{"timestamp":"2024-07-24T11:56:49.254077+0000","flow_id":2093848300634805,"pcap_cnt":15792,"event_type":"http","src_ip":"192.168.122.115","src_port":50968,"dest_ip":"66.203.125.21","dest_port":80,"proto":"TCP","pkt_src":"wire/pcap","tx_id":1,"http":{"hostname":"w.api.mega.co.nz","url":"/gFcU12HNkSVhCS4fPiOjaCW6SeY","http_user_agent":"rclone/v1.67.0","http_content_type":"text/plain","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":0,"request_headers":[{"name":"Host","value":"w.api.mega.co.nz"},{"name":"User-Agent","value":"rclone/v1.67.0"},{"name":"Accept-Encoding","value":"gzip"}],"response_headers":[{"name":"Connection","value":"Keep-Alive"},{"name":"Content-Type","value":"text/plain"},{"name":"Content-Length","value":"0"},{"name":"Cache-Control","value":"no-cache, no-store"},{"name":"Pragma","value":"no-cache"},{"name":"Expires","value":"0"},{"name":"Access-Control-Allow-Origin","value":"*"},{"name":"Access-Control-Allow-Headers","value":"Content-Type, MEGA-Chrome-Antileak"},{"name":"Access-Control-Max-Age","value":"86400"}]}}
{"timestamp":"2024-07-24T11:55:33.244461+0000","flow_id":1285514317623596,"event_type":"http","src_ip":"192.168.122.115","src_port":50976,"dest_ip":"66.203.125.21","dest_port":80,"proto":"TCP","pkt_src":"stream (flow timeout)","tx_id":1,"http":{"hostname":"w.api.mega.co.nz","url":"/TYNvjaxeBDFv72P1IcAZb3VOgJ8","http_user_agent":"rclone/v1.67.0","http_method":"GET","protocol":"HTTP/1.1","length":0,"request_headers":[{"name":"Host","value":"w.api.mega.co.nz"},{"name":"User-Agent","value":"rclone/v1.67.0"},{"name":"Accept-Encoding","value":"gzip"}]}}
{"timestamp":"2022-11-01T15:08:44.811673+0000","flow_id":1396473814061900,"pcap_cnt":235,"event_type":"fileinfo","src_ip":"192.168.196.129","src_port":8080,"dest_ip":"192.168.196.131","dest_port":49863,"proto":"TCP","pkt_src":"wire/pcap","http":{"hostname":"w4.wf","http_port":8080,"url":"/GaJnUjc0Ht0/MSEDGEWIN10?snapattack","http_user_agent":"Windows Installer","http_content_type":"application/octet-stream","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":132860},"app_proto":"http","fileinfo":{"filename":"/GaJnUjc0Ht0/MSEDGEWIN10","gaps":false,"state":"TRUNCATED","stored":false,"size":102400,"tx_id":0}}
{"timestamp":"2022-11-01T15:08:44.817734+0000","flow_id":1396473814061900,"pcap_cnt":520,"event_type":"http","src_ip":"192.168.196.131","src_port":49863,"dest_ip":"192.168.196.129","dest_port":8080,"proto":"TCP","pkt_src":"wire/pcap","tx_id":0,"http":{"hostname":"w4.wf","http_port":8080,"url":"/GaJnUjc0Ht0/MSEDGEWIN10?snapattack","http_user_agent":"Windows Installer","http_content_type":"application/octet-stream","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":520192,"request_headers":[{"name":"Connection","value":"Keep-Alive"},{"name":"Accept","value":"*/*"},{"name":"User-Agent","value":"Windows Installer"},{"name":"Host","value":"w4.wf:8080"}],"response_headers":[{"name":"Server","value":"SimpleHTTP/0.6 Python/3.10.4"},{"name":"Date","value":"Tue, 01 Nov 2022 15:08:45 GMT"},{"name":"Content-type","value":"application/octet-stream"},{"name":"Content-Length","value":"520192"},{"name":"Last-Modified","value":"Tue, 01 Nov 2022 15:06:54 GMT"}]}}