0700172.24.10.202172.217.3.97TLS 1.3yt3.ggpht.com
23
2019-04-18T10:13:07.379997-0700172.24.10.202172.217.3.97TLS 1.3yt3.ggpht.com
24
2019-04-18T10:13:12.082908-0700172.24.10.188172.217.10.142TLS 1.3play.google.com
25
2019-04-18T10:13:12.336891-0700172.24.10.188172.217.10.142TLS 1.3play.google.com
26
2019-04-18T10:13:16.208417-0700172.24.10.18813.68.93.109TLS 1.2sls.update.microsoft.com
27
2019-04-18T10:13:08.823283-0700172.24.10.188172.217.10.227TLS 1.3ssl.gstatic.com
28
2019-04-18T10:13:17.018119-0700172.24.10.18813.68.93.109TLS 1.2sls.update.microsoft.com
29
2019-04-18T10:13:19.095521-0700172.24.10.202172.217.9.238TLS 1.3s.ytimg.com
30
2019-04-18T10:13:19.219436-0700172.24.10.18813.68.93.109TLS 1.2sls.update.microsoft.com
31
2019-04-18T10:13:20.026204-0700172.24.10.18813.68.93.109TLS 1.2sls.update.microsoft.com
32
2019-04-18T10:13:20.833456-0700172.24.10.18813.68.93.109TLS 1.2sls.update.microsoft.com
33
2019-04-18T10:13:21.854021-0700172.24.10.18813.68.93.109TLS 1.2sls.update.microsoft.com
34
2019-04-18T10:13:22.387704-0700172.24.10.202172.24.1.1TLS 1.2(not set)
35
2019-04-18T10:13:23.946573-0700172.24.10.18813.68.93.109TLS 1.2sls.update.microsoft.com
36
2019-04-18T10:13:24.459737-0700172.24.10.202172.24.1.1TLS 1.2(not set)
37
2019-04-18T10:13:10.553266-0700172.24.10.202172.24.1.1TLS 1.2(not set)
38
2019-04-18T10:13:11.002470-0700172.24.10.18813.68.93.109TLS 1.2sls.update.microsoft.com
39
2019-04-18T10:13:11.562720-0700172.24.10.202172.24.1.1TLS 1.2(not set)
40
2019-04-18T10:13:11.810022-0700172.24.10.18813.68.93.109TLS 1.2sls.update.microsoft.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 6
Showing 1-6 of 6 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2019-04-18T10:13:01.178504-0700172.24.10.188ocsp.digicert.com80GET/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTBL0V27RVZ7LBduom%2FnYB45SPUEwQU5Z1ZMIJHWMys%2BghUNoZ7OrUETfACEA8sEMlbBsCTf7jUSfg%2BhWk%3D403
2
2019-04-18T10:13:01.405210-0700172.24.10.188crl3.digicert.com80GET/Omniroot2025.crl403
3
2019-04-18T10:13:14.888688-0700172.24.10.188ctldl.windowsupdate.com80GET/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab?8a97ea108abed56a403
4
2019-04-18T10:13:15.112128-0700172.24.10.188ctldl.windowsupdate.com80GET/msdownload/update/v3/static/trustedr/en/pinrulesstl.cab?ca6d4fc72938aef6403
5
2019-04-18T10:13:30.002254-0700172.24.10.188ctldl.windowsupdate.com80GET/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab?e19f463c081a8e2e403
6
2019-04-18T10:13:30.002254-0700172.24.10.188ctldl.windowsupdate.com80GET/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab?6d2dfc8dc96beec7403
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 222
Showing 141-160 of 222 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
141
2019-04-18T10:13:30.002254-0700937388157250707flow172.24.10.18854540172.24.1.153UDPpcapanalyzer
142
2019-04-18T10:13:30.002254-07001782534642350551flow172.24.10.18912317.253.14.125123UDPpcapanalyzer
143
2019-04-18T10:13:30.002254-07001360442436730782flow172.24.10.20249611208.91.112.5353UDPpcapanalyzer
144
2019-04-18T10:13:30.002254-07001502313796848339flow172.24.10.1885260952.114.77.33443TCPpcapanalyzer
145
2019-04-18T10:13:30.002254-0700658404261064820flow172.24.10.18959191208.91.112.5253UDPpcapanalyzer
146
2019-04-18T10:13:30.002254-0700377195572468935flow172.24.10.18849472172.24.1.153UDPpcapanalyzer
147
2019-04-18T10:13:30.002254-0700940450469710961flow172.24.10.20254265208.91.112.5353UDPpcapanalyzer
148
2019-04-18T10:13:30.002254-0700236887580850730flow172.24.10.20264439172.24.1.1450TCPpcapanalyzer
149
2019-04-18T10:13:30.002254-070096253172004171flow172.24.10.20264442172.24.1.1450TCPpcapanalyzer
150
2019-04-18T10:13:30.002254-07001645074213271066flow172.24.10.18863712208.91.112.5253UDPpcapanalyzer
151
2019-04-18T10:13:30.002254-0700941696009591135flow172.24.10.2026370431.13.67.52443TCPpcapanalyzer
152
2019-04-18T10:13:30.002254-0700519547968369999flow173.194.68.189443172.24.10.18852239TCPpcapanalyzer
153
2019-04-18T10:13:30.002254-07001786262674361637flow172.24.10.20264460172.217.9.238443TCPpcapanalyzer
154
2019-04-18T10:13:30.002254-0700379398891519999flow172.24.10.18912317.253.24.125123UDPpcapanalyzer
155
2019-04-18T10:13:30.002254-0700801705845014823flow172.24.10.1885258752.189.181.71443TCPpcapanalyzer
156
2019-04-18T10:13:30.002254-0700943044628463281flow172.24.10.18852571172.217.6.206443TCPpcapanalyzer
157
2019-04-18T10:13:30.002254-07002071001824852433flow172.24.10.18852569172.217.10.142443TCPpcapanalyzer
158
2019-04-18T10:13:30.002254-07001508163541933298flow172.24.10.20261186208.91.112.5353UDPpcapanalyzer
159
2019-04-18T10:13:30.002254-07001789763072169988flow172.24.10.1885259713.68.93.109443TCPpcapanalyzer
160
2019-04-18T10:13:30.002254-07001649480849835265flow172.24.10.20264440172.24.1.1450TCPpcapanalyzer
File 6
Showing 1-6 of 6 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2019-04-18T10:13:01.178504-070072.21.91.29172.24.10.188/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTBL0V27RVZ7LBduom/nYB45SPUEwQU5Z1ZMIJHWMys+ghUNoZ7OrUETfACEA8sEMlbBsCTf7jUSfg+hWk=HTML document, ASCII text, with CRLF, LF line terminators3551
2
2019-04-18T10:13:01.405210-070072.21.91.29172.24.10.188/Omniroot2025.crlHTML document, ASCII text3447
3
2019-04-18T10:13:14.888688-07008.253.151.120172.24.10.188/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cabHTML document, ASCII text3515
4
2019-04-18T10:13:15.112128-07008.253.151.120172.24.10.188/msdownload/update/v3/static/trustedr/en/pinrulesstl.cabHTML document, ASCII text3509
5
2019-04-18T10:13:30.002254-070013.107.4.50172.24.10.188/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cabHTML document, ASCII text3515
6
2019-04-18T10:13:30.002254-070013.107.4.50172.24.10.188/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cabHTML document, ASCII text3515

Comments

Update Download PCAP Delete