01-21-56___25-10-2019.pcap

MD59776d3c05da3ddfdfdab6a5433daf41f
Submission Date2019-10-24 15:59:36
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 604
Showing 1-20 of 604 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2019-10-24T15:22:53.582037-0700192.168.0.1068.8.4.4querywww.google.comA(not set)
2
2019-10-24T15:22:53.610543-07008.8.4.4192.168.0.106answerwww.google.comA(not set)
3
2019-10-24T15:23:03.309856-0700192.168.0.101192.168.0.1querywww.cdn.viber.comA(not set)
4
2019-10-24T15:23:03.310131-0700192.168.0.101192.168.0.1querywww.cdn.viber.comA(not set)
5
2019-10-24T15:23:03.314831-0700192.168.0.1192.168.0.101answerwww.cdn.viber.comA(not set)
6
2019-10-24T15:23:03.315136-0700192.168.0.1192.168.0.101answerwww.cdn.viber.comA(not set)
7
2019-10-24T15:23:24.483059-0700192.168.0.101192.168.0.1querywww.cdn.viber.comA(not set)
8
2019-10-24T15:23:24.483181-0700192.168.0.101192.168.0.1querywww.cdn.viber.comA(not set)
9
2019-10-24T15:23:24.502470-0700192.168.0.1192.168.0.101answerwww.cdn.viber.comA(not set)
10
2019-10-24T15:23:24.502592-0700192.168.0.1192.168.0.101answerwww.cdn.viber.comA(not set)
11
2019-10-24T15:22:20.686386-0700192.168.0.101192.168.0.1querywww.cdn.viber.comA(not set)
12
2019-10-24T15:22:20.686691-0700192.168.0.101192.168.0.1querywww.cdn.viber.comA(not set)
13
2019-10-24T15:22:20.690781-0700192.168.0.1192.168.0.101answerwww.cdn.viber.comA(not set)
14
2019-10-24T15:22:20.691086-0700192.168.0.1192.168.0.101answerwww.cdn.viber.comA(not set)
15
2019-10-24T15:22:53.577917-0700192.168.0.1068.8.8.8querywww.google.comA(not set)
16
2019-10-24T15:22:41.992902-0700192.168.0.101192.168.0.1querywww.cdn.viber.comA(not set)
17
2019-10-24T15:22:41.993207-0700192.168.0.101192.168.0.1querywww.cdn.viber.comA(not set)
18
2019-10-24T15:22:41.996839-0700192.168.0.1192.168.0.101answerwww.cdn.viber.comA(not set)
19
2019-10-24T15:22:41.997144-0700192.168.0.1192.168.0.101answerwww.cdn.viber.comA(not set)
20
2019-10-24T15:23:45.673598-0700192.168.0.101192.168.0.1querywww.cdn.viber.comA(not set)
TLS 329
Showing 1-20 of 329 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2019-10-24T15:27:10.015610-0700192.168.0.106178.210.82.55TLSv1(not set)
2
2019-10-24T15:27:36.095909-0700192.168.0.10152.0.252.100TLS 1.2(not set)
3
2019-10-24T15:37:53.125613-0700192.168.0.106185.60.216.32TLSv1(not set)
4
2019-10-24T15:37:55.997183-0700192.168.0.106172.217.16.10TLS 1.3play.googleapis.com
5
2019-10-24T15:37:52.714565-0700192.168.0.10652.0.252.103TLS 1.2(not set)
6
2019-10-24T15:37:53.802952-0700192.168.0.10664.233.164.188TLS 1.3mtalk4.google.com
7
2019-10-24T15:37:56.523141-0700192.168.0.106172.217.16.10TLS 1.3play.googleapis.com
8
2019-10-24T15:41:41.309825-0700192.168.0.106178.210.82.55TLSv1(not set)
9
2019-10-24T15:48:16.448022-0700192.168.0.106172.217.16.1TLS 1.3lh3.googleusercontent.com
10
2019-10-24T15:47:39.086996-0700192.168.0.106178.210.82.55TLSv1(not set)
11
2019-10-24T15:48:35.656842-0700192.168.0.106172.217.16.10TLS 1.3play.googleapis.com
12
2019-10-24T15:48:24.845092-0700192.168.0.106172.217.16.3TLS 1.3beacons.gvt2.com
13
2019-10-24T15:48:42.194123-0700192.168.0.106172.217.16.10TLSv1play.googleapis.com
14
2019-10-24T15:48:39.872682-0700192.168.0.106172.217.16.35TLS 1.3connectivitycheck.gstatic.com
15
2019-10-24T15:48:42.545595-0700192.168.0.106193.84.22.140TLSv1r1---sn-3vhpuxm-afve.gvt1.com
16
2019-10-24T15:48:59.806606-0700192.168.0.106172.217.20.170TLS 1.3www.googleapis.com
17
2019-10-24T15:49:01.632670-0700192.168.0.10631.13.92.10TLSv1graph.facebook.com
18
2019-10-24T15:49:01.636241-0700192.168.0.10631.13.92.10TLSv1graph.facebook.com
19
2019-10-24T15:49:03.904759-0700192.168.0.106107.22.193.156TLSv1settings.crashlytics.com
20
2019-10-24T15:49:04.249487-0700192.168.0.106216.58.215.78TLS 1.3android.clients.google.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 133
Showing 1-20 of 133 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2019-10-24T15:24:55.783746-0700192.168.0.106connectivitycheck.gstatic.com80GET/generate_204204
2
2019-10-24T15:24:55.803280-0700192.168.0.101connectivitycheck.gstatic.com80GET/generate_204204
3
2019-10-24T15:37:49.072324-0700192.168.0.106clients3.google.com80GET/generate_204204
4
2019-10-24T15:37:49.930710-0700192.168.0.106www.yahoo.com80GET/301
5
2019-10-24T15:38:02.907820-0700192.168.0.106172.217.16.4680GET/generate_204204
6
2019-10-24T15:48:33.510833-0700192.168.0.106connectivitycheck.gstatic.com80GET/generate_204204
7
2019-10-24T15:48:34.147518-0700192.168.0.103connectivitycheck.gstatic.com80GET/generate_204204
8
2019-10-24T15:39:24.554256-0700192.168.0.106api.accuweather.com80GET/indices/v1/daily/1day/324561.json?apikey=183ce836db564ac6a9c2ceab9fb41c5e&language=ru&details=true200
9
2019-10-24T15:39:24.572262-0700192.168.0.103api.accuweather.com80GET/indices/v1/daily/1day/324561.json?apikey=183ce836db564ac6a9c2ceab9fb41c5e&language=ru&details=true200
10
2019-10-24T15:48:33.517578-0700192.168.0.103connectivitycheck.gstatic.com80GET/generate_204204
11
2019-10-24T15:48:34.139491-0700192.168.0.106connectivitycheck.gstatic.com80GET/generate_204204
12
2019-10-24T15:39:24.617736-0700192.168.0.106api.accuweather.com80GET/alerts/v1/324561.json?apikey=183ce836db564ac6a9c2ceab9fb41c5e&language=ru200
13
2019-10-24T15:39:24.661532-0700192.168.0.103api.accuweather.com80GET/alerts/v1/324561.json?apikey=183ce836db564ac6a9c2ceab9fb41c5e&language=ru200
14
2019-10-24T15:47:21.057483-0700192.168.0.106www.google.com80GET/200
15
2019-10-24T15:48:32.874117-0700192.168.0.106connectivitycheck.gstatic.com80GET/generate_204204
16
2019-10-24T15:48:32.883731-0700192.168.0.103connectivitycheck.gstatic.com80GET/generate_204204
17
2019-10-24T15:48:57.869294-0700192.168.0.106ua-odc.samsungapps.com80POST/ods.as200
18
2019-10-24T15:49:52.062824-0700192.168.0.103connectivitycheck.gstatic.com80GET/generate_204204
19
2019-10-24T15:49:52.052569-0700192.168.0.106connectivitycheck.gstatic.com80GET/generate_204204
20
2019-10-24T15:49:52.770622-0700192.168.0.106connectivitycheck.gstatic.com80GET/generate_204204
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 826
Showing 1-20 of 826 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2019-10-24T15:55:58.499174-07001886032413289946flow192.168.0.153192.168.0.10117888UDPpcapanalyzer
2
2019-10-24T15:55:58.499174-07001913932522501038flow31.13.92.33443192.168.0.10641528TCPpcapanalyzer
3
2019-10-24T15:55:58.499174-07001801662079291773flow192.168.0.106412138.8.8.853UDPpcapanalyzer
4
2019-10-24T15:55:58.499174-07001771859299604976flow31.13.92.10443192.168.0.10655315TCPpcapanalyzer
5
2019-10-24T15:55:58.499174-0700103700326747flow192.168.0.10142319192.168.0.153UDPpcapanalyzer
6
2019-10-24T15:55:58.499174-0700423583193067145flowfe80:0000:0000:0000:084e:6442:4461:37a5(not set)ff02:0000:0000:0000:0000:0000:0000:0016(not set)IPv6-ICMPpcapanalyzer
7
2019-10-24T15:55:58.499174-07001411191589785896flow192.168.0.1035353224.0.0.2515353UDPpcapanalyzer
8
2019-10-24T15:55:58.499174-0700715232933635574flow192.168.0.10145009192.168.0.153UDPpcapanalyzer
9
2019-10-24T15:55:58.499174-07001420387102526865flow192.168.0.10135822192.168.0.153UDPpcapanalyzer
10
2019-10-24T15:55:58.499174-07001290052021961405flow192.168.0.1011746192.168.0.153UDPpcapanalyzer
11
2019-10-24T15:55:58.499174-07001009609984477152flow192.168.0.106392178.8.4.453UDPpcapanalyzer
12
2019-10-24T15:55:58.499174-07001154193620667765flow192.168.0.106(not set)192.168.0.1(not set)ICMPpcapanalyzer
13
2019-10-24T15:55:58.499174-07001578018851134015flow192.168.0.106601838.8.8.853UDPpcapanalyzer
14
2019-10-24T15:55:58.499174-07001302032837655906flow192.168.0.10139574192.168.0.153UDPpcapanalyzer
15
2019-10-24T15:55:58.499174-0700889344473361270flow192.168.0.10040576239.255.255.2501900UDPpcapanalyzer
16
2019-10-24T15:55:58.499174-070046577384972699flow192.168.0.106510908.8.8.853UDPpcapanalyzer
17
2019-10-24T15:55:58.499174-07002019307398626739flow178.210.82.55443192.168.0.10647798TCPpcapanalyzer
18
2019-10-24T15:55:58.499174-07001881904963210583flowfe80:0000:0000:0000:0234:daff:fe98:7505(not set)ff02:0000:0000:0000:0000:0000:0000:0016(not set)IPv6-ICMPpcapanalyzer
19
2019-10-24T15:55:58.499174-07001321510515307776flow0000:0000:0000:0000:0000:0000:0000:0000(not set)ff02:0000:0000:0000:0000:0001:ff98:7505(not set)IPv6-ICMPpcapanalyzer
20
2019-10-24T15:55:58.499174-07001463557973339901flow192.168.0.1013809192.168.0.153UDPpcapanalyzer
File 87
Showing 1-20 of 87 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2019-10-24T15:37:49.930710-070087.248.98.7192.168.0.106/ASCII text, with no line terminators8
2
2019-10-24T15:39:24.554256-07002.23.110.169192.168.0.106/indices/v1/daily/1day/324561.jsonUTF-8 Unicode text, with very long lines, with no line terminators17064
3
2019-10-24T15:39:24.572262-07002.23.110.169192.168.0.103/indices/v1/daily/1day/324561.jsonUTF-8 Unicode text, with very long lines, with no line terminators17064
4
2019-10-24T15:39:24.617736-07002.23.110.169192.168.0.106/alerts/v1/324561.jsonASCII text, with no line terminators2
5
2019-10-24T15:39:24.661532-07002.23.110.169192.168.0.103/alerts/v1/324561.jsonASCII text, with no line terminators2
6
2019-10-24T15:47:21.057483-0700172.217.16.4192.168.0.106/HTML document, ASCII text, with very long lines, with no line terminators55974
7
2019-10-24T15:48:57.868531-0700192.168.0.10654.76.32.100/ods.asXML 1.0 document, ASCII text, with very long lines, with no line terminators390
8
2019-10-24T15:48:57.869294-070054.76.32.100192.168.0.106/ods.asXML 1.0 document, ASCII text, with very long lines, with no line terminators361
9
2019-10-24T15:50:17.009810-0700192.168.0.10654.229.195.1/ods.asXML 1.0 document, ASCII text, with very long lines, with no line terminators380
10
2019-10-24T15:50:17.038927-070054.229.195.1192.168.0.106/ods.asXML 1.0 document, ASCII text, with very long lines, with no line terminators361
11
2019-10-24T15:55:58.357407-070051.254.151.195192.168.0.106/HTML document, ASCII text54245
12
2019-10-24T15:55:58.421927-0700172.217.20.170192.168.0.106/cssASCII text584
13
2019-10-24T15:55:58.497343-070051.254.151.195192.168.0.106/assets/plugins/line-icons-pro/styles.cssASCII text9141
14
2019-10-24T15:55:58.515105-070051.254.151.195192.168.0.106/assets/css/headers/header-default.cssASCII text22163
15
2019-10-24T15:55:58.543489-070051.254.151.195192.168.0.106/assets/plugins/font-awesome/css/font-awesome.min.cssASCII text, with very long lines27466
16
2019-10-24T15:55:58.558811-070051.254.151.195192.168.0.106/assets/plugins/sky-forms-pro/skyforms/custom/custom-sky-forms.cssASCII text6233
17
2019-10-24T15:55:58.559024-070051.254.151.195192.168.0.106/assets/css/pages/page_job.cssASCII text1358
18
2019-10-24T15:55:58.569706-070051.254.151.195192.168.0.106/assets/shop/css/theme-colors/blue.cssASCII text8532
19
2019-10-24T15:55:58.721423-070051.254.151.195192.168.0.106/assets/plugins/sky-forms-pro/skyforms/js/jquery.form.min.jsASCII text, with very long lines14520
20
2019-10-24T15:55:58.772636-070051.254.151.195192.168.0.106/assets/css/blocks.cssASCII text134446

Comments(not set)

Update Download PCAP Delete