Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-07-18 07:58:59.369 00:00:10.361 TCP 23.104.0.1:35220 -> 1.101.0.1:3000 11 1507 1 2025-07-18 07:59:14.041 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:43146 10 6438 1 2025-07-18 07:59:53.521 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-07-18 07:59:53.662 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-07-18 07:59:59.774 00:00:10.324 TCP 23.104.0.1:39802 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:00:14.250 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:52540 10 6438 1 2025-07-18 07:55:57.382 00:06:00.084 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-07-18 08:01:00.135 00:00:10.365 TCP 23.104.0.1:51626 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:01:14.461 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:48908 10 6438 1 2025-07-18 08:02:00.541 00:00:10.366 TCP 23.104.0.1:47834 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:02:14.636 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:45334 10 6438 1 2025-07-18 08:03:00.944 00:00:10.372 TCP 23.104.0.1:57104 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:03:14.855 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:60992 12 6542 1 2025-07-18 08:04:01.355 00:00:10.363 TCP 23.104.0.1:57528 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:04:15.086 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:45306 10 6438 1 2025-07-18 08:04:53.738 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-07-18 08:04:53.792 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-07-18 07:59:57.381 00:06:00.090 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-07-18 08:05:01.756 00:00:10.377 TCP 23.104.0.1:49840 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:05:15.301 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:59222 10 6438 1 2025-07-18 08:06:02.171 00:00:10.365 TCP 23.104.0.1:57548 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:06:15.514 00:00:10.294 TCP 1.101.0.1:3000 -> 22.102.0.1:40712 10 6438 1 2025-07-18 08:07:02.574 00:00:10.362 TCP 23.104.0.1:55156 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:07:15.854 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:47596 10 6438 1 2025-07-18 08:02:57.384 00:06:00.085 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-07-18 08:08:02.976 00:00:10.373 TCP 23.104.0.1:40172 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:08:16.080 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:59452 10 6438 1 2025-07-18 08:09:03.390 00:00:10.363 TCP 23.104.0.1:60228 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:09:16.287 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:52542 10 6438 1 2025-07-18 08:09:53.590 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-07-18 08:09:53.657 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-07-18 08:10:03.802 00:00:10.367 TCP 23.104.0.1:53124 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:10:16.496 00:00:10.225 TCP 1.101.0.1:3000 -> 22.102.0.1:44932 11 6490 1 2025-07-18 08:11:04.205 00:00:10.365 TCP 23.104.0.1:56656 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:11:16.757 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:44642 10 6438 1 2025-07-18 08:06:57.382 00:06:00.091 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-07-18 08:12:04.612 00:00:10.364 TCP 23.104.0.1:37312 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:12:16.971 00:00:10.194 TCP 1.101.0.1:3000 -> 22.102.0.1:44572 10 6438 1 2025-07-18 08:13:05.019 00:00:10.370 TCP 23.104.0.1:50904 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:13:17.200 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:51554 10 6438 1 2025-07-18 08:14:05.428 00:00:10.327 TCP 23.104.0.1:55990 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:14:17.411 00:00:10.142 TCP 1.101.0.1:3000 -> 22.102.0.1:59080 10 6438 1 2025-07-18 08:14:53.894 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-07-18 08:14:53.964 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-07-18 08:09:57.389 00:06:00.084 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-07-18 08:15:05.788 00:00:10.369 TCP 23.104.0.1:58788 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:15:17.591 00:00:10.132 TCP 1.101.0.1:3000 -> 22.102.0.1:52566 10 6438 1 2025-07-18 08:16:06.190 00:00:10.320 TCP 23.104.0.1:39448 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:16:17.759 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:52944 12 6542 1 2025-07-18 08:17:06.546 00:00:10.364 TCP 23.104.0.1:54502 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:17:17.973 00:00:10.189 TCP 1.101.0.1:3000 -> 22.102.0.1:43054 10 6438 1 2025-07-18 08:18:06.950 00:00:10.379 TCP 23.104.0.1:52272 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:18:18.202 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:53896 10 6438 1 2025-07-18 08:13:57.383 00:06:00.104 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-07-18 08:19:07.372 00:00:10.363 TCP 23.104.0.1:36254 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:19:18.410 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:51230 10 6438 1 2025-07-18 08:19:53.949 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-07-18 08:19:53.940 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-07-18 08:20:07.767 00:00:10.367 TCP 23.104.0.1:36936 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:20:18.625 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:57386 10 6438 1 2025-07-18 08:21:08.175 00:00:10.366 TCP 23.104.0.1:54254 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:21:18.838 00:00:10.132 TCP 1.101.0.1:3000 -> 22.102.0.1:44404 10 6438 1 2025-07-18 08:16:57.387 00:06:00.104 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-07-18 08:22:08.589 00:00:10.371 TCP 23.104.0.1:52208 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:22:19.009 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:40994 10 6438 1 2025-07-18 08:23:08.993 00:00:10.334 TCP 23.104.0.1:41596 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:23:19.223 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:47518 10 6438 1 2025-07-18 08:24:09.368 00:00:10.363 TCP 23.104.0.1:33102 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:24:19.450 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:59392 10 6438 1 2025-07-18 08:24:54.063 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-07-18 08:24:53.970 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-07-18 08:25:09.768 00:00:10.372 TCP 23.104.0.1:55360 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:25:19.665 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:34788 10 6438 1 2025-07-18 08:20:57.384 00:06:00.111 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-07-18 08:26:10.173 00:00:10.332 TCP 23.104.0.1:59284 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:26:19.870 00:00:10.192 TCP 1.101.0.1:3000 -> 22.102.0.1:35870 10 6438 1 2025-07-18 08:27:10.538 00:00:10.364 TCP 23.104.0.1:47112 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:27:20.099 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:33196 10 6438 1 2025-07-18 08:28:10.941 00:00:10.477 TCP 23.104.0.1:53292 -> 1.101.0.1:3000 17 2239 1 2025-07-18 08:28:20.309 00:00:10.228 TCP 1.101.0.1:3000 -> 22.102.0.1:52798 14 14262 1 2025-07-18 08:23:57.389 00:06:00.107 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-07-18 08:29:11.456 00:00:10.361 TCP 23.104.0.1:59940 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:29:20.572 00:00:10.132 TCP 1.101.0.1:3000 -> 22.102.0.1:45878 10 6438 1 2025-07-18 08:29:54.088 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-07-18 08:29:54.267 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-07-18 08:30:11.857 00:00:10.374 TCP 23.104.0.1:47084 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:30:20.741 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:44140 10 6438 1 2025-07-18 08:31:12.267 00:00:10.375 TCP 23.104.0.1:54290 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:31:20.954 00:00:10.197 TCP 1.101.0.1:3000 -> 22.102.0.1:55338 12 6542 1 2025-07-18 08:32:12.681 00:00:10.364 TCP 23.104.0.1:59490 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:32:21.194 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:34206 10 6438 1 2025-07-18 08:27:57.388 00:06:00.109 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-07-18 08:33:13.108 00:00:10.371 TCP 23.104.0.1:49718 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:33:21.407 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:47636 10 6438 1 2025-07-18 08:34:13.515 00:00:10.361 TCP 23.104.0.1:49788 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:34:21.625 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:50718 10 6438 1 2025-07-18 08:34:54.404 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-07-18 08:34:54.305 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-07-18 08:35:13.916 00:00:10.378 TCP 23.104.0.1:34074 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:35:21.795 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:35324 10 6438 1 2025-07-18 08:30:57.392 00:06:00.103 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-07-18 08:36:14.337 00:00:10.363 TCP 23.104.0.1:50176 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:36:22.009 00:00:10.147 TCP 1.101.0.1:3000 -> 22.102.0.1:58680 10 6438 1 2025-07-18 08:37:14.741 00:00:10.365 TCP 23.104.0.1:59226 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:37:22.196 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:42612 10 6438 1 2025-07-18 08:38:15.144 00:00:10.358 TCP 23.104.0.1:42284 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:38:22.407 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:50208 10 6438 1 2025-07-18 08:39:15.542 00:00:10.365 TCP 23.104.0.1:48988 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:39:22.624 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:42570 10 6438 1 2025-07-18 08:39:54.300 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-07-18 08:39:54.231 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-07-18 08:34:57.388 00:06:00.110 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-07-18 08:40:15.945 00:00:10.389 TCP 23.104.0.1:59710 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:40:22.836 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:52800 10 6438 1 2025-07-18 08:41:16.367 00:00:10.363 TCP 23.104.0.1:57658 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:41:23.077 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:42844 10 6438 1 2025-07-18 08:42:16.769 00:00:10.369 TCP 23.104.0.1:36234 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:42:23.288 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:44484 10 6438 1 2025-07-18 08:37:57.393 00:06:00.105 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-07-18 08:43:17.177 00:00:10.442 TCP 23.104.0.1:54590 -> 1.101.0.1:3000 15 1925 1 2025-07-18 08:43:23.502 00:00:10.199 TCP 1.101.0.1:3000 -> 22.102.0.1:40742 12 10352 1 2025-07-18 08:44:17.659 00:00:10.371 TCP 23.104.0.1:33796 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:44:23.735 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:32784 10 6438 1 2025-07-18 08:44:54.473 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-07-18 08:44:54.464 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-07-18 08:45:18.107 00:00:10.369 TCP 23.104.0.1:34800 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:45:23.952 00:00:10.189 TCP 1.101.0.1:3000 -> 22.102.0.1:50374 10 6438 1 2025-07-18 08:46:18.518 00:00:10.365 TCP 23.104.0.1:43870 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:46:24.181 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:51620 10 6438 1 2025-07-18 08:41:57.392 00:06:00.108 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-07-18 08:47:18.922 00:00:10.391 TCP 23.104.0.1:32884 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:47:24.394 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:58898 10 6438 1 2025-07-18 08:48:19.353 00:00:10.368 TCP 23.104.0.1:50190 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:48:24.606 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:39190 10 6438 1 2025-07-18 08:49:19.758 00:00:10.378 TCP 23.104.0.1:48678 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:49:24.820 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:56374 10 6438 1 2025-07-18 08:49:54.609 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-07-18 08:49:54.265 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-07-18 08:44:57.395 00:06:00.103 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-07-18 08:50:20.173 00:00:10.369 TCP 23.104.0.1:51700 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:50:25.042 00:00:10.169 TCP 1.101.0.1:3000 -> 22.102.0.1:33546 10 6438 1 2025-07-18 08:51:20.578 00:00:10.362 TCP 23.104.0.1:55168 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:51:25.252 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:42168 10 6438 1 2025-07-18 08:52:20.977 00:00:10.365 TCP 23.104.0.1:56530 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:52:25.474 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:56350 10 6438 1 2025-07-18 08:53:21.382 00:00:10.366 TCP 23.104.0.1:40976 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:53:25.685 00:00:10.137 TCP 1.101.0.1:3000 -> 22.102.0.1:47728 10 6438 1 2025-07-18 08:48:57.396 00:06:00.107 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-07-18 08:54:21.784 00:00:10.365 TCP 23.104.0.1:57698 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:54:25.866 00:00:10.131 TCP 1.101.0.1:3000 -> 22.102.0.1:52104 10 6438 1 2025-07-18 08:54:54.435 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-07-18 08:54:54.788 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-07-18 08:55:26.058 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:58706 10 6438 1 2025-07-18 08:55:22.187 00:00:10.371 TCP 23.104.0.1:40794 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:56:22.595 00:00:10.376 TCP 23.104.0.1:54132 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:56:26.277 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:32868 10 6438 1 2025-07-18 08:51:57.398 00:06:00.103 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-07-18 08:57:26.488 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:54838 10 6438 1 2025-07-18 08:57:23.012 00:00:10.363 TCP 23.104.0.1:34224 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:58:23.419 00:00:10.362 TCP 23.104.0.1:42604 -> 1.101.0.1:3000 11 1507 1 2025-07-18 08:58:26.706 00:00:10.139 TCP 1.101.0.1:3000 -> 22.102.0.1:50148 10 6438 1 Summary: total flows: 161, total bytes: 510637, total packets: 1593, avg bps: 1086, avg pps: 0, avg bpp: 320 Time window: 2025-07-18 07:55:57 - 2025-07-18 08:58:36 Total flows processed: 161, passed: 161, Blocks skipped: 0, Bytes read: 16808 Sys: 0.0050s User: 0.0000s Wall: 0.0027s flows/second: 60411.8 Runtime: 0.0027s