{"timestamp":"2025-07-18T18:55:49.581089+0000","flow_id":1044413358061550,"in_iface":"ens5","event_type":"fileinfo","src_ip":"107.191.58.76","src_port":58910,"dest_ip":"192.168.1.2","dest_port":80,"proto":"TCP","http":{"hostname":"sharepoint.example.com","url":"/_layouts/15/spinstall0.aspx","http_user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":162,"http_referer":"/_layouts/SignOut.aspx"},"app_proto":"http","fileinfo":{"filename":"/_layouts/15/spinstall0.aspx","sid":[],"gaps":false,"state":"CLOSED","stored":false,"size":162,"tx_id":0}}
{"timestamp":"2025-07-18T18:55:49.579343+0000","flow_id":1044413358061550,"in_iface":"ens5","event_type":"http","src_ip":"107.191.58.76","src_port":58910,"dest_ip":"192.168.1.2","dest_port":80,"proto":"TCP","tx_id":0,"http":{"hostname":"sharepoint.example.com","url":"/_layouts/15/spinstall0.aspx","http_user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":162,"http_referer":"/_layouts/SignOut.aspx"}}
{"timestamp":"2025-07-19T07:28:14.581089+0000","flow_id":1044413358061551,"in_iface":"ens5","event_type":"fileinfo","src_ip":"104.238.159.149","src_port":58911,"dest_ip":"192.168.1.2","dest_port":80,"proto":"TCP","http":{"hostname":"sharepoint.example.com","url":"/_layouts/15/spinstall0.aspx","http_user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":162,"http_referer":"/_layouts/SignOut.aspx"},"app_proto":"http","fileinfo":{"filename":"/_layouts/15/spinstall0.aspx","sid":[],"gaps":false,"state":"CLOSED","stored":false,"size":162,"tx_id":0}}
{"timestamp":"2025-07-19T07:28:14.579343+0000","flow_id":1044413358061551,"in_iface":"ens5","event_type":"http","src_ip":"104.238.159.149","src_port":58911,"dest_ip":"192.168.1.2","dest_port":80,"proto":"TCP","tx_id":0,"http":{"hostname":"sharepoint.example.com","url":"/_layouts/15/spinstall0.aspx","http_user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":162,"http_referer":"/_layouts/SignOut.aspx"}}
{"timestamp":"2025-07-19T08:15:22.581089+0000","flow_id":1044413358061552,"in_iface":"ens5","event_type":"fileinfo","src_ip":"107.191.58.76","src_port":59010,"dest_ip":"192.168.1.2","dest_port":80,"proto":"TCP","http":{"hostname":"sharepoint.example.com","url":"/_layouts/15/spinstall0.aspx?cmd=whoami","http_user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":162,"http_referer":"/_layouts/SignOut.aspx"},"app_proto":"http","fileinfo":{"filename":"/_layouts/15/spinstall0.aspx","sid":[],"gaps":false,"state":"CLOSED","stored":false,"size":162,"tx_id":0}}
{"timestamp":"2025-07-19T08:15:22.579343+0000","flow_id":1044413358061552,"in_iface":"ens5","event_type":"http","src_ip":"107.191.58.76","src_port":59010,"dest_ip":"192.168.1.2","dest_port":80,"proto":"TCP","tx_id":0,"http":{"hostname":"sharepoint.example.com","url":"/_layouts/15/spinstall0.aspx?cmd=whoami","http_user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":162,"http_referer":"/_layouts/SignOut.aspx"}}
{"timestamp":"2025-07-19T09:42:18.581089+0000","flow_id":1044413358061553,"in_iface":"ens5","event_type":"fileinfo","src_ip":"104.238.159.149","src_port":59110,"dest_ip":"192.168.1.2","dest_port":80,"proto":"TCP","http":{"hostname":"sharepoint.example.com","url":"/_layouts/15/spinstall0.aspx?cmd=dir","http_user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":162,"http_referer":"/_layouts/SignOut.aspx"},"app_proto":"http","fileinfo":{"filename":"/_layouts/15/spinstall0.aspx","sid":[],"gaps":false,"state":"CLOSED","stored":false,"size":162,"tx_id":0}}
{"timestamp":"2025-07-19T09:42:18.579343+0000","flow_id":1044413358061553,"in_iface":"ens5","event_type":"http","src_ip":"104.238.159.149","src_port":59110,"dest_ip":"192.168.1.2","dest_port":80,"proto":"TCP","tx_id":0,"http":{"hostname":"sharepoint.example.com","url":"/_layouts/15/spinstall0.aspx?cmd=dir","http_user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":162,"http_referer":"/_layouts/SignOut.aspx"}}
{"timestamp":"2025-07-19T11:23:45.581089+0000","flow_id":1044413358061554,"in_iface":"ens5","event_type":"fileinfo","src_ip":"96.9.125.147","src_port":60210,"dest_ip":"192.168.1.2","dest_port":80,"proto":"TCP","http":{"hostname":"sharepoint.example.com","url":"/_layouts/15/spinstall0.aspx","http_user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":162,"http_referer":"/_layouts/SignOut.aspx"},"app_proto":"http","fileinfo":{"filename":"/_layouts/15/spinstall0.aspx","sid":[],"gaps":false,"state":"CLOSED","stored":false,"size":162,"tx_id":0}}
{"timestamp":"2025-07-19T11:23:45.579343+0000","flow_id":1044413358061554,"in_iface":"ens5","event_type":"http","src_ip":"96.9.125.147","src_port":60210,"dest_ip":"192.168.1.2","dest_port":80,"proto":"TCP","tx_id":0,"http":{"hostname":"sharepoint.example.com","url":"/_layouts/15/spinstall0.aspx","http_user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":162,"http_referer":"/_layouts/SignOut.aspx"}}
{"timestamp":"2025-07-19T14:07:33.581089+0000","flow_id":1044413358061555,"in_iface":"ens5","event_type":"fileinfo","src_ip":"103.186.30.186","src_port":61310,"dest_ip":"192.168.1.2","dest_port":80,"proto":"TCP","http":{"hostname":"sharepoint.example.com","url":"/_layouts/15/spinstall0.aspx?cmd=systeminfo","http_user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":162,"http_referer":"/_layouts/SignOut.aspx"},"app_proto":"http","fileinfo":{"filename":"/_layouts/15/spinstall0.aspx","sid":[],"gaps":false,"state":"CLOSED","stored":false,"size":162,"tx_id":0}}
{"timestamp":"2025-07-19T14:07:33.579343+0000","flow_id":1044413358061555,"in_iface":"ens5","event_type":"http","src_ip":"103.186.30.186","src_port":61310,"dest_ip":"192.168.1.2","dest_port":80,"proto":"TCP","tx_id":0,"http":{"hostname":"sharepoint.example.com","url":"/_layouts/15/spinstall0.aspx?cmd=systeminfo","http_user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0","http_content_type":"text/html","http_method":"GET","protocol":"HTTP/1.1","status":200,"length":162,"http_referer":"/_layouts/SignOut.aspx"}}