(C) 1998-2010 - Luca Deri  
Please enable make sure that the ntop html/ directory is properly installed

 

 

Info about 10.0.0.56

IP Address10.0.0.56 [unicast] [ Purge Asset ]
Custom Host Name
First/Last SeenFri Sep 20 05:50:24 2024  -  Fri Sep 20 08:38:43 2024 [Inactive since 0 sec]
Subnet10.0.0.0/22
MAC Address Network Interface Card (NIC)94:10:3E:1B:C1:97  
Host LocationLocal (inside specified/local subnet or known network list)
IP TTL (Time to Live)63:253 [~0 hop(s)]
Total Data Sent569.1 MBytes/2,295,329 Pkts/0 Retran. Pkts [0%]
Broadcast Pkts Sent0 Pkts
Data Sent Stats
Local 5.0 %
  
Rem 95.0 %
IP vs. Non-IP Sent
IP 95.0 %
  
Non-IP 5.0 %
Total Data Rcvd4.9 GBytes/3,770,022 Pkts/0 Retran. Pkts [0%]
Data Rcvd Stats
Local 13.5 %
  
Rem 86.5 %
IP vs. Non-IP Rcvd
IP 86.5 %
  
Non-IP 13.5 %
Sent vs. Rcvd Pkts
Sent 37.8 %
  
Rcvd 62.2 %
Sent vs. Rcvd Data
Sent 10.3 %
  
Rcvd 89.7 %
Used Subnet Routers Jetway Information Co., Ltd.:AB:14:78 Network Card
Host TypeName Server DNS
Host Healthness (Risk Flags) High Risk Medium Risk Low Risk
  1. Medium RiskSuspicious activities: too many host contacts
  2. Low RiskUnexpected packets (e.g. traffic to closed port or connection reset):
    [Rcvd: rejected] [Sent: udp to closed] [Rcvd: port unreac] 

 

Host Traffic Stats

TimeTot. Traffic Sent% Traffic SentTot. Traffic Rcvd% Traffic Rcvd
8 AM 511.0 MBytes89.8 %4.0 GBytes82.3 %
7 AM 9.9 MBytes1.7 %162.3 MBytes3.3 %
6 AM 48.2 MBytes8.5 %718.3 MBytes14.4 %
5 AM 5460.0 %4100.0 %
4 AM 00.0 %00.0 %
3 AM 00.0 %00.0 %
2 AM 00.0 %00.0 %
1 AM 00.0 %00.0 %
12 AM 00.0 %00.0 %
11 PM 00.0 %00.0 %
10 PM 00.0 %00.0 %
9 PM 00.0 %00.0 %
8 PM 00.0 %00.0 %
7 PM 00.0 %00.0 %
6 PM 00.0 %00.0 %
5 PM 00.0 %00.0 %
4 PM 00.0 %00.0 %
3 PM 00.0 %00.0 %
2 PM 00.0 %00.0 %
1 PM 00.0 %00.0 %
12 PM 00.0 %00.0 %
11 AM 00.0 %00.0 %
10 AM 00.0 %00.0 %
9 AM 00.0 %00.0 %
Total

 

Packet Statistics

TCP ConnectionsDirected toRcvd From
Rejected0  51

AnomalyPkts Sent toPkts Rcvd from
UDP Pkt to Closed Port88 1,087
ICMP Port Unreachable1,087 139
ICMP Net Unreachable33,482 0 

ARPPacket
Request Sent0
Reply Rcvd249 (0.0 %)
Reply Sent259

 

Protocol Distribution

ProtocolData SentData Rcvd
TCP183.4 MBytes
33%

 

 1.6 GBytes
36%

 

UDP351.7 MBytes
65%

 

 2.7 GBytes
63%

 

ICMP5.7 MBytes
1%

 

 35.7 KBytes 
IPsec0.0 KBytes  2.7 KBytes 
(R)ARP22.8 KBytes  13.9 KBytes 
IPsec0.4 KBytes  0.0 KBytes 
Protocol Distribution
IP Distribution

 

ICMP Traffic

TypePkt SentPkt Rcvd
Unreach34,569139
Time Exceeded032

 

IP Fragments Distribution

ProtocolData SentData Rcvd
UDP0.0 KBytes  104.2 KBytes100
Fragment Distribution Received Fragment Distribution for 10.0.0.56-65535
IP Fragment Distribution Received IP Fragment Distribution for 10.0.0.56-65535

 

Last Contacted Peers

Sent ToIP Address
157.240.208.23 157.240.208.23 
204.141.172.15 204.141.172.15 
157.240.208.61 157.240.208.61 
31.13.95.63 31.13.95.63 
119.110.115.204 119.110.115.204 
157.240.208.16 157.240.208.16 
36.91.231.209 36.91.231.209 
157.240.208.3 157.240.208.3 
Total Contacts166608
Received FromIP Address
204.141.172.15 204.141.172.15 
47.241.218.164 47.241.218.164 
57.144.100.9 57.144.100.9 
157.240.208.61 157.240.208.61 
31.13.95.63 31.13.95.63 
119.110.115.204 119.110.115.204 
157.240.208.16 157.240.208.16 
157.240.208.3 157.240.208.3 
Total Contacts190811

 

TCP/UDP Service/Port Usage

IP ServicePort# Client Sess.Last Client Peer# Server Sess.Last Server Peer
domain531672/294.7 KBytes8.8.8.8   
http8060720/105.5 MBytes74.125.200.102   
ntp123518/24.3 KBytes216.239.35.0   
sgmp-traps16016/3.6 KBytes202.63.48.2   
29929973/10.2 KBytes8.215.162.27   
30030039/5.2 KBytes8.215.162.23   
30230239/5.1 KBytes8.215.162.9   
30330395/17.1 KBytes8.215.162.27   
https44343540/4.9 GBytes157.240.208.3   
isakmp50016/4.8 KBytes115.178.175.4   
idfp54917/2.7 KBytes169.136.71.50   
853853582/212.4 KBytes8.8.8.8   
imaps99356/31.9 KBytes74.125.24.108   

 

TCP/UDP - Traffic on Other Ports

Client PortServer Port

 

TCP/UDP Recently Used Ports

Client PortServer Port