Flow 1

Summary

Hosts
- 10.10.10.70:1035
- 10.10.10.10:8080
Start time: 0.000000 seconds
Last packet sniffed time: 65.564956 seconds
Protocol: TCP
Bytes of data: 6677 bytes
Packet #s: 1 - 12, 1343
.pcap of this flow: packets.pcap

Packets and Data

Data Segment

Packets	Start Time	Source	Destination	Data Bytes
1 - 1	0.000000	10.10.10.70:1035	10.10.10.10:8080	297

View data:

Hex dump
View as text
Raw
Carved as HTTP GET request
- URI: http://10.10.10.10:8080/index.php
- User Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)

Non-Data Packets

Packet #	Time	Source	Destination	IP ID#	Sequence #	Ack #	TCP Flags
2	0.000098	10.10.10.10:8080	10.10.10.70:1035	9360	3420183379	3905816560	---A----

Data Segment

Packets	Start Time	Source	Destination	Data Bytes
3 - 8	0.345405	10.10.10.10:8080	10.10.10.70:1035	5872

View data:

Hex dump
View as text
Raw
Carved as HTTP response
- Content-Type: text/html
- Content-Length: 5748
- Contents carved to: carve0000
- MD5: 03fae1d2f7a0bec010398e58138a493c

Data Segment

Packets	Start Time	Source	Destination	Data Bytes
9 - 9	0.462112	10.10.10.70:1035	10.10.10.10:8080	361

View data:

Hex dump
View as text
Raw
Carved as HTTP GET request
- URI: http://10.10.10.10:8080/index.phpmfKSxSANkeTeNrah.gif
- Referer: http://10.10.10.10:8080/index.php
- User Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)

Non-Data Packets

Packet #	Time	Source	Destination	IP ID#	Sequence #	Ack #	TCP Flags
10	0.462229	10.10.10.10:8080	10.10.10.70:1035	9366	3420189251	3905816921	---A----

Data Segment

Packets	Start Time	Source	Destination	Data Bytes
11 - 11	0.567143	10.10.10.10:8080	10.10.10.70:1035	147

View data:

Hex dump
View as text
Raw
Carved as HTTP response
- Content-Type: image/gif
- Content-Length: 43
- Contents carved to: carve0001
- MD5: df3e567d6f16d040326c7a0ea29a4f41

Non-Data Packets

Packet #	Time	Source	Destination	IP ID#	Sequence #	Ack #	TCP Flags
12	0.737217	10.10.10.70:1035	10.10.10.10:8080	52	3905816921	3420189398	---A----
1343	65.564956	10.10.10.70:1035	10.10.10.10:8080	450	3905816921	3420189398	---A-R--