0b0e4eab-aece-4353-aba0-730b9fcb3a0e.pcap

MD5	bdeafd6f458ee1fa380fc3b50ab82d46
Submission Date	2019-10-09 16:11:46
Tags	(not set)

Alert 0

#		Timestamp	Src Ip	Dest Ip	Alert Signature	P
No results found.

DNS 13

Showing 1-13 of 13 items.

Timestamp

Src Ip

Dest Ip

Dns Type

Resource Record Name

Resource Record Type

Resource Data

2019-10-08T10:54:03.795311-0700

192.168.100.65

192.168.100.2

query

go.microsoft.com

(not set)

2019-10-08T10:54:03.816965-0700

192.168.100.65

192.168.100.2

query

robertmoore.hopto.org

(not set)

2019-10-08T10:54:03.824676-0700

192.168.100.2

192.168.100.65

answer

robertmoore.hopto.org

(not set)

2019-10-08T10:54:04.793134-0700

192.168.100.65

192.168.100.2

query

go.microsoft.com

(not set)

2019-10-08T10:54:04.793230-0700

192.168.100.2

192.168.100.65

answer

go.microsoft.com

(not set)

2019-10-08T10:54:24.996524-0700

192.168.100.65

192.168.100.2

query

vikkibret.mywire.org

(not set)

2019-10-08T10:54:25.104364-0700

192.168.100.2

192.168.100.65

answer

vikkibret.mywire.org

(not set)

2019-10-08T10:54:35.231346-0700

192.168.100.65

192.168.100.2

query

snick4059.ddns.net

(not set)

2019-10-08T10:54:35.238968-0700

192.168.100.2

192.168.100.65

answer

snick4059.ddns.net

(not set)

2019-10-08T10:54:03.830725-0700

192.168.100.65

192.168.100.2

query

ramseycynthia.gleeze.com

(not set)

2019-10-08T10:54:03.756832-0700

192.168.100.65

192.168.100.2

query

www.bing.com

(not set)

2019-10-08T10:54:03.977752-0700

192.168.100.2

192.168.100.65

answer

ramseycynthia.gleeze.com

(not set)

2019-10-08T10:54:03.757034-0700

192.168.100.2

192.168.100.65

answer

www.bing.com

(not set)

TLS 0

#		Timestamp	Source IP	Destination IP	TLS Version	Issuer
No results found.

TFTP 0

#	Timestamp	Src Ip	Dest Ip	Tftp Packet	Tftp File	Tftp Mode
No results found.

HTTP 2

Showing 1-2 of 2 items.

Timestamp

Source

Hostname

Port

Method

URL

Status

2019-10-08T10:54:04.230582-0700

192.168.100.65

www.bing.com

GET

/favicon.ico

200

2019-10-08T10:54:42.169085-0700

192.168.100.65

go.microsoft.com

GET

/fwlink/?prd=11324&pver=4.5&sbp=AppLaunch2&plcid=0x409&o1=SHIM_NOVERSION_FOUND&version=(null)&processName=iexplore.exe&platform=0000&osver=5&isServer=0&shimver=4.0.30319.0

(not set)

SMB 0

#		Timestamp	Src Ip	Dest Ip	SMB Dialect	Command	Session	Tree
No results found.

SMTP 0

#		Timestamp	Source	Destination	Email From	Email To	Subject
No results found.

Flow 20

Showing 1-20 of 20 items.

Timestamp

Flow Id

Event Type

Source

Source Port

Destination

Destination Port

Protocol

Host

2019-10-08T10:54:42.169085-0700

1409852229301420

flow

192.168.100.65

62685

192.168.100.2

UDP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

292224428117088

flow

192.168.100.65

61207

192.168.100.2

UDP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

1004780976447241

flow

192.168.100.65

50314

224.0.0.252

5355

UDP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

2155823622759313

flow

192.168.100.65

49451

13.107.21.200

TCP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

472866459723683

flow

192.168.100.65

49937

65.52.38.142

2404

TCP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

1751508285614951

flow

fe80:0000:0000:0000:a179:b3ff:0199:2314

546

ff02:0000:0000:0000:0000:0000:0001:0002

547

UDP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

2033472889416982

flow

192.168.100.65

49457

65.52.38.142

2404

TCP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

2035379853607053

flow

192.168.100.65

138

192.168.100.255

138

UDP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

1473263123761110

flow

192.168.100.65

53802

224.0.0.252

5355

UDP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

1755171893486255

flow

192.168.100.65

55625

192.168.100.2

UDP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

642599270198533

flow

192.168.100.65

59337

192.168.100.2

UDP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

1217463461609262

flow

fe80:0000:0000:0000:a179:b3ff:0199:2314

62104

ff02:0000:0000:0000:0000:0000:0001:0003

5355

UDP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

1500862583819172

flow

fe80:0000:0000:0000:a179:b3ff:0199:2314

61896

ff02:0000:0000:0000:0000:0000:0001:0003

5355

UDP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

657137733574279

flow

fe80:0000:0000:0000:a179:b3ff:0199:2314

61594

ff02:0000:0000:0000:0000:0000:0001:0003

5355

UDP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

1936174700263237

flow

192.168.100.65

53392

192.168.100.2

UDP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

1940495439464370

flow

192.168.100.65

57863

192.168.100.2

UDP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

680777235929857

flow

192.168.100.65

49779

65.52.38.142

2404

TCP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

1807669277459662

flow

192.168.100.65

137

192.168.100.255

137

UDP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

682263292038266

flow

192.168.100.65

64082

224.0.0.252

5355

UDP

pcapanalyzer

2019-10-08T10:54:42.169085-0700

137335022561281

flow

192.168.100.65

49471

2.19.38.59

TCP

pcapanalyzer

File 1

Showing 1-1 of 1 item.

Timestamp

Source

Destination

File Name

File Magic

File Size

2019-10-08T10:54:04.230582-0700

13.107.21.200

192.168.100.65

/favicon.ico

PNG image data, 16 x 16, 4-bit colormap, non-interlaced

237

Comments	(not set)

Update Download PCAP Delete