DumpFile: 2018-03-27_win23.pcap FileSize: 183.92MB Id: 197001010100 StartTime: Thu Jan 1 01:00:14 1970 EndTime: Wed Feb 4 14:38:15 1970 TotalTime: 2986680.87 seconds TotalCapSize: 154.77MB CapLen: 1514 bytes # of packets: 1909794 (154.77MB) AvgRate: 1.92Kbps stddev:1.28K PeakRate: 634.77Kbps ### IP flow (unique src/dst pair) Information ### # of flows: 131 (avg. 14578.58 pkts/flow) Top 10 big flow size (bytes/total in %): 4.2% 2.5% 1.1% 1.0% 0.9% 0.9% 0.8% 0.7% 0.7% 0.6% ### IP address Information ### # of IPv4 addresses: 57 Top 10 bandwidth usage (bytes/total in %): 35.9% 28.0% 21.8% 17.6% 12.9% 12.5% 12.3% 9.4% 7.5% 6.1% ### Packet Size Distribution (including MAC headers) ### <<<< [ 32- 63]: 445859 [ 64- 127]: 1368570 [ 128- 255]: 72976 [ 256- 511]: 19217 [ 512- 1023]: 3077 [ 1024- 2047]: 95 >>>> ### Protocol Breakdown ### <<<< protocol packets bytes bytes/pkt ------------------------------------------------------------------------ [0] total 1909794 (100.00%) 162292804 (100.00%) 84.98 [1] ip 227235 ( 11.90%) 31334894 ( 19.31%) 137.90 [2] tcp 2334 ( 0.12%) 279648 ( 0.17%) 119.81 [3] ftpdata 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] ftp 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] ssh 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] telnet 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] smtp 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] name 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] dns 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] http(s) 18 ( 0.00%) 1889 ( 0.00%) 104.94 [3] http(c) 21 ( 0.00%) 1994 ( 0.00%) 94.95 [3] kerb5 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] pop3 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] sunrpc 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] ident 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] nntp 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] epmap 4 ( 0.00%) 280 ( 0.00%) 70.00 [3] netb-se 4 ( 0.00%) 280 ( 0.00%) 70.00 [3] imap 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] bgp 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] ldap 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] https 283 ( 0.01%) 146805 ( 0.09%) 518.75 [3] ms-ds 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] rlogin 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] rtsp 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] ldaps 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] socks 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] mssql-s 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] squid 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] ms-gc 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] ms-gcs 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] mysql 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] realaud 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] icecast 4 ( 0.00%) 280 ( 0.00%) 70.00 [3] gnu6346 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] irc6666 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] irc6667 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] irc6668 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] irc6669 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] napster 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] irc7000 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] http-a 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] http-tw 2 ( 0.00%) 128 ( 0.00%) 64.00 [3] other 1930 ( 0.10%) 123640 ( 0.08%) 64.06 [2] udp 191838 ( 10.04%) 29162863 ( 17.97%) 152.02 [3] sunrpc 1 ( 0.00%) 98 ( 0.00%) 98.00 [3] netb-ns 78171 ( 4.09%) 7200352 ( 4.44%) 92.11 [3] netb-se 234 ( 0.01%) 54424 ( 0.03%) 232.58 [3] mcast 56701 ( 2.97%) 12401071 ( 7.64%) 218.71 [3] other 56731 ( 2.97%) 9506918 ( 5.86%) 167.58 [2] icmp 5 ( 0.00%) 633 ( 0.00%) 126.60 [2] igmp 33056 ( 1.73%) 1891614 ( 1.17%) 57.22 [2] pim 2 ( 0.00%) 136 ( 0.00%) 68.00 >>>>