lrec6.pcap

MD5e33c1c2f4abc1eb4c02be0988e420a70
Submission Date2020-03-26 04:23:09
Tags(not set)
Alert 1
Showing 1-1 of 1 item.
#
TimestampSrc IpDest IpAlert SignatureP
1
2019-03-21T17:44:25.315072-0700162.125.64.310.211.196.77ET POLICY Dropbox.com Offsite File Backup in Use*
DNS 108
Showing 1-20 of 108 items.
#
TimestampSrc IpDest IpDns TypeResource Record NameResource Record TypeResource Data
1
2019-03-21T17:41:18.712621-070010.211.196.7710.211.192.1queryitunes.apple.comA(not set)
2
2019-03-21T17:41:18.713103-070010.211.192.110.211.196.77answeritunes.apple.comA(not set)
3
2019-03-21T17:41:19.555114-070010.211.196.7710.211.192.1querystats.l.doubleclick.netA(not set)
4
2019-03-21T17:41:19.555583-070010.211.192.110.211.196.77answerstats.l.doubleclick.netA(not set)
5
2019-03-21T17:41:18.920883-070010.211.196.7710.211.192.1queryocsp.sca1b.amazontrust.comA(not set)
6
2019-03-21T17:41:18.926868-070010.211.192.110.211.196.77answerocsp.sca1b.amazontrust.comA(not set)
7
2019-03-21T17:41:30.369444-070010.211.196.7710.211.192.1queryade.googlesyndication.comA(not set)
8
2019-03-21T17:41:30.370156-070010.211.192.110.211.196.77answerade.googlesyndication.comA(not set)
9
2019-03-21T17:41:52.168293-070010.211.196.7710.211.192.1queryocsp.pki.googA(not set)
10
2019-03-21T17:41:52.233044-070010.211.192.110.211.196.77answerocsp.pki.googA(not set)
11
2019-03-21T17:41:52.144039-070010.211.196.7710.211.192.1querycdn.ampproject.orgA(not set)
12
2019-03-21T17:41:52.144422-070010.211.192.110.211.196.77answercdn.ampproject.orgA(not set)
13
2019-03-21T17:42:01.591538-070010.211.196.7710.211.192.1querygithub.comA(not set)
14
2019-03-21T17:42:01.592250-070010.211.196.7710.211.192.1querysourceforge.netA(not set)
15
2019-03-21T17:42:01.596378-070010.211.192.110.211.196.77answergithub.comA(not set)
16
2019-03-21T17:42:01.597287-070010.211.192.110.211.196.77answersourceforge.netA(not set)
17
2019-03-21T17:42:03.233507-070010.211.196.7710.211.192.1querygithub.map.fastly.netA(not set)
18
2019-03-21T17:42:03.238452-070010.211.192.110.211.196.77answergithub.map.fastly.netA(not set)
19
2019-03-21T17:42:22.240654-070010.211.196.7710.211.192.1queryaus5.mozilla.orgA(not set)
20
2019-03-21T17:42:22.252533-070010.211.192.110.211.196.77answeraus5.mozilla.orgA(not set)
TLS 48
Showing 1-20 of 48 items.
#
TimestampSource IPDestination IPTLS VersionServer Name Indication
1
2019-03-21T17:41:18.731797-070010.211.196.77184.86.208.173TLS 1.2itunes.apple.com
2
2019-03-21T17:41:52.164267-070010.211.196.77172.217.23.33TLS 1.3cdn.ampproject.org
3
2019-03-21T17:41:52.170976-070010.211.196.77172.217.23.33TLS 1.3cdn.ampproject.org
4
2019-03-21T17:41:59.644306-070010.211.196.7713.32.64.248TLS 1.2www.macupdate.com
5
2019-03-21T17:44:36.425546-070010.211.196.77216.58.201.14TLS 1.3apis.google.com
6
2019-03-21T17:44:37.232489-070010.211.196.77216.58.214.14TLS 1.3encrypted-tbn3.gstatic.com
7
2019-03-21T17:44:50.979927-070010.211.196.77216.58.210.54TLS 1.3i.ytimg.com
8
2019-03-21T17:44:56.041124-070010.211.196.7795.143.172.244TLS 1.2stegosuite.org
9
2019-03-21T17:45:12.940262-070010.211.196.77104.19.195.151TLS 1.3cdnjs.cloudflare.com
10
2019-03-21T17:45:12.971180-070010.211.196.77216.58.204.78TLS 1.3www.feedburner.com
11
2019-03-21T17:45:12.976739-070010.211.196.7762.221.205.57TLS 1.2manytools.org
12
2019-03-21T17:45:12.986903-070010.211.196.7796.16.108.141TLS 1.2s7.addthis.com
13
2019-03-21T17:45:13.030814-070010.211.196.7762.221.205.57TLS 1.2manytools.org
14
2019-03-21T17:42:03.270010-070010.211.196.77151.101.16.133TLS 1.2avatars0.githubusercontent.com
15
2019-03-21T17:42:05.857553-070010.211.196.77104.20.117.11TLS 1.3a.fsdn.com
16
2019-03-21T17:42:22.554110-070010.211.196.7734.218.159.169TLS 1.2aus5.mozilla.org
17
2019-03-21T17:43:14.486632-070010.211.196.7752.109.124.21TLS 1.2nexus.officeapps.live.com
18
2019-03-21T17:43:22.681819-070010.211.196.7754.191.241.246TLS 1.2incoming.telemetry.mozilla.org
19
2019-03-21T17:44:04.300696-070010.211.196.7734.218.152.83TLS 1.2profile.accounts.firefox.com
20
2019-03-21T17:44:04.307084-070010.211.196.7754.149.127.223TLS 1.2sync-594-us-west-2.sync.services.mozilla.com
TFTP 0
#TimestampSrc IpDest IpTftp PacketTftp FileTftp Mode
No results found.
HTTP 12
Showing 1-12 of 12 items.
#
TimestampSourceHostnamePortMethodURLStatus
1
2019-03-21T17:41:19.042184-070010.211.196.77ocsp.sca1b.amazontrust.com80POST/200
2
2019-03-21T17:41:19.042257-070010.211.196.77ocsp.sca1b.amazontrust.com80POST/200
3
2019-03-21T17:41:52.254097-070010.211.196.77ocsp.pki.goog80POST/GTSGIAG3200
4
2019-03-21T17:41:56.636547-070010.211.196.77www.hanynet.com80GET/isteg-1.6.2.zip200
5
2019-03-21T17:42:22.570559-070010.211.196.77ocsp.digicert.com80POST/200
6
2019-03-21T17:43:22.691820-070010.211.196.77ocsp.digicert.com80POST/200
7
2019-03-21T17:44:04.315105-070010.211.196.77ocsp.digicert.com80POST/200
8
2019-03-21T17:44:51.002786-070010.211.196.77ocsp.pki.goog80POST/GTSGIAG3200
9
2019-03-21T17:41:52.253748-070010.211.196.77ocsp.pki.goog80POST/GTSGIAG3200
10
2019-03-21T17:41:52.254056-070010.211.196.77ocsp.pki.goog80POST/GTSGIAG3200
11
2019-03-21T17:45:13.001945-070010.211.196.77ocsp.pki.goog80POST/GTSGIAG3200
12
2019-03-21T17:45:12.332930-070010.211.196.77ocsp.int-x3.letsencrypt.org80POST/200
SMB 0
#
TimestampSrc IpDest IpSMB DialectCommandSessionTree
No results found.
SMTP 0
#
TimestampSourceDestinationEmail FromEmail ToSubject
No results found.
Flow 191
Showing 1-20 of 191 items.
#
TimestampFlow IdEvent TypeSourceSource PortDestinationDestination PortProtocolHost
1
2019-03-21T17:45:13.054921-0700563247113093742flow10.211.196.775411710.211.192.153UDPpcapanalyzer
2
2019-03-21T17:45:13.054921-07001972505326992048flow10.211.196.7750070216.58.198.227443TCPpcapanalyzer
3
2019-03-21T17:45:13.054921-07001129036034719982flow34.210.221.14844310.211.196.7749571TCPpcapanalyzer
4
2019-03-21T17:45:13.054921-07001410605491103061flow10.211.196.7750052104.16.220.96443TCPpcapanalyzer
5
2019-03-21T17:45:13.054921-0700707734094945249flow10.211.196.7750054167.99.137.12443TCPpcapanalyzer
6
2019-03-21T17:45:13.054921-07001552575636156285flow10.211.196.7717500255.255.255.25517500UDPpcapanalyzer
7
2019-03-21T17:45:13.054921-07001693875765184332flow10.211.196.774962735.186.194.58443TCPpcapanalyzer
8
2019-03-21T17:45:13.054921-07001975952036204184flow10.211.196.775003550.19.60.226443TCPpcapanalyzer
9
2019-03-21T17:45:13.054921-07001694584433747574flow10.211.196.7750049104.244.42.5443TCPpcapanalyzer
10
2019-03-21T17:45:13.054921-0700148488561379435flow10.211.196.7750141216.58.201.14443TCPpcapanalyzer
11
2019-03-21T17:45:13.054921-0700712482179557976flow10.211.196.775006818.208.79.164443TCPpcapanalyzer
12
2019-03-21T17:45:13.054921-07001276643315223292flow10.211.196.7750114216.58.212.110443TCPpcapanalyzer
13
2019-03-21T17:45:13.054921-07001276810829815828flow10.211.196.776096510.211.192.153UDPpcapanalyzer
14
2019-03-21T17:45:13.054921-07001136947356423334flow10.211.196.7750098104.72.153.62443TCPpcapanalyzer
15
2019-03-21T17:45:13.054921-0700292601881046354flow10.211.196.775011213.32.123.4280TCPpcapanalyzer
16
2019-03-21T17:45:13.054921-070012232867723487flow10.211.196.7750131216.239.36.21443TCPpcapanalyzer
17
2019-03-21T17:45:13.054921-07001138347527506640flow10.211.196.7750148216.58.206.3580TCPpcapanalyzer
18
2019-03-21T17:45:13.054921-0700154611024656128flow10.211.196.774957793.184.220.2980TCPpcapanalyzer
19
2019-03-21T17:45:13.054921-070015507785193041flow10.211.196.7750155216.58.198.234443TCPpcapanalyzer
20
2019-03-21T17:45:13.054921-070016375367352395flow10.211.196.776199610.211.192.153UDPpcapanalyzer
File 23
Showing 1-20 of 23 items.
#
TimestampSourceDestinationFile NameFile MagicFile Size
1
2019-03-21T17:41:18.951101-070010.211.196.7713.32.123.42/data83
2
2019-03-21T17:41:19.042184-070013.32.123.4210.211.196.77/data471
3
2019-03-21T17:41:18.951099-070010.211.196.7713.32.123.42/data83
4
2019-03-21T17:41:19.042257-070013.32.123.4210.211.196.77/data471
5
2019-03-21T17:41:52.247338-070010.211.196.77216.58.206.35/GTSGIAG3data83
6
2019-03-21T17:41:52.254097-0700216.58.206.3510.211.196.77/GTSGIAG3data471
7
2019-03-21T17:41:56.636547-070067.205.13.8810.211.196.77/isteg-1.6.2.zipZip archive data, at least v1.0 to extract458526
8
2019-03-21T17:42:22.570218-070010.211.196.7793.184.220.29/data83
9
2019-03-21T17:42:22.570559-070093.184.220.2910.211.196.77/data471
10
2019-03-21T17:43:22.691766-070010.211.196.7793.184.220.29/data83
11
2019-03-21T17:43:22.691820-070093.184.220.2910.211.196.77/data471
12
2019-03-21T17:44:04.314974-070010.211.196.7793.184.220.29/data83
13
2019-03-21T17:44:04.315105-070093.184.220.2910.211.196.77/data471
14
2019-03-21T17:44:50.999311-070010.211.196.77216.58.206.35/GTSGIAG3data83
15
2019-03-21T17:44:51.002786-0700216.58.206.3510.211.196.77/GTSGIAG3data471
16
2019-03-21T17:41:52.247019-070010.211.196.77216.58.206.35/GTSGIAG3data83
17
2019-03-21T17:41:52.247240-070010.211.196.77216.58.206.35/GTSGIAG3data83
18
2019-03-21T17:41:52.253748-0700216.58.206.3510.211.196.77/GTSGIAG3data471
19
2019-03-21T17:41:52.254056-0700216.58.206.3510.211.196.77/GTSGIAG3data471
20
2019-03-21T17:45:13.001870-070010.211.196.77216.58.206.35/GTSGIAG3data83

Comments(not set)

Update Download PCAP Delete