{"timestamp":"2024-03-05T02:54:42.513608+0000","flow_id":1980523395288615,"in_iface":"ens5","event_type":"fileinfo","src_ip":"10.0.4.6","src_port":80,"dest_ip":"1.1.7.1","dest_port":6456,"proto":"TCP","http":{"hostname":"example.com","url":"/update/../admin/diagnostic.jsp","http_user_agent":"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.4 Safari/605.1.15","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"redirect":"https://example.com/update/../admin/diagnostic.jsp","length":162},"app_proto":"http","fileinfo":{"filename":"/admin/diagnostic.jsp","sid":[],"gaps":false,"state":"CLOSED","stored":false,"size":162,"tx_id":0}} {"timestamp":"2024-03-05T02:54:42.331322+0000","flow_id":1431128358667557,"in_iface":"ens5","event_type":"fileinfo","src_ip":"10.0.4.6","src_port":80,"dest_ip":"1.1.7.1","dest_port":6442,"proto":"TCP","http":{"hostname":"example.com","url":"/.well-known/acme-challenge/../../admin/diagnostic.jsp","http_user_agent":"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.102 Safari/537.36 Edg/98.0.1108.62","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"redirect":"https://example.com/.well-known/acme-challenge/../../admin/diagnostic.jsp","length":162},"app_proto":"http","fileinfo":{"filename":"/admin/diagnostic.jsp","sid":[],"gaps":false,"state":"CLOSED","stored":false,"size":162,"tx_id":0}} {"timestamp":"2024-03-05T02:54:42.148327+0000","flow_id":731272027683914,"in_iface":"ens5","event_type":"fileinfo","src_ip":"10.0.4.6","src_port":80,"dest_ip":"1.1.7.1","dest_port":6430,"proto":"TCP","http":{"hostname":"example.com","url":"/res/../admin/diagnostic.jsp","http_user_agent":"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_2) AppleWebKit/602.2.14 (KHTML, like Gecko) Version/9.1.2 Safari/602.2.14","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"redirect":"https://example.com/res/../admin/diagnostic.jsp","length":162},"app_proto":"http","fileinfo":{"filename":"/admin/diagnostic.jsp","sid":[],"gaps":false,"state":"CLOSED","stored":false,"size":162,"tx_id":0}} {"timestamp":"2024-03-05T02:54:36.709266+0000","flow_id":1580670529592113,"in_iface":"ens5","event_type":"fileinfo","src_ip":"10.0.4.1","src_port":80,"dest_ip":"1.1.7.1","dest_port":64534,"proto":"TCP","http":{"hostname":"example.com","url":"/update/../admin/diagnostic.jsp","http_user_agent":"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_1) AppleWebKit/602.2.14 (KHTML, like Gecko) Version/9.1.2 Safari/602.2.14","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"redirect":"https://example.com/update/../admin/diagnostic.jsp","length":162},"app_proto":"http","fileinfo":{"filename":"/admin/diagnostic.jsp","sid":[],"gaps":false,"state":"CLOSED","stored":false,"size":162,"tx_id":0}} {"timestamp":"2024-03-05T02:54:36.613196+0000","flow_id":2029739425194473,"in_iface":"ens5","event_type":"fileinfo","src_ip":"10.0.4.1","src_port":80,"dest_ip":"1.1.7.1","dest_port":64524,"proto":"TCP","http":{"hostname":"example.com","url":"/.well-known/acme-challenge/../../admin/diagnostic.jsp","http_user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"redirect":"https://example.com/.well-known/acme-challenge/../../admin/diagnostic.jsp","length":162},"app_proto":"http","fileinfo":{"filename":"/admin/diagnostic.jsp","sid":[],"gaps":false,"state":"CLOSED","stored":false,"size":162,"tx_id":0}} {"timestamp":"2024-03-05T02:54:36.517204+0000","flow_id":838130813657578,"in_iface":"ens5","event_type":"fileinfo","src_ip":"10.0.4.1","src_port":80,"dest_ip":"1.1.7.1","dest_port":64514,"proto":"TCP","http":{"hostname":"example.com","url":"/res/../admin/diagnostic.jsp","http_user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0 X-Middleton/1","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"redirect":"https://example.com/res/../admin/diagnostic.jsp","length":162},"app_proto":"http","fileinfo":{"filename":"/admin/diagnostic.jsp","sid":[],"gaps":false,"state":"CLOSED","stored":false,"size":162,"tx_id":0}} {"timestamp":"2024-03-05T02:54:28.761974+0000","flow_id":1939098434818467,"in_iface":"ens5","event_type":"fileinfo","src_ip":"10.0.3.2","src_port":80,"dest_ip":"1.1.7.1","dest_port":21026,"proto":"TCP","http":{"hostname":"example.com","url":"/update/../admin/diagnostic.jsp","http_user_agent":"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.0 Safari/605.1.15","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"redirect":"https://example.com/update/../admin/diagnostic.jsp","length":162},"app_proto":"http","fileinfo":{"filename":"/admin/diagnostic.jsp","sid":[],"gaps":false,"state":"CLOSED","stored":false,"size":162,"tx_id":0}} {"timestamp":"2024-03-05T02:54:28.741486+0000","flow_id":516764180152393,"in_iface":"ens5","event_type":"fileinfo","src_ip":"10.0.3.2","src_port":80,"dest_ip":"1.1.7.1","dest_port":21022,"proto":"TCP","http":{"hostname":"example.com","url":"/.well-known/acme-challenge/../../admin/diagnostic.jsp","http_user_agent":"Mozilla/5.0 (X11; U; Linux ppc64; en-US; rv:1.8.1.14) Gecko/20080418 Ubuntu/7.10 (gutsy) Firefox/2.0.0.14","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"redirect":"https://example.com/.well-known/acme-challenge/../../admin/diagnostic.jsp","length":162},"app_proto":"http","fileinfo":{"filename":"/admin/diagnostic.jsp","sid":[],"gaps":false,"state":"CLOSED","stored":false,"size":162,"tx_id":0}} {"timestamp":"2024-03-05T02:54:28.720967+0000","flow_id":2085479510223683,"in_iface":"ens5","event_type":"fileinfo","src_ip":"10.0.3.2","src_port":80,"dest_ip":"1.1.7.1","dest_port":21010,"proto":"TCP","http":{"hostname":"example.com","url":"/res/../admin/diagnostic.jsp","http_user_agent":"Mozilla/5.0 (X11; Linux x86_64) Gecko/20001111 Firefox/103.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"redirect":"https://example.com/res/../admin/diagnostic.jsp","length":162},"app_proto":"http","fileinfo":{"filename":"/admin/diagnostic.jsp","sid":[],"gaps":false,"state":"CLOSED","stored":false,"size":162,"tx_id":0}}