Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-10-16 07:59:10.564 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:35494 10 6452 1 2025-10-16 07:59:34.623 00:00:10.364 TCP 23.104.0.1:52118 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:00:10.782 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:57274 10 6452 1 2025-10-16 07:56:42.988 00:05:02.605 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 07:56:42.989 00:05:02.600 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 08:00:35.027 00:00:10.360 TCP 23.104.0.1:54680 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:01:10.952 00:00:10.318 TCP 1.101.0.1:3000 -> 22.102.0.1:42448 10 6452 1 2025-10-16 08:01:35.424 00:00:10.364 TCP 23.104.0.1:52460 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:02:11.306 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:35132 10 6452 1 2025-10-16 08:02:35.825 00:00:10.373 TCP 23.104.0.1:40266 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:03:20.508 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 08:03:11.519 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:37674 10 6452 1 2025-10-16 08:03:20.865 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 08:03:36.237 00:00:10.369 TCP 23.104.0.1:33762 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:04:11.735 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:38728 10 6452 1 2025-10-16 08:04:36.646 00:00:10.334 TCP 23.104.0.1:35848 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:05:11.908 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:37830 10 6452 1 2025-10-16 08:05:37.025 00:00:10.359 TCP 23.104.0.1:50092 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:06:12.129 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:54362 10 6452 1 2025-10-16 08:02:42.990 00:05:02.600 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 08:02:42.989 00:05:02.605 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 08:06:37.424 00:00:10.367 TCP 23.104.0.1:43058 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:07:12.302 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:53670 10 6452 1 2025-10-16 08:07:37.828 00:00:10.384 TCP 23.104.0.1:42010 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:08:20.539 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 08:08:20.678 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 08:08:12.517 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:46860 10 6452 1 2025-10-16 08:08:38.251 00:00:10.371 TCP 23.104.0.1:60856 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:09:12.732 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:54664 10 6452 1 2025-10-16 08:09:38.665 00:00:10.365 TCP 23.104.0.1:57406 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:10:12.955 00:00:10.189 TCP 1.101.0.1:3000 -> 22.102.0.1:54312 10 6452 1 2025-10-16 08:10:39.092 00:00:10.367 TCP 23.104.0.1:40252 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:11:13.189 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:52320 10 6452 1 2025-10-16 08:11:39.496 00:00:10.360 TCP 23.104.0.1:40098 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:12:13.408 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:47840 10 6452 1 2025-10-16 08:08:42.988 00:05:02.608 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 08:08:42.990 00:05:02.603 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 08:12:39.894 00:00:10.329 TCP 23.104.0.1:52466 -> 1.101.0.1:3000 12 1559 1 2025-10-16 08:13:20.695 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 08:13:20.644 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 08:13:13.589 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:58902 10 6452 1 2025-10-16 08:13:40.260 00:00:10.326 TCP 23.104.0.1:46032 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:14:13.806 00:00:10.541 TCP 1.101.0.1:3000 -> 22.102.0.1:57738 10 6452 1 2025-10-16 08:14:40.624 00:00:10.325 TCP 23.104.0.1:43458 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:15:14.393 00:00:10.168 TCP 1.101.0.1:3000 -> 22.102.0.1:48996 10 6452 1 2025-10-16 08:15:40.987 00:00:10.369 TCP 23.104.0.1:60338 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:16:14.599 00:00:10.127 TCP 1.101.0.1:3000 -> 22.102.0.1:43084 10 6452 1 2025-10-16 08:16:41.394 00:00:10.368 TCP 23.104.0.1:38280 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:17:14.764 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:57274 10 6452 1 2025-10-16 08:17:41.798 00:00:10.368 TCP 23.104.0.1:36500 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:18:20.778 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 08:18:20.710 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 08:18:14.977 00:00:10.146 TCP 1.101.0.1:3000 -> 22.102.0.1:44744 10 6452 1 2025-10-16 08:14:42.993 00:05:02.599 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 08:14:42.991 00:05:02.604 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 08:18:42.209 00:00:10.342 TCP 23.104.0.1:36830 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:19:15.162 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:51918 10 6452 1 2025-10-16 08:19:42.589 00:00:10.327 TCP 23.104.0.1:37650 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:20:15.379 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:45580 10 6452 1 2025-10-16 08:20:42.954 00:00:10.364 TCP 23.104.0.1:34338 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:21:15.590 00:00:10.144 TCP 1.101.0.1:3000 -> 22.102.0.1:58662 10 6452 1 2025-10-16 08:21:43.357 00:00:10.362 TCP 23.104.0.1:57802 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:22:15.774 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:57874 10 6452 1 2025-10-16 08:22:43.754 00:00:10.381 TCP 23.104.0.1:40406 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:23:20.966 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 08:23:21.027 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 08:23:15.991 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:49840 10 6452 1 2025-10-16 08:23:44.175 00:00:10.365 TCP 23.104.0.1:38614 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:24:16.207 00:00:10.137 TCP 1.101.0.1:3000 -> 22.102.0.1:51296 10 6452 1 2025-10-16 08:20:42.995 00:05:02.600 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 08:20:43.000 00:05:02.595 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 08:24:44.575 00:00:10.364 TCP 23.104.0.1:52322 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:25:16.380 00:00:10.128 TCP 1.101.0.1:3000 -> 22.102.0.1:40332 10 6452 1 2025-10-16 08:25:44.976 00:00:10.368 TCP 23.104.0.1:35244 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:26:16.546 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:33918 10 6452 1 2025-10-16 08:26:45.386 00:00:10.384 TCP 23.104.0.1:37752 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:27:16.761 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:32822 10 6452 1 2025-10-16 08:27:45.799 00:00:10.336 TCP 23.104.0.1:56124 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:28:20.702 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 08:28:20.820 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 08:28:16.978 00:00:10.196 TCP 1.101.0.1:3000 -> 22.102.0.1:37008 10 6452 1 2025-10-16 08:28:46.176 00:00:10.326 TCP 23.104.0.1:53590 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:29:17.213 00:00:10.145 TCP 1.101.0.1:3000 -> 22.102.0.1:35842 10 6452 1 2025-10-16 08:29:46.539 00:00:10.329 TCP 23.104.0.1:54298 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:30:17.384 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:35430 10 6452 1 2025-10-16 08:26:42.996 00:05:02.604 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 08:26:43.001 00:05:02.597 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 08:30:46.905 00:00:10.363 TCP 23.104.0.1:60082 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:31:17.551 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:54098 10 6452 1 2025-10-16 08:31:47.308 00:00:10.364 TCP 23.104.0.1:56878 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:32:17.762 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:43860 10 6452 1 2025-10-16 08:32:47.713 00:00:10.375 TCP 23.104.0.1:56238 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:33:21.065 00:00:00.042 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 08:33:20.944 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 08:33:17.977 00:00:10.191 TCP 1.101.0.1:3000 -> 22.102.0.1:46226 10 6452 1 2025-10-16 08:33:48.151 00:00:10.365 TCP 23.104.0.1:40424 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:34:18.210 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:47212 10 6452 1 2025-10-16 08:34:48.556 00:00:10.360 TCP 23.104.0.1:40566 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:35:18.422 00:00:10.194 TCP 1.101.0.1:3000 -> 22.102.0.1:36758 10 6452 1 2025-10-16 08:35:48.957 00:00:10.849 TCP 23.104.0.1:51478 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:36:18.651 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:47530 10 6452 1 2025-10-16 08:32:43.034 00:05:02.567 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 08:32:43.032 00:05:02.571 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 08:36:49.849 00:00:10.378 TCP 23.104.0.1:60830 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:37:18.866 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:42924 10 6452 1 2025-10-16 08:37:50.269 00:00:10.371 TCP 23.104.0.1:42600 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:38:20.969 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 08:38:21.524 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 08:38:19.089 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:59954 10 6452 1 2025-10-16 08:38:50.686 00:00:10.364 TCP 23.104.0.1:59896 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:39:19.258 00:00:10.137 TCP 1.101.0.1:3000 -> 22.102.0.1:52872 10 6452 1 2025-10-16 08:39:51.099 00:00:10.362 TCP 23.104.0.1:52910 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:40:19.427 00:00:10.485 TCP 1.101.0.1:3000 -> 22.102.0.1:50314 10 6452 1 2025-10-16 08:40:51.507 00:00:10.327 TCP 23.104.0.1:34238 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:41:19.945 00:00:10.205 TCP 1.101.0.1:3000 -> 22.102.0.1:37540 10 6452 1 2025-10-16 08:41:51.876 00:00:10.363 TCP 23.104.0.1:33200 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:42:20.186 00:00:10.142 TCP 1.101.0.1:3000 -> 22.102.0.1:48670 10 6452 1 2025-10-16 08:38:43.037 00:05:02.566 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 08:38:43.034 00:05:02.572 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 08:42:52.281 00:00:10.362 TCP 23.104.0.1:34708 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:43:21.105 00:00:00.048 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 08:43:21.284 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 08:43:20.365 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:43994 10 6452 1 2025-10-16 08:43:52.684 00:00:10.379 TCP 23.104.0.1:56328 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:44:20.578 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:58930 10 6452 1 2025-10-16 08:44:53.105 00:00:10.327 TCP 23.104.0.1:37658 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:45:20.753 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:57734 10 6452 1 2025-10-16 08:45:53.467 00:00:10.324 TCP 23.104.0.1:56074 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:46:20.968 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:56672 10 6452 1 2025-10-16 08:46:53.838 00:00:10.390 TCP 23.104.0.1:44146 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:47:21.193 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:52928 10 6452 1 2025-10-16 08:47:54.263 00:00:10.362 TCP 23.104.0.1:33606 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:48:21.340 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 08:48:21.525 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 08:48:21.413 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:43898 10 6452 1 2025-10-16 08:44:43.039 00:05:02.566 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 08:44:43.036 00:05:02.571 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 08:48:54.660 00:00:10.321 TCP 23.104.0.1:33902 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:49:21.626 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:47824 10 6452 1 2025-10-16 08:49:55.024 00:00:10.371 TCP 23.104.0.1:47970 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:50:21.838 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:44356 10 6452 1 2025-10-16 08:50:55.428 00:00:10.329 TCP 23.104.0.1:54026 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:51:22.069 00:00:10.137 TCP 1.101.0.1:3000 -> 22.102.0.1:46598 10 6452 1 2025-10-16 08:51:55.797 00:00:10.364 TCP 23.104.0.1:37328 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:52:22.244 00:00:10.138 TCP 1.101.0.1:3000 -> 22.102.0.1:54072 10 6452 1 2025-10-16 08:52:56.200 00:00:10.318 TCP 23.104.0.1:53204 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:53:21.568 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 08:53:21.508 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 08:53:22.422 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:33300 10 6452 1 2025-10-16 08:53:56.558 00:00:10.360 TCP 23.104.0.1:39120 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:54:22.645 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:48884 10 6452 1 2025-10-16 08:50:43.044 00:05:02.564 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 08:50:43.041 00:05:02.569 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 08:54:56.957 00:00:10.391 TCP 23.104.0.1:48446 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:55:22.856 00:00:10.224 TCP 1.101.0.1:3000 -> 22.102.0.1:52012 10 6452 1 2025-10-16 08:55:57.389 00:00:10.325 TCP 23.104.0.1:41686 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:56:23.084 00:00:10.139 TCP 1.101.0.1:3000 -> 22.102.0.1:55908 10 6452 1 2025-10-16 08:56:57.753 00:00:10.384 TCP 23.104.0.1:39550 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:57:23.261 00:00:10.167 TCP 1.101.0.1:3000 -> 22.102.0.1:45284 10 6452 1 2025-10-16 08:57:58.178 00:00:10.364 TCP 23.104.0.1:58978 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:58:21.550 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 08:58:21.629 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 08:58:23.469 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:53564 10 6452 1 Summary: total flows: 163, total bytes: 496893, total packets: 1562, avg bps: 1071, avg pps: 0, avg bpp: 318 Time window: 2025-10-16 07:56:42 - 2025-10-16 08:58:33 Total flows processed: 163, passed: 163, Blocks skipped: 0, Bytes read: 17016 Sys: 0.0020s User: 0.0031s Wall: 0.0028s flows/second: 59269.3 Runtime: 0.0028s