fwsts.pcap

MD57a1bc8ff9ffb3e25b8317abd000eb269
Submission Date2020-03-25 23:19:37
Tags(not set)
Alert 0
#
TimestampSrc IpDest IpAlert SignatureP
No results found.
DNS 54
Showing 1-20 of 54 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2020-03-25T23:12:07.444630-0700192.168.100.157192.168.100.2queryaccounts.google.comA(not set)
2
2020-03-25T23:12:07.457833-0700192.168.100.2192.168.100.157answeraccounts.google.comA(not set)
3
2020-03-25T23:12:10.851689-0700192.168.100.157192.168.100.2querywww.flavorwest.comA(not set)
4
2020-03-25T23:12:10.858750-0700192.168.100.2192.168.100.157answerwww.flavorwest.comA(not set)
5
2020-03-25T23:12:11.007734-0700192.168.100.157192.168.100.2queryocsp.godaddy.comA(not set)
6
2020-03-25T23:12:11.022580-0700192.168.100.2192.168.100.157answerocsp.godaddy.comA(not set)
7
2020-03-25T23:12:07.400358-0700192.168.100.157192.168.100.2queryflavorwest.comA(not set)
8
2020-03-25T23:12:07.400409-0700192.168.100.157192.168.100.2queryclientservices.googleapis.comA(not set)
9
2020-03-25T23:12:07.405908-0700192.168.100.2192.168.100.157answerflavorwest.comA(not set)
10
2020-03-25T23:12:07.414146-0700192.168.100.2192.168.100.157answerclientservices.googleapis.comA(not set)
11
2020-03-25T23:12:11.351272-0700192.168.100.157192.168.100.2querymaxcdn.bootstrapcdn.comA(not set)
12
2020-03-25T23:12:11.351373-0700192.168.100.157192.168.100.2queryhello.zonos.comA(not set)
13
2020-03-25T23:12:11.351478-0700192.168.100.157192.168.100.2queryfonts.googleapis.comA(not set)
14
2020-03-25T23:12:11.356649-0700192.168.100.2192.168.100.157answermaxcdn.bootstrapcdn.comA(not set)
15
2020-03-25T23:12:11.360427-0700192.168.100.2192.168.100.157answerhello.zonos.comA(not set)
16
2020-03-25T23:12:11.365046-0700192.168.100.2192.168.100.157answerfonts.googleapis.comA(not set)
17
2020-03-25T23:12:11.670548-0700192.168.100.157192.168.100.2querywww.google.comA(not set)
18
2020-03-25T23:12:11.676462-0700192.168.100.2192.168.100.157answerwww.google.comA(not set)
19
2020-03-25T23:12:16.734315-0700192.168.100.157192.168.100.2queryssl.gstatic.comA(not set)
20
2020-03-25T23:12:16.748454-0700192.168.100.2192.168.100.157answerssl.gstatic.comA(not set)
TLS 37
Showing 1-20 of 37 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2020-03-25T23:12:07.832146-0700192.168.100.157172.217.16.173TLS 1.3accounts.google.com
2
2020-03-25T23:12:10.590647-0700192.168.100.157172.217.16.173TLS 1.3accounts.google.com
3
2020-03-25T23:12:11.675459-0700192.168.100.157209.197.3.15TLS 1.3maxcdn.bootstrapcdn.com
4
2020-03-25T23:12:11.820155-0700192.168.100.157172.217.18.164TLS 1.3www.google.com
5
2020-03-25T23:12:10.938599-0700192.168.100.157151.101.2.133TLS 1.2www.flavorwest.com
6
2020-03-25T23:12:11.731874-0700192.168.100.157172.217.16.138TLS 1.3fonts.googleapis.com
7
2020-03-25T23:12:14.099314-0700192.168.100.157173.194.76.157TLS 1.3stats.g.doubleclick.net
8
2020-03-25T23:12:14.780692-0700192.168.100.157172.217.16.138TLS 1.3fonts.googleapis.com
9
2020-03-25T23:12:15.275419-0700192.168.100.157172.217.18.110TLS 1.3www.google-analytics.com
10
2020-03-25T23:12:16.867046-0700192.168.100.157173.194.76.157TLS 1.3stats.g.doubleclick.net
11
2020-03-25T23:12:11.992140-0700192.168.100.157172.217.21.195TLS 1.3fonts.gstatic.com
12
2020-03-25T23:12:12.545633-0700192.168.100.157172.217.18.110TLS 1.3www.google-analytics.com
13
2020-03-25T23:12:32.898390-0700192.168.100.157172.217.21.195TLS 1.3fonts.gstatic.com
14
2020-03-25T23:12:33.042457-0700192.168.100.157157.240.20.19TLS 1.3connect.facebook.net
15
2020-03-25T23:12:14.438931-0700192.168.100.157209.197.3.15TLS 1.3maxcdn.bootstrapcdn.com
16
2020-03-25T23:12:14.437081-0700192.168.100.157209.197.3.15TLS 1.3maxcdn.bootstrapcdn.com
17
2020-03-25T23:12:14.495967-0700192.168.100.157172.217.16.138TLS 1.3fonts.googleapis.com
18
2020-03-25T23:12:16.880209-0700192.168.100.157172.217.23.131TLS 1.3ssl.gstatic.com
19
2020-03-25T23:12:32.504336-0700192.168.100.15799.86.7.105TLS 1.2hello.zonos.com
20
2020-03-25T23:12:32.818562-0700192.168.100.15799.86.7.107TLS 1.2hello.zonos.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 7
Showing 1-7 of 7 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2020-03-25T23:12:11.043084-0700192.168.100.157flavorwest.com80GET/302
2
2020-03-25T23:12:11.146552-0700192.168.100.157ocsp.godaddy.com80GET//MEQwQjBAMD4wPDAJBgUrDgMCGgUABBTkIInKBAzXkF0Qh0pel3lfHJ9GPAQU0sSw0pHUTBFxs2HLPaH%2B3ahq1OMCAxvnFQ%3D%3D200
3
2020-03-25T23:12:11.237379-0700192.168.100.157ocsp.godaddy.com80GET//MEIwQDA%2BMDwwOjAJBgUrDgMCGgUABBQdI2%2BOBkuXH93foRUj4a7lAr4rGwQUOpqFBxBnKLbv9r0FQW4gwZTaD94CAQc%3D200
4
2020-03-25T23:12:41.274572-0700192.168.100.157redirector.gvt1.com80GET/edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvOTRmQUFXVHlhaGJaUTdMLWtCSkNJUl9ZQQ/1.0.0.5_nmmhkkegccagdldgiimedpiccmgmieda.crx302
5
2020-03-25T23:12:41.883884-0700192.168.100.157redirector.gvt1.com80GET/edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvOWVmQUFXS041NV9ZVXlJVWwxbGc5TUM4dw/7519.422.0.3_pkedcjkdefgpdelpbcmbmeomcjbeemfm.crx302
6
2020-03-25T23:12:41.524536-0700192.168.100.157r2---sn-h5q7knee.gvt1.com80GET/edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvOTRmQUFXVHlhaGJaUTdMLWtCSkNJUl9ZQQ/1.0.0.5_nmmhkkegccagdldgiimedpiccmgmieda.crx?cms_redirect=yes&mh=QJ&mip=185.253.99.196&mm=28&mn=sn-h5q7knee&ms=nvh&mt=1585203130&mv=m&mvi=1&pl=24&shardbypass=yes200
7
2020-03-25T23:12:42.241957-0700192.168.100.157r5---sn-h5q7kne6.gvt1.com80GET/edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvOWVmQUFXS041NV9ZVXlJVWwxbGc5TUM4dw/7519.422.0.3_pkedcjkdefgpdelpbcmbmeomcjbeemfm.crx?cms_redirect=yes&mh=bs&mip=185.253.99.196&mm=28&mn=sn-h5q7kne6&ms=nvh&mt=1585203070&mv=m&mvi=4&pl=24&shardbypass=yes200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 97
Showing 1-20 of 97 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2020-03-25T23:12:42.024223-0700141297037458839flow192.168.100.15762184224.0.0.2525355UDPpcapanalyzer
2
2020-03-25T23:12:42.024223-07001837407539760328flow192.168.100.15761207239.255.255.2501900UDPpcapanalyzer
3
2020-03-25T23:12:42.024223-0700316050666480088flowfe80:0000:0000:0000:a179:b3ff:0199:231449676ff02:0000:0000:0000:0000:0000:0001:00035355UDPpcapanalyzer
4
2020-03-25T23:12:42.024223-0700471367421471870flow192.168.100.15761205224.0.0.2525355UDPpcapanalyzer
5
2020-03-25T23:12:42.024223-0700224722481863277flowfe80:0000:0000:0000:a179:b3ff:0199:231455862ff02:0000:0000:0000:0000:0000:0001:00035355UDPpcapanalyzer
6
2020-03-25T23:12:42.024223-07001351509299637147flowfe80:0000:0000:0000:a179:b3ff:0199:231462099ff02:0000:0000:0000:0000:0000:0001:00035355UDPpcapanalyzer
7
2020-03-25T23:12:42.024223-07001495876035173118flow192.168.100.15750978224.0.0.2525355UDPpcapanalyzer
8
2020-03-25T23:12:42.024223-07002200617891456142flow192.168.100.15759726224.0.0.2525355UDPpcapanalyzer
9
2020-03-25T23:12:42.024223-07001075403032065311flowfe80:0000:0000:0000:a179:b3ff:0199:23145353ff02:0000:0000:0000:0000:0000:0000:00fb5353UDPpcapanalyzer
10
2020-03-25T23:12:42.024223-070095965804969936flow192.168.100.1575353224.0.0.2515353UDPpcapanalyzer
11
2020-03-25T23:12:42.024223-07001801879570463944flowfe80:0000:0000:0000:a179:b3ff:0199:231452337ff02:0000:0000:0000:0000:0000:0001:00035355UDPpcapanalyzer
12
2020-03-25T23:12:42.024223-0700971902910137692flowfe80:0000:0000:0000:a179:b3ff:0199:2314(not set)ff02:0000:0000:0000:0000:0000:0000:0016(not set)IPv6-ICMPpcapanalyzer
13
2020-03-25T23:13:02.144654-07002111160167072838flow192.168.100.15749664151.101.2.110443TCPpcapanalyzer
14
2020-03-25T23:13:02.144654-0700143936294944489flow192.168.100.15760242192.168.100.253UDPpcapanalyzer
15
2020-03-25T23:13:02.144654-0700426274562067089flow192.168.100.15758882192.168.100.253UDPpcapanalyzer
16
2020-03-25T23:13:02.144654-0700428462847861428flow192.168.100.15750812192.168.100.253UDPpcapanalyzer
17
2020-03-25T23:13:02.144654-0700571974884565109flow192.168.100.1574961099.86.7.105443TCPpcapanalyzer
18
2020-03-25T23:13:02.144654-0700150666508492479flow192.168.100.15749180172.217.21.227443TCPpcapanalyzer
19
2020-03-25T23:13:02.144654-070011857462139556flow192.168.100.15749637104.22.24.135443TCPpcapanalyzer
20
2020-03-25T23:13:02.144654-07002122956293402347flow192.168.100.15760679224.0.0.2525355UDPpcapanalyzer
File 6
Showing 1-6 of 6 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2020-03-25T23:12:11.146552-0700192.124.249.36192.168.100.157/MEQwQjBAMD4wPDAJBgUrDgMCGgUABBTkIInKBAzXkF0Qh0pel3lfHJ9GPAQU0sSw0pHUTBFxs2HLPaH+3ahq1OMCAxvnFQ==data1697
2
2020-03-25T23:12:11.237379-0700192.124.249.36192.168.100.157/MEIwQDA+MDwwOjAJBgUrDgMCGgUABBQdI2+OBkuXH93foRUj4a7lAr4rGwQUOpqFBxBnKLbv9r0FQW4gwZTaD94CAQc=data1731
3
2020-03-25T23:12:41.274572-0700216.58.205.238192.168.100.157/edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvOTRmQUFXVHlhaGJaUTdMLWtCSkNJUl9ZQQ/1.0.0.5_nmmhkkegccagdldgiimedpiccmgmieda.crxHTML document, ASCII text, with very long lines, with CRLF, LF line terminators520
4
2020-03-25T23:12:41.883884-0700216.58.205.238192.168.100.157/edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvOWVmQUFXS041NV9ZVXlJVWwxbGc5TUM4dw/7519.422.0.3_pkedcjkdefgpdelpbcmbmeomcjbeemfm.crxHTML document, ASCII text, with very long lines, with CRLF, LF line terminators525
5
2020-03-25T23:12:41.524536-070074.125.168.39192.168.100.157/edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvOTRmQUFXVHlhaGJaUTdMLWtCSkNJUl9ZQQ/1.0.0.5_nmmhkkegccagdldgiimedpiccmgmieda.crxdata300953
6
2020-03-25T23:12:42.241957-070074.125.97.138192.168.100.157/edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvOWVmQUFXS041NV9ZVXlJVWwxbGc5TUM4dw/7519.422.0.3_pkedcjkdefgpdelpbcmbmeomcjbeemfm.crxdata883587

Comments(not set)

Update Download PCAP Delete