Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-08-02 03:59:10.577 00:00:10.360 TCP 23.104.0.1:53772 -> 1.101.0.1:3000 11 1507 1 2025-08-02 03:59:18.100 00:00:10.129 TCP 1.101.0.1:3000 -> 22.102.0.1:41862 10 6452 1 2025-08-02 04:00:10.975 00:00:10.369 TCP 23.104.0.1:39570 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:00:18.265 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:51646 10 6452 1 2025-08-02 03:56:04.947 00:06:00.031 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-02 03:56:04.975 00:06:00.001 TCP 179.1.22.22:39396 -> 179.1.22.1:179 7 497 1 2025-08-02 04:01:11.378 00:00:10.367 TCP 23.104.0.1:45120 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:01:18.480 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:50970 10 6452 1 2025-08-02 04:02:02.262 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 04:02:02.102 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 04:02:11.788 00:00:10.342 TCP 23.104.0.1:39908 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:02:18.702 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:47128 10 6452 1 2025-08-02 04:03:12.173 00:00:10.371 TCP 23.104.0.1:58878 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:03:18.913 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:37260 10 6452 1 2025-08-02 04:04:12.583 00:00:10.320 TCP 23.104.0.1:51860 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:04:19.132 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:59866 10 6452 1 2025-08-02 04:05:12.939 00:00:10.383 TCP 23.104.0.1:56510 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:05:19.343 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:37968 10 6452 1 2025-08-02 04:06:13.360 00:00:10.452 TCP 23.104.0.1:55674 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:06:19.565 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:46210 10 6452 1 2025-08-02 04:07:02.101 00:00:00.046 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 04:07:02.036 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 04:07:13.849 00:00:10.381 TCP 23.104.0.1:37334 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:07:19.778 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:50584 10 6452 1 2025-08-02 04:03:04.977 00:06:00.000 TCP 179.1.22.22:39396 -> 179.1.22.1:179 7 497 1 2025-08-02 04:03:04.949 00:06:00.030 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-02 04:08:14.267 00:00:10.365 TCP 23.104.0.1:55894 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:08:19.995 00:00:10.142 TCP 1.101.0.1:3000 -> 22.102.0.1:49054 10 6452 1 2025-08-02 04:09:14.670 00:00:10.324 TCP 23.104.0.1:54950 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:09:20.177 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:35140 10 6452 1 2025-08-02 04:10:15.034 00:00:10.367 TCP 23.104.0.1:40668 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:10:20.387 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:59700 10 6452 1 2025-08-02 04:11:15.437 00:00:10.362 TCP 23.104.0.1:51582 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:11:20.598 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:56588 10 6452 1 2025-08-02 04:12:02.223 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 04:12:02.171 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 04:12:15.843 00:00:10.388 TCP 23.104.0.1:43456 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:12:20.808 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:39550 10 6452 1 2025-08-02 04:13:16.270 00:00:10.368 TCP 23.104.0.1:52782 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:13:20.981 00:00:10.196 TCP 1.101.0.1:3000 -> 22.102.0.1:58758 10 6452 1 2025-08-02 04:14:21.214 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:41290 10 6452 1 2025-08-02 04:14:16.677 00:00:10.375 TCP 23.104.0.1:35170 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:10:04.978 00:06:00.009 TCP 179.1.22.22:39396 -> 179.1.22.1:179 7 497 1 2025-08-02 04:10:04.953 00:06:00.036 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-02 04:15:17.101 00:00:10.367 TCP 23.104.0.1:45636 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:15:21.427 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:35740 10 6452 1 2025-08-02 04:16:17.504 00:00:10.367 TCP 23.104.0.1:45266 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:16:21.639 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:47574 10 6452 1 2025-08-02 04:17:02.371 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 04:17:02.289 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 04:17:17.909 00:00:10.367 TCP 23.104.0.1:37384 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:17:21.812 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:38126 12 6556 1 2025-08-02 04:18:18.316 00:00:10.372 TCP 23.104.0.1:40450 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:18:22.059 00:00:10.169 TCP 1.101.0.1:3000 -> 22.102.0.1:38434 10 6452 1 2025-08-02 04:19:18.726 00:00:10.367 TCP 23.104.0.1:47498 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:19:22.267 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:37198 10 6452 1 2025-08-02 04:20:19.127 00:00:10.366 TCP 23.104.0.1:39732 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:20:22.474 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:42666 10 6452 1 2025-08-02 04:21:19.529 00:00:10.363 TCP 23.104.0.1:44594 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:21:22.685 00:00:10.139 TCP 1.101.0.1:3000 -> 22.102.0.1:38998 10 6452 1 2025-08-02 04:22:02.492 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 04:17:04.986 00:06:00.004 TCP 179.1.22.22:39396 -> 179.1.22.1:179 7 497 1 2025-08-02 04:22:02.554 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 04:17:04.954 00:06:00.038 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-02 04:22:19.935 00:00:10.372 TCP 23.104.0.1:56106 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:22:22.862 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:37766 10 6452 1 2025-08-02 04:23:20.350 00:00:10.367 TCP 23.104.0.1:53634 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:23:23.089 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:41870 10 6452 1 2025-08-02 04:24:20.758 00:00:10.372 TCP 23.104.0.1:40146 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:24:23.301 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:59588 10 6452 1 2025-08-02 04:25:21.168 00:00:10.362 TCP 23.104.0.1:38570 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:25:23.523 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:40116 10 6452 1 2025-08-02 04:26:21.571 00:00:10.362 TCP 23.104.0.1:60188 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:26:23.695 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:50438 10 6452 1 2025-08-02 04:27:02.975 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 04:27:02.636 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 04:27:23.912 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:49368 10 6452 1 2025-08-02 04:27:21.975 00:00:10.373 TCP 23.104.0.1:51420 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:24:04.958 00:05:00.063 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-02 04:24:04.991 00:05:00.027 TCP 179.1.22.22:39396 -> 179.1.22.1:179 8 530 1 2025-08-02 04:28:22.381 00:00:10.365 TCP 23.104.0.1:50574 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:28:24.131 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:39548 10 6452 1 2025-08-02 04:29:22.784 00:00:10.365 TCP 23.104.0.1:43286 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:29:24.343 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:39850 10 6452 1 2025-08-02 04:30:24.553 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:37778 10 6452 1 2025-08-02 04:30:23.191 00:00:10.365 TCP 23.104.0.1:36996 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:31:23.595 00:00:10.362 TCP 23.104.0.1:47142 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:31:24.767 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:60406 10 6452 1 2025-08-02 04:32:02.590 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 04:32:02.804 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 04:32:24.979 00:00:10.156 TCP 1.101.0.1:3000 -> 22.102.0.1:37968 10 6452 1 2025-08-02 04:32:24.009 00:00:10.363 TCP 23.104.0.1:41746 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:33:24.420 00:00:10.364 TCP 23.104.0.1:60518 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:33:25.172 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:42306 10 6452 1 2025-08-02 04:30:04.963 00:05:00.067 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-02 04:30:04.961 00:05:00.072 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-02 04:34:24.824 00:00:10.361 TCP 23.104.0.1:52984 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:34:25.389 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:33980 10 6452 1 2025-08-02 04:35:25.599 00:00:10.167 TCP 1.101.0.1:3000 -> 22.102.0.1:45910 10 6452 1 2025-08-02 04:35:25.223 00:00:10.368 TCP 23.104.0.1:33872 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:36:25.632 00:00:10.322 TCP 23.104.0.1:54006 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:36:25.807 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:45010 10 6452 1 2025-08-02 04:37:02.722 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 04:37:02.607 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 04:37:26.002 00:00:10.369 TCP 23.104.0.1:59538 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:37:26.026 00:00:10.142 TCP 1.101.0.1:3000 -> 22.102.0.1:56762 10 6452 1 2025-08-02 04:38:26.411 00:00:10.369 TCP 23.104.0.1:44292 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:38:26.206 00:00:10.222 TCP 1.101.0.1:3000 -> 22.102.0.1:38052 10 6452 1 2025-08-02 04:39:26.465 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:48444 10 6452 1 2025-08-02 04:39:26.824 00:00:10.370 TCP 23.104.0.1:58838 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:36:04.966 00:05:00.067 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-02 04:36:04.964 00:05:00.073 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-02 04:40:26.681 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:33120 10 6452 1 2025-08-02 04:40:27.232 00:00:10.325 TCP 23.104.0.1:46204 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:41:26.852 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:58726 10 6452 1 2025-08-02 04:41:27.592 00:00:10.361 TCP 23.104.0.1:50412 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:42:03.168 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 04:42:03.299 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 04:42:27.077 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:59262 10 6452 1 2025-08-02 04:42:27.989 00:00:10.330 TCP 23.104.0.1:49944 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:43:27.293 00:00:10.167 TCP 1.101.0.1:3000 -> 22.102.0.1:44086 10 6452 1 2025-08-02 04:43:28.356 00:00:10.363 TCP 23.104.0.1:42846 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:44:27.501 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:60366 10 6452 1 2025-08-02 04:44:28.759 00:00:10.332 TCP 23.104.0.1:46144 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:45:27.727 00:00:10.140 TCP 1.101.0.1:3000 -> 22.102.0.1:36550 10 6452 1 2025-08-02 04:45:29.138 00:00:10.372 TCP 23.104.0.1:34318 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:42:04.969 00:05:00.070 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-02 04:42:04.967 00:05:00.075 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-02 04:46:29.546 00:00:10.363 TCP 23.104.0.1:40148 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:46:27.907 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:49274 10 6452 1 2025-08-02 04:47:03.007 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 04:47:03.275 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 04:47:28.124 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:36754 10 6452 1 2025-08-02 04:47:29.947 00:00:10.371 TCP 23.104.0.1:58328 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:48:30.363 00:00:10.437 TCP 23.104.0.1:39512 -> 1.101.0.1:3000 15 1926 1 2025-08-02 04:48:28.337 00:00:10.199 TCP 1.101.0.1:3000 -> 22.102.0.1:47016 12 10367 1 2025-08-02 04:49:30.842 00:00:10.394 TCP 23.104.0.1:34312 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:49:28.578 00:00:10.132 TCP 1.101.0.1:3000 -> 22.102.0.1:44642 10 6452 1 2025-08-02 04:50:28.743 00:00:10.189 TCP 1.101.0.1:3000 -> 22.102.0.1:56120 10 6452 1 2025-08-02 04:50:31.270 00:00:10.365 TCP 23.104.0.1:51658 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:51:28.968 00:00:10.204 TCP 1.101.0.1:3000 -> 22.102.0.1:48484 10 6452 1 2025-08-02 04:51:31.675 00:00:10.366 TCP 23.104.0.1:42408 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:52:03.194 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 04:48:04.967 00:05:00.086 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-02 04:52:02.953 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 04:48:04.969 00:05:00.081 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-02 04:52:29.207 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:55676 10 6452 1 2025-08-02 04:52:32.106 00:00:10.323 TCP 23.104.0.1:37404 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:53:29.427 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:48148 10 6452 1 2025-08-02 04:53:32.472 00:00:10.366 TCP 23.104.0.1:54964 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:54:29.649 00:00:10.192 TCP 1.101.0.1:3000 -> 22.102.0.1:52312 10 6452 1 2025-08-02 04:54:32.876 00:00:10.325 TCP 23.104.0.1:55510 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:55:29.879 00:00:10.197 TCP 1.101.0.1:3000 -> 22.102.0.1:53642 10 6452 1 2025-08-02 04:55:33.236 00:00:10.327 TCP 23.104.0.1:49404 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:56:30.110 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:54670 10 6452 1 2025-08-02 04:56:33.607 00:00:10.363 TCP 23.104.0.1:58632 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:57:02.827 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 04:57:02.988 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 04:57:30.334 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:42482 10 6452 1 2025-08-02 04:57:34.009 00:00:10.324 TCP 23.104.0.1:34720 -> 1.101.0.1:3000 11 1507 1 2025-08-02 04:54:04.968 00:05:00.079 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-02 04:54:04.971 00:05:00.074 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-02 04:58:30.545 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:53780 10 6452 1 2025-08-02 04:58:34.379 00:00:10.367 TCP 23.104.0.1:58836 -> 1.101.0.1:3000 11 1507 1 Summary: total flows: 164, total bytes: 502106, total packets: 1564, avg bps: 1062, avg pps: 0, avg bpp: 321 Time window: 2025-08-02 03:56:04 - 2025-08-02 04:59:05 Total flows processed: 164, passed: 164, Blocks skipped: 0, Bytes read: 17120 Sys: 0.0037s User: 0.0009s Wall: 0.0023s flows/second: 71340.6 Runtime: 0.0023s